Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF1CCA64992E11EFB26E897F762E951A.roa
File: BF1CCA64992E11EFB26E897F762E951A.roa (raw, json)
Hash identifier: ULB1Yj1ExKRlGXWRVEpzVFmnCM2Q6zoGlUNyfVuYxss=
Subject key identifier: 5C:53:89:E8:47:2B:EB:2A:B8:88:AE:24:6D:5E:47:A7:E5:32:66:C3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0105C6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF1CCA64992E11EFB26E897F762E951A.roa
Signing time: Sat 02 Nov 2024 15:25:53 +0000
ROA not before: Sat 02 Nov 2024 15:25:48 +0000
ROA not after: Tue 26 Nov 2024 15:25:48 +0000
asID: 139880
IP address blocks: 154.206.128.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67014 (0x105c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 2 15:25:48 2024 GMT
Not After : Nov 26 15:25:48 2024 GMT
Subject: CN=67264480-13ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:b3:87:56:08:d5:79:87:84:82:2d:71:8e:1b:
e7:d6:ba:4a:ec:95:69:61:c0:11:09:f0:73:7b:3e:
45:54:48:d4:1f:6d:be:6b:72:bc:be:fe:98:eb:2a:
9b:e4:a0:5d:e2:83:9a:02:01:b1:3f:40:09:34:21:
d5:60:6f:01:ec:ab:99:ab:3e:df:63:4f:0f:5b:07:
87:7a:33:0c:f1:8f:30:8f:27:f2:90:ff:83:08:cd:
d2:1e:ec:96:a9:f7:77:b6:fc:6d:19:6c:51:fc:ac:
a9:e1:dd:24:5d:87:21:8a:17:f9:69:a6:1d:36:24:
a9:34:66:a4:ae:c4:12:c8:ba:23:b2:b2:97:c0:a7:
87:0e:b5:9e:8f:74:e9:86:42:c3:5f:e4:5a:f8:46:
a1:e7:48:78:73:9b:cd:3b:5f:86:5c:b7:87:36:09:
0c:6b:bc:79:92:ab:1e:a1:8f:f6:fa:44:28:ff:82:
fa:7c:7b:a7:c4:22:b3:8c:ef:58:04:58:b0:ff:a9:
5d:4d:df:e1:56:b6:df:06:29:b8:00:21:7a:cf:89:
62:60:db:a9:72:b8:2d:a3:b3:14:63:4c:0b:d7:82:
a2:85:33:a3:0a:9a:fb:62:6a:a5:09:3f:d2:12:94:
20:1f:f7:16:1a:14:f1:7a:fb:70:e1:75:b1:8d:88:
a3:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:53:89:E8:47:2B:EB:2A:B8:88:AE:24:6D:5E:47:A7:E5:32:66:C3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF1CCA64992E11EFB26E897F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.128.0/18
Signature Algorithm: sha256WithRSAEncryption
23:b0:14:86:08:4c:73:2a:94:15:69:98:1a:ae:14:12:af:78:
73:ce:47:2b:3c:de:86:31:3e:32:ee:18:6f:52:50:7b:d9:6e:
bf:79:ac:5d:12:ea:9e:89:75:d1:de:fe:87:14:36:9f:1f:6e:
21:38:4e:26:68:c4:67:82:c6:8b:8c:85:4d:82:9f:73:e5:0a:
f8:83:9c:92:52:3a:0a:9d:2c:61:d8:4c:d4:2e:46:3b:81:e7:
e4:07:cb:1c:42:18:d5:71:f1:65:9c:8a:2d:99:b0:c0:37:dc:
4a:74:85:35:c0:13:3c:e4:be:07:94:27:c2:69:ef:36:b1:bd:
7d:84:77:ce:9e:98:85:8b:23:e1:f9:39:f3:54:9b:f5:65:95:
3d:dd:a6:66:60:e9:66:73:69:91:72:2f:05:32:c5:f0:6a:0d:
e2:aa:70:1f:88:ac:81:88:67:25:c6:b6:b8:86:a4:55:f0:ed:
7b:2e:f0:74:60:ab:a0:64:0b:ef:3f:2b:7b:de:28:e5:e9:22:
b9:63:cc:35:19:30:c3:03:10:8e:87:fb:12:22:ec:fb:de:6b:
29:54:78:a5:b0:15:da:f8:8a:6c:4b:17:64:99:cc:68:ec:60:
42:8f:21:34:b8:7f:90:fe:4d:0a:0f:e4:b9:fa:15:8c:fc:81:
19:e5:a0:7b
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQXGMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTAyMTUyNTQ4WhcNMjQxMTI2MTUyNTQ4WjAYMRYw
FAYDVQQDEw02NzI2NDQ4MC0xM2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3LOHVgjVeYeEgi1xjhvn1rpK7JVpYcARCfBzez5FVEjUH22+a3K8vv6Y
6yqb5KBd4oOaAgGxP0AJNCHVYG8B7KuZqz7fY08PWweHejMM8Y8wjyfykP+DCM3S
HuyWqfd3tvxtGWxR/Kyp4d0kXYchihf5aaYdNiSpNGakrsQSyLojsrKXwKeHDrWe
j3TphkLDX+Ra+Eah50h4c5vNO1+GXLeHNgkMa7x5kqseoY/2+kQo/4L6fHunxCKz
jO9YBFiw/6ldTd/hVrbfBim4ACF6z4liYNupcrgto7MUY0wL14KihTOjCpr7Ymql
CT/SEpQgH/cWGhTxevtw4XWxjYijWwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFxT
iehHK+squIiuJG1eR6flMmbDMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CRjFDQ0E2NDk5MkUxMUVGQjI2RTg5N0Y3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGms6AMA0GCSqGSIb3DQEB
CwUAA4IBAQAjsBSGCExzKpQVaZgarhQSr3hzzkcrPN6GMT4y7hhvUlB72W6/eaxd
EuqeiXXR3v6HFDafH24hOE4maMRngsaLjIVNgp9z5Qr4g5ySUjoKnSxh2EzULkY7
gefkB8scQhjVcfFlnIotmbDAN9xKdIU1wBM85L4HlCfCae82sb19hHfOnpiFiyPh
+TnzVJv1ZZU93aZmYOlmc2mRci8FMsXwag3iqnAfiKyBiGclxra4hqRV8O17LvB0
YKugZAvvPyt73ijl6SK5Y8w1GTDDAxCOh/sSIuz73mspVHilsBXa+IpsSxdkmcxo
7GBCjyE0uH+Q/k0KD+S5+hWM/IEZ5aB7
-----END CERTIFICATE-----
Generated at Fri Nov 22 23:38:26 2024 by rpki-client on console-fra.rpki-client.org