Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1E54C4A7F0E11EF97FEFD50762E951A.roa
File: E1E54C4A7F0E11EF97FEFD50762E951A.roa (raw, json)
Hash identifier: 6vfY/e5NO3Fvqv8nHcVLdg9k0Uf0zaCM+R04METKulc=
Subject key identifier: 11:5C:84:F8:38:ED:06:FC:DC:A1:A5:AF:FA:65:05:F0:EA:DA:2A:07
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F5AE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1E54C4A7F0E11EF97FEFD50762E951A.roa
Signing time: Mon 30 Sep 2024 09:32:17 +0000
ROA not before: Mon 30 Sep 2024 09:32:13 +0000
ROA not after: Sat 30 Nov 2024 09:32:13 +0000
asID: 138915
IP address blocks: 154.94.86.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62894 (0xf5ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 30 09:32:13 2024 GMT
Not After : Nov 30 09:32:13 2024 GMT
Subject: CN=66fa7021-b0d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:07:e4:16:e5:9a:d8:f3:fe:e0:ea:a4:27:bb:
4b:da:03:61:6e:5a:61:c7:cd:68:a0:d8:65:06:ab:
06:d1:59:9e:8a:05:4f:90:6f:85:ba:3e:a1:8b:ed:
39:d2:e0:e6:ee:7d:46:60:33:b8:c3:39:67:d6:8a:
97:5d:cc:ed:14:49:5c:81:ee:a3:64:0d:02:81:82:
ae:6c:de:03:78:ab:f1:34:3d:66:4c:be:6d:0f:f4:
e8:09:e4:49:92:3b:f6:94:56:ca:df:2d:5f:cc:1d:
23:63:a2:dc:a9:f1:3d:49:3f:99:33:ad:06:c2:e7:
4d:9c:ad:24:fe:23:af:df:49:99:12:eb:1b:a6:6c:
24:61:c6:d3:b5:67:78:8c:59:c6:02:13:1f:f7:33:
a8:4c:5a:47:a0:2a:04:93:a0:7d:d4:a0:e0:3f:c3:
c8:d7:77:7c:e7:44:d5:36:69:9c:1d:e9:11:1d:40:
34:24:38:f0:65:cd:28:76:7f:d8:83:8a:28:10:4a:
1d:02:a1:b5:c9:7b:ee:8c:3e:9a:4f:86:b5:fe:75:
81:d5:f1:97:d7:a9:59:a1:2e:7b:e7:f4:dd:be:c9:
5f:ee:d7:63:10:78:35:fc:85:e4:6b:ec:ba:00:bd:
6b:56:e0:c1:69:eb:21:da:33:ee:ce:f6:51:83:13:
0f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:5C:84:F8:38:ED:06:FC:DC:A1:A5:AF:FA:65:05:F0:EA:DA:2A:07
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1E54C4A7F0E11EF97FEFD50762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.86.0/23
Signature Algorithm: sha256WithRSAEncryption
79:cb:3c:dd:99:fd:2b:7e:ae:f1:3d:86:f3:54:05:7e:98:10:
e0:e8:db:08:fc:32:59:3a:48:e8:33:92:84:b9:7b:7e:81:3b:
14:34:3d:43:5e:37:90:c4:24:e5:0e:8b:cc:12:72:4d:05:df:
c4:9a:e2:6e:4b:77:59:33:a3:d5:86:3c:fe:05:d1:8c:bd:d6:
45:3a:ee:a4:bb:29:d0:11:de:34:ad:87:a7:0f:fd:bb:fa:c6:
db:93:b9:9f:b5:5d:a9:64:2f:73:82:e7:32:7c:45:03:a7:6b:
b7:de:c3:e1:12:4b:17:52:7f:dd:56:9f:54:1c:80:f6:5c:7e:
44:97:89:0b:7a:c9:0f:29:c0:e3:d8:4e:cc:0e:c0:4e:80:1a:
b3:94:40:d5:b5:22:af:2b:f0:ef:a0:50:97:14:2b:98:81:ab:
67:c0:5b:0e:ec:30:f3:61:c0:c8:b4:9c:f3:78:f5:a3:5e:00:
bd:56:86:36:ef:1e:f9:6a:58:47:fe:96:57:dd:78:ec:34:1b:
00:c5:c1:11:ad:7d:c1:c4:f0:c3:b7:95:b5:8b:06:33:9a:e0:
f6:f2:00:44:dd:29:0d:75:4a:27:3a:20:84:48:6e:12:f5:a7:
e0:ca:45:65:62:c8:5a:f0:ce:ac:af:7c:2a:c9:68:10:1e:ab:
0c:9e:8f:e1
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAPWuMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwOTMwMDkzMjEzWhcNMjQxMTMwMDkzMjEzWjAYMRYw
FAYDVQQDEw02NmZhNzAyMS1iMGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAmQfkFuWa2PP+4OqkJ7tL2gNhblphx81ooNhlBqsG0VmeigVPkG+Fuj6h
i+050uDm7n1GYDO4wzln1oqXXcztFElcge6jZA0CgYKubN4DeKvxND1mTL5tD/To
CeRJkjv2lFbK3y1fzB0jY6LcqfE9ST+ZM60GwudNnK0k/iOv30mZEusbpmwkYcbT
tWd4jFnGAhMf9zOoTFpHoCoEk6B91KDgP8PI13d850TVNmmcHekRHUA0JDjwZc0o
dn/Yg4ooEEodAqG1yXvujD6aT4a1/nWB1fGX16lZoS575/Tdvslf7tdjEHg1/IXk
a+y6AL1rVuDBaesh2jPuzvZRgxMPOwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFBFc
hPg47Qb83KGlr/plBfDq2ioHMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FMUU1NEM0QTdGMEUxMUVGOTdGRUZENTA3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBml5WMA0GCSqGSIb3DQEB
CwUAA4IBAQB5yzzdmf0rfq7xPYbzVAV+mBDg6NsI/DJZOkjoM5KEuXt+gTsUND1D
XjeQxCTlDovMEnJNBd/EmuJuS3dZM6PVhjz+BdGMvdZFOu6kuynQEd40rYenD/27
+sbbk7mftV2pZC9zgucyfEUDp2u33sPhEksXUn/dVp9UHID2XH5El4kLeskPKcDj
2E7MDsBOgBqzlEDVtSKvK/DvoFCXFCuYgatnwFsO7DDzYcDItJzzePWjXgC9VoY2
7x75alhH/pZX3XjsNBsAxcERrX3BxPDDt5W1iwYzmuD28gBE3SkNdUonOiCESG4S
9afgykVlYsha8M6sr3wqyWgQHqsMno/h
-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:42 2024 by rpki-client on console-ams.rpki-client.org