Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D78EBCAE9B6F11EF842BF7B9762E951A.roa
File: D78EBCAE9B6F11EF842BF7B9762E951A.roa (raw, json)
Hash identifier: XxvvBozaoXNPlLLWX/gW0j/+hJ7/rISquafKk6LqtlM=
Subject key identifier: F3:10:C3:37:85:BF:82:2F:0B:6F:3C:35:0B:07:3B:4A:1F:13:A4:22
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0107A9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D78EBCAE9B6F11EF842BF7B9762E951A.roa
Signing time: Tue 05 Nov 2024 12:16:53 +0000
ROA not before: Tue 05 Nov 2024 12:16:50 +0000
ROA not after: Mon 13 Jan 2025 12:16:50 +0000
asID: 22773
IP address blocks: 154.88.18.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67497 (0x107a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 5 12:16:50 2024 GMT
Not After : Jan 13 12:16:50 2025 GMT
Subject: CN=672a0cb5-54a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:91:d2:e9:6d:80:db:e2:fa:53:30:9d:3a:6c:
a2:af:1e:ad:54:b8:8c:30:f0:81:19:ea:1b:79:9a:
87:3a:46:01:9b:ef:30:db:85:08:1d:e2:0c:88:17:
aa:94:87:75:9f:3f:61:27:a5:02:f0:02:4b:56:d3:
5d:77:58:85:95:05:6a:0a:ab:91:21:d0:c9:61:d8:
e3:9e:50:fd:a7:02:d9:a0:24:98:d6:22:b3:1c:00:
4d:b8:54:62:f3:d7:06:9f:f2:f0:96:c6:26:5a:6e:
6f:03:03:df:68:e5:4f:28:a7:7e:d9:1a:15:7d:c7:
67:df:1e:0a:85:00:cb:b3:74:a2:13:e5:33:a0:59:
5f:5b:eb:58:e1:94:a9:21:2e:e4:8c:ff:f5:26:6c:
80:5e:bd:48:b0:59:fa:72:d2:26:5b:fc:1c:64:cb:
6b:1e:9e:1c:c9:28:55:fd:9d:f0:8d:98:b1:15:4c:
21:fe:2b:c3:f1:18:d4:78:b9:0c:ab:d7:32:ea:db:
d2:db:e0:a8:0e:e6:d1:6e:86:e9:a1:61:10:e8:78:
01:31:6d:1b:c5:36:02:6d:12:42:4a:76:9d:bf:b7:
de:a2:73:ae:2a:8f:e0:08:48:72:f1:96:62:23:ab:
78:e0:d3:82:da:12:72:3e:e4:4e:13:b5:f3:e2:2c:
7d:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:10:C3:37:85:BF:82:2F:0B:6F:3C:35:0B:07:3B:4A:1F:13:A4:22
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D78EBCAE9B6F11EF842BF7B9762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.18.0/23
Signature Algorithm: sha256WithRSAEncryption
9d:d3:3d:a0:b9:6a:1a:e5:b1:7c:c0:b5:c0:91:7a:45:74:ef:
ac:bc:97:1a:ca:5b:f6:12:e7:69:cb:f8:a8:1c:5e:25:9b:5c:
94:2e:e3:bc:09:36:4f:e4:1a:5a:cb:d2:0e:ef:a7:b6:1e:c5:
69:cf:9e:ad:31:4f:ef:22:c4:e7:89:f7:ae:8d:0f:c7:94:08:
ba:c2:de:9a:53:ae:f2:9e:56:e2:d4:33:b1:b7:bb:b9:15:a9:
e4:d0:83:64:c3:7f:14:9e:c8:d5:65:77:57:55:53:75:60:c9:
f2:15:60:fd:b3:98:b2:5e:65:12:a9:e1:2a:bc:69:55:2e:c3:
da:53:db:a5:5f:bc:eb:5e:b8:82:c1:e0:3e:b8:b4:90:c2:b7:
4b:f7:f2:f3:40:b6:54:69:62:a9:47:2c:da:52:04:05:eb:ac:
f7:af:44:0f:83:8c:a5:74:ea:1b:91:22:52:a1:70:2d:67:de:
59:59:8b:b3:d0:f3:56:25:5a:b9:6d:ee:7e:9b:97:4e:fc:3b:
93:99:74:15:8e:41:6a:00:54:1f:fd:0b:de:87:51:a0:83:78:
25:71:6f:5a:c6:d8:9a:57:11:95:eb:b6:a3:f1:db:34:c8:c2:
b9:de:af:02:93:37:fe:7e:48:81:21:89:5f:cd:cb:1b:eb:75:
f1:73:79:cf
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQepMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTA1MTIxNjUwWhcNMjUwMTEzMTIxNjUwWjAYMRYw
FAYDVQQDEw02NzJhMGNiNS01NGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA4pHS6W2A2+L6UzCdOmyirx6tVLiMMPCBGeobeZqHOkYBm+8w24UIHeIM
iBeqlId1nz9hJ6UC8AJLVtNdd1iFlQVqCquRIdDJYdjjnlD9pwLZoCSY1iKzHABN
uFRi89cGn/LwlsYmWm5vAwPfaOVPKKd+2RoVfcdn3x4KhQDLs3SiE+UzoFlfW+tY
4ZSpIS7kjP/1JmyAXr1IsFn6ctImW/wcZMtrHp4cyShV/Z3wjZixFUwh/ivD8RjU
eLkMq9cy6tvS2+CoDubRbobpoWEQ6HgBMW0bxTYCbRJCSnadv7feonOuKo/gCEhy
8ZZiI6t44NOC2hJyPuROE7Xz4ix9WwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPMQ
wzeFv4IvC288NQsHO0ofE6QiMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9ENzhFQkNBRTlCNkYxMUVGODQyQkY3Qjk3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmlgSMA0GCSqGSIb3DQEB
CwUAA4IBAQCd0z2guWoa5bF8wLXAkXpFdO+svJcaylv2Eudpy/ioHF4lm1yULuO8
CTZP5Bpay9IO76e2HsVpz56tMU/vIsTnifeujQ/HlAi6wt6aU67ynlbi1DOxt7u5
Fank0INkw38UnsjVZXdXVVN1YMnyFWD9s5iyXmUSqeEqvGlVLsPaU9ulX7zrXriC
weA+uLSQwrdL9/LzQLZUaWKpRyzaUgQF66z3r0QPg4yldOobkSJSoXAtZ95ZWYuz
0PNWJVq5be5+m5dO/DuTmXQVjkFqAFQf/Qveh1Ggg3glcW9axtiaVxGV67aj8ds0
yMK53q8Ckzf+fkiBIYlfzcsb63Xxc3nP
-----END CERTIFICATE-----
Generated at Sun Nov 24 18:35:22 2024 by rpki-client on console-fra.rpki-client.org