![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01DE69861E5311EF92387E0D7DDC24C2.roa
File: 01DE69861E5311EF92387E0D7DDC24C2.roa (raw, json)
Hash identifier: A2O3BTaBVg696V2g6VtnV8jTS9W55V3jzsz2bXLb7Z0=
Subject key identifier: E6:3F:17:CC:2D:6F:76:E8:1F:A6:84:CE:DF:E9:9D:39:CD:84:5D:A1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: BC00
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01DE69861E5311EF92387E0D7DDC24C2.roa
Signing time: Thu 30 May 2024 07:05:33 +0000
ROA not before: Thu 30 May 2024 07:05:30 +0000
ROA not after: Mon 01 Jul 2024 07:05:30 +0000
asID: 44559
IP address blocks: 154.209.135.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 28 Jun 2024 00:05:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48128 (0xbc00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 30 07:05:30 2024 GMT
Not After : Jul 1 07:05:30 2024 GMT
Subject: CN=6658253d-5fea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a1:77:23:1c:1f:c9:d5:87:36:99:ae:22:d3:
e9:bb:8c:43:4b:74:e2:e2:d7:6a:4b:34:29:f7:94:
aa:42:4d:6a:8d:73:8d:05:59:08:63:1f:68:14:5a:
1d:ca:35:31:63:e4:97:f8:fa:4e:ae:99:0a:60:7b:
b8:db:28:37:df:74:57:ea:96:de:dd:ef:e0:2b:df:
97:ec:b7:35:66:e2:2a:f5:47:3d:5e:54:f1:f4:57:
6b:32:ee:cf:e2:0c:34:9d:9d:46:24:78:cd:5e:53:
55:e0:dc:7a:6e:77:7d:8f:7f:22:eb:52:f0:87:a1:
b2:f7:d4:6e:70:17:1e:0a:80:f6:75:65:55:ff:e8:
5e:3b:bd:02:ba:44:ee:f5:e9:4a:83:53:e8:9a:16:
8b:98:fa:17:f0:51:17:0f:e1:5b:0a:46:fd:da:ef:
6f:30:d1:e3:d3:60:a3:20:32:b6:73:b3:d1:3d:13:
fa:6d:09:d0:cf:11:a4:0e:4b:f6:b8:30:c7:cc:18:
8c:4f:67:8e:a6:a5:23:45:91:cb:47:cb:2d:26:32:
3e:93:7d:3d:cc:0d:ac:29:e0:cd:24:94:f3:9e:5c:
36:33:a8:32:cb:7a:bb:7f:be:08:70:2d:ed:09:e4:
af:c3:c0:ea:7b:08:fb:d5:9f:14:66:98:90:37:d2:
81:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:3F:17:CC:2D:6F:76:E8:1F:A6:84:CE:DF:E9:9D:39:CD:84:5D:A1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01DE69861E5311EF92387E0D7DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.135.0/24
Signature Algorithm: sha256WithRSAEncryption
93:b4:56:e3:4d:ce:32:9f:c5:a9:90:17:8f:3c:f1:0b:98:91:
91:3f:00:45:bb:2c:be:5c:25:d9:31:ea:9f:30:6e:2b:c2:25:
8e:f2:b7:2c:47:80:64:c6:63:dc:4e:13:b8:3e:6f:10:2d:b7:
1a:d0:c9:19:27:a9:34:90:6f:2e:85:9c:28:7e:71:6c:c2:8f:
42:57:22:dc:e4:c8:c3:fe:68:b3:34:17:63:cb:ba:c7:2a:75:
0d:e8:f0:37:92:76:1e:b9:6e:9e:6a:1e:fc:3a:70:0b:21:33:
80:e1:64:78:62:70:24:28:62:29:6c:2e:2e:4f:d2:68:02:cf:
ee:90:85:d6:40:cd:52:a1:3e:03:0f:74:40:9a:51:8b:74:f7:
e7:d8:ab:f3:75:7a:ae:d2:4b:c3:d4:48:31:b5:de:53:91:11:
e8:fd:29:f1:5e:1b:ae:19:03:0e:0d:c4:a0:d8:d1:2e:bc:16:
3f:dc:73:dd:01:fc:09:7c:e5:e6:c3:0f:c6:3b:fb:a4:9f:04:
4b:c5:67:9b:c7:94:d4:04:f0:38:c2:c5:75:30:88:51:92:8c:
e3:58:7d:b0:f1:18:9c:29:b8:a4:f2:dc:d7:87:ba:3b:d2:89:
fc:f0:6e:dc:d9:86:1e:94:30:38:8b:a6:d2:18:0b:a4:64:0c:
ae:8c:27:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 02:44:52 2024 by rpki-client on console-fra.rpki-client.org