Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C071752C29C211EE8A7126264AD9E6FC.roa
File: C071752C29C211EE8A7126264AD9E6FC.roa (raw, json)
Hash identifier: lRL1Spp0tjMv6jpqdtRTUwV8kMjw7+jz+1D/MNk659k=
Subject key identifier: 65:B6:8B:BD:D5:A0:2F:B4:FD:71:A4:F4:5D:C5:22:B4:37:29:D4:01
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 33CE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C071752C29C211EE8A7126264AD9E6FC.roa
Signing time: Mon 24 Jul 2023 01:38:12 +0000
ROA not before: Mon 24 Jul 2023 01:38:09 +0000
ROA not after: Wed 24 Jul 2024 01:38:09 +0000
asID: 151196
IP address blocks: 154.204.53.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13262 (0x33ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 24 01:38:09 2023 GMT
Not After : Jul 24 01:38:09 2024 GMT
Subject: CN=64bdd604-e3ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f8:9e:99:ee:5c:1a:23:3e:8c:27:a7:b5:79:
f4:07:0d:e0:8d:ce:82:ea:ad:3b:cb:85:1d:0f:98:
71:5c:78:be:41:97:4e:b3:3a:5f:3e:c6:50:6e:a8:
8c:8d:87:36:71:ce:61:f0:8d:79:cf:10:6c:d7:36:
33:27:58:09:6c:86:3d:2d:54:aa:9a:35:7e:e9:f0:
4d:71:91:66:25:c0:1b:20:82:9b:0e:fd:9b:d9:9c:
67:15:30:4e:7b:d9:6d:a5:1d:57:bb:b8:58:2f:75:
3f:67:13:3e:ee:b9:86:ce:c2:a0:02:0d:af:55:17:
6e:d4:1b:ee:14:a1:0c:3e:9c:fa:66:37:f4:7a:46:
43:8a:7a:27:df:b8:3e:30:ad:c2:ec:32:97:8c:99:
bc:8e:a0:d5:ca:0e:4f:d7:73:fe:9f:41:6e:e1:c1:
c0:99:fa:25:55:ac:06:74:13:42:6e:b0:f2:03:c9:
1c:33:28:2e:57:8b:be:47:c2:60:df:22:de:90:80:
a7:0a:e6:ca:34:1d:a1:50:92:4a:dd:2a:74:b3:71:
fb:e4:77:98:8a:a5:06:ca:f1:14:28:60:1b:b3:2d:
a8:7f:ec:7e:f7:c9:93:96:6b:9c:50:75:40:a7:d5:
89:db:51:99:e9:3d:f1:db:50:a1:37:bc:8f:67:22:
a8:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:B6:8B:BD:D5:A0:2F:B4:FD:71:A4:F4:5D:C5:22:B4:37:29:D4:01
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C071752C29C211EE8A7126264AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.53.0/24
Signature Algorithm: sha256WithRSAEncryption
17:16:f2:ed:45:72:b5:11:45:b6:f6:8f:c4:52:46:13:2f:81:
83:b8:e7:45:d2:2f:eb:da:50:15:06:71:de:b5:51:78:27:8c:
d0:4d:7d:20:72:a3:3c:56:b6:86:58:91:5b:c8:ad:b5:df:f6:
25:7a:e7:b2:12:f8:17:ec:ed:84:78:8f:e1:c2:dc:53:1a:ba:
ad:3d:9b:e9:6e:c9:f4:9b:b6:03:67:b3:22:3a:e6:58:4b:e3:
1a:ba:18:6d:72:f2:1e:e8:22:bd:58:07:ff:9b:71:16:68:49:
56:20:64:5d:d9:77:98:32:40:74:ef:31:32:94:fa:4b:a6:d7:
b1:68:30:a3:47:44:8e:35:2a:44:38:37:7e:eb:8e:95:81:de:
73:d2:59:6d:f4:af:23:48:fd:84:0f:2e:3a:1d:2f:65:52:3f:
d1:01:3d:26:c6:0d:2d:09:51:65:c8:ed:11:c4:c2:b5:9e:51:
c1:37:26:8f:a4:cf:89:e6:f3:b2:27:ca:d2:9c:9c:74:20:5f:
f4:63:50:bb:a0:bb:47:62:dc:97:aa:5f:ac:ac:08:8b:0b:fa:
9e:32:c5:78:fc:2e:d9:3c:27:aa:8c:71:ef:c8:15:68:3d:a6:
03:8d:ef:35:5f:ff:2d:09:40:2e:51:37:45:59:b5:54:43:09:
e1:fc:2a:0b
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICM84wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA3MjQwMTM4MDlaFw0yNDA3MjQwMTM4MDlaMBgxFjAU
BgNVBAMTDTY0YmRkNjA0LWUzYWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDC+J6Z7lwaIz6MJ6e1efQHDeCNzoLqrTvLhR0PmHFceL5Bl06zOl8+xlBu
qIyNhzZxzmHwjXnPEGzXNjMnWAlshj0tVKqaNX7p8E1xkWYlwBsggpsO/ZvZnGcV
ME572W2lHVe7uFgvdT9nEz7uuYbOwqACDa9VF27UG+4UoQw+nPpmN/R6RkOKeiff
uD4wrcLsMpeMmbyOoNXKDk/Xc/6fQW7hwcCZ+iVVrAZ0E0JusPIDyRwzKC5Xi75H
wmDfIt6QgKcK5so0HaFQkkrdKnSzcfvkd5iKpQbK8RQoYBuzLah/7H73yZOWa5xQ
dUCn1YnbUZnpPfHbUKE3vI9nIqjDAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUZbaL
vdWgL7T9caT0XcUitDcp1AEwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4L0MwNzE3NTJDMjlDMjExRUU4QTcxMjYyNjRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACazDUwDQYJKoZIhvcNAQEL
BQADggEBABcW8u1FcrURRbb2j8RSRhMvgYO450XSL+vaUBUGcd61UXgnjNBNfSBy
ozxWtoZYkVvIrbXf9iV657IS+Bfs7YR4j+HC3FMauq09m+luyfSbtgNnsyI65lhL
4xq6GG1y8h7oIr1YB/+bcRZoSVYgZF3Zd5gyQHTvMTKU+kum17FoMKNHRI41KkQ4
N37rjpWB3nPSWW30ryNI/YQPLjodL2VSP9EBPSbGDS0JUWXI7RHEwrWeUcE3Jo+k
z4nm87InytKcnHQgX/RjULugu0di3JeqX6ysCIsL+p4yxXj8Ltk8J6qMce/IFWg9
pgON7zVf/y0JQC5RN0VZtVRDCeH8Kgs=
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:37 2024 by rpki-client on console-fra.rpki-client.org