Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DF142DA6A71D11EF9D74D067762E951A.roa
File: DF142DA6A71D11EF9D74D067762E951A.roa (raw, json)
Hash identifier: nePrnOXqtTN6KVW1MHQqpCN72PWapKvzIm4wV/1+GTg=
Subject key identifier: 00:A8:59:D0:2E:5E:F4:45:34:1E:F4:83:50:13:23:65:3E:E8:B1:C4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010F4B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DF142DA6A71D11EF9D74D067762E951A.roa
Signing time: Wed 20 Nov 2024 09:00:21 +0000
ROA not before: Wed 20 Nov 2024 09:00:17 +0000
ROA not after: Thu 05 Dec 2024 09:00:17 +0000
asID: 5065
IP address blocks: 154.94.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69451 (0x10f4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 09:00:17 2024 GMT
Not After : Dec 5 09:00:17 2024 GMT
Subject: CN=673da525-0a9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1b:20:34:95:12:a6:6d:26:cd:21:f0:35:ee:
d6:9e:1e:a1:85:bc:19:75:49:a2:d1:a5:dd:3b:0c:
65:4c:30:99:2a:6e:7c:fc:00:57:ae:da:dc:34:eb:
39:58:dd:69:32:1a:bc:6a:1e:ea:a8:9b:cd:2e:43:
82:b4:70:fc:f9:4f:20:39:5b:98:4f:07:02:8e:f6:
cc:fa:83:b9:ae:60:08:7b:3c:58:11:4b:f3:48:ed:
7a:2f:93:bc:c6:9c:cb:22:ed:8c:a7:0d:90:37:66:
9b:3b:60:68:11:e2:83:ee:87:9d:13:87:73:da:d6:
e0:33:98:02:5d:77:48:9d:a4:f2:48:e2:37:31:e1:
7f:1b:55:49:e7:06:ad:f0:5e:35:24:ec:d6:52:4e:
04:77:d4:e8:68:c8:1d:ea:75:d1:42:9c:3d:df:97:
21:57:da:c1:e6:b3:7d:97:46:8a:8e:55:2d:de:67:
50:b8:47:93:49:36:68:f1:b6:56:d5:1f:3a:39:4d:
a6:b8:fd:19:cf:06:be:9f:6d:5e:f8:3f:41:29:b2:
aa:1e:42:d1:70:83:39:45:c0:8d:7f:50:f5:ef:c4:
ce:31:53:6c:c8:69:99:9a:4b:68:5d:1e:52:55:a8:
f9:d5:df:b3:f6:2f:8b:8a:2e:83:15:e7:ec:ae:16:
6c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:A8:59:D0:2E:5E:F4:45:34:1E:F4:83:50:13:23:65:3E:E8:B1:C4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DF142DA6A71D11EF9D74D067762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.47.0/24
Signature Algorithm: sha256WithRSAEncryption
57:3f:51:77:c3:05:ae:66:37:46:e5:77:6d:15:45:c9:06:38:
f0:b5:81:fc:ee:11:e8:3e:4f:07:62:e0:34:98:ec:eb:56:b3:
61:77:53:38:62:b5:f0:c3:00:70:ce:d7:25:17:61:05:03:77:
6e:72:9a:6b:eb:09:35:f5:0b:6c:85:29:a0:ba:3c:07:b3:9a:
a9:f1:c2:5a:01:73:49:7d:f9:06:c1:7f:c6:b2:d5:52:4a:9c:
bd:bd:3c:3d:23:b3:91:9a:16:66:2e:a5:5c:04:c4:14:19:e6:
d9:0c:dc:fc:72:ec:1e:45:9d:73:0c:01:f9:4e:be:d3:a2:aa:
73:f4:f6:23:78:fe:66:0f:a4:b4:5a:e3:1e:99:83:94:5a:79:
6d:6a:c0:b6:86:bf:90:99:5c:11:66:d2:d2:94:bd:e4:bd:30:
43:62:34:f4:e2:75:3f:a7:6e:09:a5:b1:6b:2d:33:44:34:02:
d4:cb:9e:64:2c:e1:4f:30:6e:af:a9:b2:ee:38:fc:fc:b2:dc:
11:8a:a4:6a:50:8a:5b:92:ff:50:63:88:55:3e:f5:a0:89:80:
16:6a:f0:5f:55:f5:74:6e:e1:c2:98:a6:a5:91:d0:7e:2a:72:
5e:56:d5:34:7c:af:88:e9:68:4f:16:7a:4c:1c:18:d4:b2:0f:
18:5c:8e:73
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ9LMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTIwMDkwMDE3WhcNMjQxMjA1MDkwMDE3WjAYMRYw
FAYDVQQDEw02NzNkYTUyNS0wYTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvxsgNJUSpm0mzSHwNe7Wnh6hhbwZdUmi0aXdOwxlTDCZKm58/ABXrtrc
NOs5WN1pMhq8ah7qqJvNLkOCtHD8+U8gOVuYTwcCjvbM+oO5rmAIezxYEUvzSO16
L5O8xpzLIu2Mpw2QN2abO2BoEeKD7oedE4dz2tbgM5gCXXdInaTySOI3MeF/G1VJ
5wat8F41JOzWUk4Ed9ToaMgd6nXRQpw935chV9rB5rN9l0aKjlUt3mdQuEeTSTZo
8bZW1R86OU2muP0Zzwa+n21e+D9BKbKqHkLRcIM5RcCNf1D178TOMVNsyGmZmkto
XR5SVaj51d+z9i+Lii6DFefsrhZsrQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFACo
WdAuXvRFNB70g1ATI2U+6LHEMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9ERjE0MkRBNkE3MUQxMUVGOUQ3NEQwNjc3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml4vMA0GCSqGSIb3DQEB
CwUAA4IBAQBXP1F3wwWuZjdG5XdtFUXJBjjwtYH87hHoPk8HYuA0mOzrVrNhd1M4
YrXwwwBwztclF2EFA3ducppr6wk19QtshSmgujwHs5qp8cJaAXNJffkGwX/GstVS
Spy9vTw9I7ORmhZmLqVcBMQUGebZDNz8cuweRZ1zDAH5Tr7Toqpz9PYjeP5mD6S0
WuMemYOUWnltasC2hr+QmVwRZtLSlL3kvTBDYjT04nU/p24JpbFrLTNENALUy55k
LOFPMG6vqbLuOPz8stwRiqRqUIpbkv9QY4hVPvWgiYAWavBfVfV0buHCmKalkdB+
KnJeVtU0fK+I6WhPFnpMHBjUsg8YXI5z
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:11 2024 by rpki-client on console-ams.rpki-client.org