Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DB4B4A8E53A311EE9EF2EC6C4AD9E6FC.roa
File: DB4B4A8E53A311EE9EF2EC6C4AD9E6FC.roa (raw, json)
Hash identifier: nNjM6NaLkPhm37FCbejeEqsp5JWZHe+o8EwS9ahPyAY=
Subject key identifier: 6F:77:24:97:33:D8:EE:D1:25:D3:21:FC:D4:43:01:9C:5C:9D:1E:3A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3DB3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DB4B4A8E53A311EE9EF2EC6C4AD9E6FC.roa
Signing time: Fri 15 Sep 2023 08:42:52 +0000
ROA not before: Fri 15 Sep 2023 08:42:49 +0000
ROA not after: Sat 08 Jun 2024 08:42:49 +0000
asID: 136970
IP address blocks: 154.197.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15795 (0x3db3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 08:42:49 2023 GMT
Not After : Jun 8 08:42:49 2024 GMT
Subject: CN=6504190c-e5c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9e:55:ab:c9:9a:01:af:f9:e8:fa:6d:6d:5b:
66:cd:58:b8:5c:1c:f0:5b:32:8a:62:a2:c1:1b:64:
b4:91:05:ac:6c:ad:f5:a2:06:57:bd:a9:4c:84:e5:
cd:a0:3e:79:19:1b:93:db:9a:99:00:29:b7:ef:1a:
78:4e:78:49:c8:07:92:05:cf:af:35:61:bb:a5:3a:
fc:41:50:a0:c5:4f:77:b9:67:66:91:63:12:34:a9:
fb:4d:95:ab:b6:14:72:b2:93:29:57:62:67:5a:9f:
72:37:35:0a:de:6e:89:0c:94:44:15:da:88:40:6c:
7c:ba:be:1c:c3:61:09:57:0c:f6:7d:bb:c3:9b:50:
41:09:c7:08:a1:aa:22:b8:78:3e:63:ea:de:7f:21:
5e:d2:39:3c:e7:c4:f1:ec:a8:ab:5e:34:d8:3a:68:
9b:f1:f7:b4:55:31:da:ae:a2:e3:6c:5a:cc:67:32:
d2:f2:ef:63:b8:7c:0d:88:e0:35:d6:59:85:22:68:
f2:15:d8:1d:2b:b3:bd:f9:e8:6f:4b:17:28:75:07:
80:fd:82:d4:66:60:e3:b8:72:92:90:ed:b9:5a:3d:
6b:3e:4c:d4:85:f8:c3:cb:11:eb:b9:ba:34:af:8f:
50:f2:87:cc:19:97:5c:96:90:f8:13:01:5f:7e:36:
81:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:77:24:97:33:D8:EE:D1:25:D3:21:FC:D4:43:01:9C:5C:9D:1E:3A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DB4B4A8E53A311EE9EF2EC6C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.5.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:34:65:7a:27:18:5d:f6:c4:0b:b7:90:d0:ca:be:9a:5e:e1:
57:9d:73:f0:d5:1b:3a:e2:87:07:4f:7c:78:8f:30:96:98:28:
43:bf:91:d9:13:5a:52:09:15:e3:78:dd:3c:42:5f:9e:de:17:
2c:8f:8c:cf:cd:c8:76:bd:2f:03:4e:54:90:cd:12:86:e4:ac:
71:1f:e9:4b:81:0e:7d:35:fb:c1:70:d3:84:26:7a:2a:b2:8a:
32:3f:34:a8:85:7f:01:a4:9b:87:6d:96:5b:77:0d:fe:b5:4b:
08:3e:9e:c0:28:cf:5d:d6:93:c2:7d:72:6a:42:de:8b:57:5a:
b9:80:7d:6d:3b:dc:a5:5e:94:aa:24:f5:f8:2e:a9:54:b7:10:
2f:ab:18:15:31:29:7d:8b:3a:e3:bc:45:e4:45:58:eb:15:aa:
ad:32:ed:45:b2:40:bf:c1:f2:43:f7:1c:59:00:dc:90:d4:c9:
1d:98:58:d2:b4:ac:5e:45:52:d8:07:64:96:ba:e1:f1:30:9e:
01:2d:a8:22:7f:96:ee:9b:f6:6f:20:55:21:07:04:07:7f:65:
99:97:df:d3:7a:49:07:5f:c6:4a:79:1a:24:2f:5f:dc:49:ac:
ee:03:1e:52:cb:39:3b:01:4d:7a:6c:65:57:92:d7:12:4d:00:
8d:0e:5a:14
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICPbMwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA5MTUwODQyNDlaFw0yNDA2MDgwODQyNDlaMBgxFjAU
BgNVBAMTDTY1MDQxOTBjLWU1YzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC6nlWryZoBr/no+m1tW2bNWLhcHPBbMopiosEbZLSRBaxsrfWiBle9qUyE
5c2gPnkZG5PbmpkAKbfvGnhOeEnIB5IFz681YbulOvxBUKDFT3e5Z2aRYxI0qftN
lau2FHKykylXYmdan3I3NQrebokMlEQV2ohAbHy6vhzDYQlXDPZ9u8ObUEEJxwih
qiK4eD5j6t5/IV7SOTznxPHsqKteNNg6aJvx97RVMdquouNsWsxnMtLy72O4fA2I
4DXWWYUiaPIV2B0rs7356G9LFyh1B4D9gtRmYOO4cpKQ7blaPWs+TNSF+MPLEeu5
ujSvj1Dyh8wZl1yWkPgTAV9+NoHfAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUb3ck
lzPY7tEl0yH81EMBnFydHjowHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4L0RCNEI0QThFNTNBMzExRUU5RUYyRUM2QzRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaxQUwDQYJKoZIhvcNAQEL
BQADggEBAF80ZXonGF32xAu3kNDKvppe4Vedc/DVGzrihwdPfHiPMJaYKEO/kdkT
WlIJFeN43TxCX57eFyyPjM/NyHa9LwNOVJDNEobkrHEf6UuBDn01+8Fw04Qmeiqy
ijI/NKiFfwGkm4dtllt3Df61Swg+nsAoz13Wk8J9cmpC3otXWrmAfW073KVelKok
9fguqVS3EC+rGBUxKX2LOuO8ReRFWOsVqq0y7UWyQL/B8kP3HFkA3JDUyR2YWNK0
rF5FUtgHZJa64fEwngEtqCJ/lu6b9m8gVSEHBAd/ZZmX39N6SQdfxkp5GiQvX9xJ
rO4DHlLLOTsBTXpsZVeS1xJNAI0OWhQ=
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:40 2024 by rpki-client on console-fra.rpki-client.org