Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0B6CBA46062C11EF83A84535017001B1.roa
File: 0B6CBA46062C11EF83A84535017001B1.roa (raw, json)
Hash identifier: wbJek0/1DY0uLvRthqOLZ0yUWwvWJRpJ4LS6Hilgfgs=
Subject key identifier: 48:CB:95:DA:35:91:92:7E:0C:57:6D:0C:5D:46:9F:6A:7A:26:81:48
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B26E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0B6CBA46062C11EF83A84535017001B1.roa
Signing time: Mon 29 Apr 2024 13:26:11 +0000
ROA not before: Mon 29 Apr 2024 13:26:08 +0000
ROA not after: Fri 07 Jun 2024 13:26:08 +0000
asID: 138915
IP address blocks: 154.223.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45678 (0xb26e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 13:26:08 2024 GMT
Not After : Jun 7 13:26:08 2024 GMT
Subject: CN=662f9ff3-5df3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7e:e8:c1:34:44:ef:25:ec:5d:73:79:c8:6e:
5c:b9:6b:9e:cf:41:39:8a:cb:29:48:77:a9:27:e3:
8b:81:06:12:d3:e9:59:17:69:c9:f7:4b:d2:c1:84:
80:a5:86:ee:67:7d:e2:21:cd:92:fb:8d:74:5b:00:
d9:04:ea:ab:4c:0c:d9:97:87:a3:ed:7b:05:64:cd:
ec:fd:e3:c2:af:cb:29:e1:05:60:43:22:5d:cd:27:
63:82:e0:c0:7e:2f:dd:f8:3e:71:0d:57:2a:7a:c6:
88:1d:b2:d3:01:72:b4:65:f9:3c:f1:5b:6e:fc:dc:
a0:99:43:a8:54:e7:5f:2d:7a:56:45:42:98:06:34:
fc:04:7a:45:ab:20:d9:e8:a3:49:78:bb:44:9b:b8:
9d:89:08:d7:a1:f4:42:4f:67:c5:1f:05:81:e1:be:
7f:4f:ec:d0:e2:29:e2:ef:f7:49:5a:31:3a:3a:e9:
7d:b0:f9:19:ec:a2:86:d7:30:13:6d:ed:29:12:5e:
16:db:f0:91:3b:67:eb:02:04:ce:5d:2f:e5:e5:ff:
96:e7:49:42:63:01:7b:db:0b:ee:f6:d0:77:c9:b7:
ad:d7:5f:15:b3:03:2e:59:c9:3d:47:e8:31:e7:b3:
f7:92:0d:bd:bb:f8:b5:df:d6:9f:d6:94:9b:2a:38:
5e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:CB:95:DA:35:91:92:7E:0C:57:6D:0C:5D:46:9F:6A:7A:26:81:48
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0B6CBA46062C11EF83A84535017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.43.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:23:87:ed:62:94:30:11:0c:f0:d1:e2:72:0a:90:01:9f:d8:
8d:49:53:c9:53:96:ac:df:d2:6a:4c:20:81:c0:86:ca:76:30:
00:9d:6c:c2:b7:cc:e1:2c:a3:23:06:34:2f:5f:3f:60:3c:86:
3d:e9:1e:e5:38:f5:a8:64:c1:0e:dd:d9:c2:a4:fe:a0:03:6c:
b4:d9:08:17:01:46:d0:55:17:d1:4f:0f:50:69:62:90:78:38:
f7:88:7c:62:ee:33:ce:cc:56:54:16:c0:56:9c:45:a1:e5:58:
a8:df:f6:9f:f5:cc:25:85:f4:e1:0a:21:e5:fc:88:91:e1:9e:
26:f2:28:f8:4a:02:26:68:7a:29:8d:96:92:ab:4a:6a:38:32:
eb:2c:81:e7:b2:a2:1d:7d:a0:ad:a3:aa:6f:56:d8:64:0a:2f:
e3:8d:f0:dd:d5:c3:9e:a5:d9:ff:6f:b7:2b:51:b8:5d:aa:ae:
a6:36:9b:48:e1:ea:da:0d:1e:ed:63:3c:e7:80:44:6f:25:3a:
d7:5f:e3:c5:a7:20:cf:9d:ad:58:73:09:62:9a:7e:4f:91:c6:
f2:41:3e:8c:54:07:8a:a6:36:94:52:14:be:09:b3:94:ac:ef:
90:9a:9e:0e:0a:b1:41:62:c3:e4:c6:fc:3e:aa:46:e0:0a:54:
78:b7:be:4f
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALJuMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDI5MTMyNjA4WhcNMjQwNjA3MTMyNjA4WjAYMRYw
FAYDVQQDEw02NjJmOWZmMy01ZGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArX7owTRE7yXsXXN5yG5cuWuez0E5isspSHepJ+OLgQYS0+lZF2nJ90vS
wYSApYbuZ33iIc2S+410WwDZBOqrTAzZl4ej7XsFZM3s/ePCr8sp4QVgQyJdzSdj
guDAfi/d+D5xDVcqesaIHbLTAXK0Zfk88Vtu/NygmUOoVOdfLXpWRUKYBjT8BHpF
qyDZ6KNJeLtEm7idiQjXofRCT2fFHwWB4b5/T+zQ4ini7/dJWjE6Oul9sPkZ7KKG
1zATbe0pEl4W2/CRO2frAgTOXS/l5f+W50lCYwF72wvu9tB3ybet118VswMuWck9
R+gx57P3kg29u/i139af1pSbKjhesQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFEjL
ldo1kZJ+DFdtDF1Gn2p6JoFIMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wQjZDQkE0NjA2MkMxMUVGODNBODQ1MzUwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt8rMA0GCSqGSIb3DQEB
CwUAA4IBAQAOI4ftYpQwEQzw0eJyCpABn9iNSVPJU5as39JqTCCBwIbKdjAAnWzC
t8zhLKMjBjQvXz9gPIY96R7lOPWoZMEO3dnCpP6gA2y02QgXAUbQVRfRTw9QaWKQ
eDj3iHxi7jPOzFZUFsBWnEWh5Vio3/af9cwlhfThCiHl/IiR4Z4m8ij4SgImaHop
jZaSq0pqODLrLIHnsqIdfaCto6pvVthkCi/jjfDd1cOepdn/b7crUbhdqq6mNptI
4eraDR7tYzzngERvJTrXX+PFpyDPna1Ycwlimn5PkcbyQT6MVAeKpjaUUhS+CbOU
rO+Qmp4OCrFBYsPkxvw+qkbgClR4t75P
-----END CERTIFICATE-----
Generated at Sat Jun 1 01:41:17 2024 by rpki-client on console-fra.rpki-client.org