Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/10F98F0E061111EF98145B5D017001B1.roa
File: 10F98F0E061111EF98145B5D017001B1.roa (raw, json)
Hash identifier: CHRkk+lRwuQsoje8VbDIr8P7utQxyxq4Yf7YRo650vM=
Subject key identifier: 72:33:1D:75:E2:C1:1F:7E:D5:B6:57:B7:46:D9:01:EE:8B:05:0C:C2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B232
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/10F98F0E061111EF98145B5D017001B1.roa
Signing time: Mon 29 Apr 2024 10:13:04 +0000
ROA not before: Mon 29 Apr 2024 10:13:01 +0000
ROA not after: Fri 07 Jun 2024 10:13:01 +0000
asID: 138915
IP address blocks: 154.223.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45618 (0xb232)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 10:13:01 2024 GMT
Not After : Jun 7 10:13:01 2024 GMT
Subject: CN=662f72b0-f96a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:1c:46:02:a8:e7:a1:8b:00:78:42:4c:30:1b:
2f:07:18:88:8d:c3:df:cf:47:8a:50:1f:c7:67:68:
45:34:b4:00:8b:12:7d:37:3f:4e:59:11:88:52:87:
01:dc:f5:3e:de:fa:d5:78:9c:3d:1d:ce:dd:b5:59:
b8:82:37:aa:4b:a5:df:92:cf:e3:de:3f:f2:d4:ba:
c7:69:a5:a2:ed:ba:64:ec:27:bd:21:d8:62:14:7c:
6d:3b:64:ed:12:03:d3:44:b8:5e:cf:28:95:f4:ec:
ba:d7:fe:29:b2:6c:c3:fb:6c:94:ff:69:ef:98:49:
29:c0:0c:80:f0:ac:29:cc:cb:d6:f6:dc:74:46:15:
b1:35:fb:9c:89:15:0f:f3:3e:16:9a:e7:86:0f:01:
80:0a:9d:93:36:02:a9:71:25:e5:00:de:ca:a5:53:
5f:d4:84:40:b0:84:45:c8:d5:8d:16:f0:f5:ef:90:
d6:7f:6f:70:d9:4b:ac:5d:a1:89:b9:27:e3:f5:99:
90:92:54:89:3f:ba:0e:1f:87:49:15:e0:f1:ab:9e:
26:dd:8d:c7:bb:c9:eb:75:a6:a5:19:87:0b:d2:ab:
e0:f3:b7:eb:e0:6f:92:65:6d:b9:cf:70:88:a0:49:
fb:18:9f:3c:7f:38:b6:ff:06:be:d3:9e:8f:fe:c9:
c1:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:33:1D:75:E2:C1:1F:7E:D5:B6:57:B7:46:D9:01:EE:8B:05:0C:C2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/10F98F0E061111EF98145B5D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.51.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:3f:6f:9e:34:69:5e:19:85:29:fb:58:8c:5a:3b:63:23:e3:
59:0a:ad:2c:a8:14:70:76:76:48:6d:0e:50:72:71:33:11:2c:
0e:74:e5:16:16:31:f0:bf:4e:b8:ea:96:6c:9b:a6:3b:93:fe:
47:fd:b2:5f:e6:d5:fd:18:e8:c5:40:01:ba:52:19:c7:ab:05:
41:80:d7:df:33:f9:21:33:ef:14:8d:1b:5e:86:43:a4:2b:40:
e2:b6:62:fe:b0:aa:0d:b3:fc:cf:9e:8c:38:8e:15:4b:8d:59:
57:c9:74:6e:d3:f3:67:90:14:6d:fc:c1:01:c3:ed:8d:08:a6:
b8:e5:99:54:27:37:63:76:37:45:f2:c0:52:57:ff:9e:94:fb:
0b:5e:b4:98:d7:af:f9:ad:e0:70:76:70:d1:ca:d3:99:a0:6d:
2f:a6:dd:6b:51:75:56:09:b3:6a:2c:fe:bd:69:4d:38:13:34:
fd:78:25:83:0d:91:60:9a:72:4a:73:fe:f8:06:7f:9a:af:87:
e4:b5:f9:4e:8c:aa:69:14:4d:49:76:33:2d:96:1f:f0:ed:67:
d6:3e:e9:4b:00:50:be:4c:60:cb:11:61:05:b4:7e:4c:4d:85:
b8:43:a7:51:72:55:62:10:5f:3a:eb:fc:52:5f:e4:f4:17:57:
04:c2:14:65
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALIyMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDI5MTAxMzAxWhcNMjQwNjA3MTAxMzAxWjAYMRYw
FAYDVQQDEw02NjJmNzJiMC1mOTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0hxGAqjnoYsAeEJMMBsvBxiIjcPfz0eKUB/HZ2hFNLQAixJ9Nz9OWRGI
UocB3PU+3vrVeJw9Hc7dtVm4gjeqS6Xfks/j3j/y1LrHaaWi7bpk7Ce9IdhiFHxt
O2TtEgPTRLhezyiV9Oy61/4psmzD+2yU/2nvmEkpwAyA8KwpzMvW9tx0RhWxNfuc
iRUP8z4WmueGDwGACp2TNgKpcSXlAN7KpVNf1IRAsIRFyNWNFvD175DWf29w2Uus
XaGJuSfj9ZmQklSJP7oOH4dJFeDxq54m3Y3Hu8nrdaalGYcL0qvg87fr4G+SZW25
z3CIoEn7GJ88fzi2/wa+056P/snBCQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHIz
HXXiwR9+1bZXt0bZAe6LBQzCMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xMEY5OEYwRTA2MTExMUVGOTgxNDVCNUQwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt8zMA0GCSqGSIb3DQEB
CwUAA4IBAQCKP2+eNGleGYUp+1iMWjtjI+NZCq0sqBRwdnZIbQ5QcnEzESwOdOUW
FjHwv0646pZsm6Y7k/5H/bJf5tX9GOjFQAG6UhnHqwVBgNffM/khM+8UjRtehkOk
K0DitmL+sKoNs/zPnow4jhVLjVlXyXRu0/NnkBRt/MEBw+2NCKa45ZlUJzdjdjdF
8sBSV/+elPsLXrSY16/5reBwdnDRytOZoG0vpt1rUXVWCbNqLP69aU04EzT9eCWD
DZFgmnJKc/74Bn+ar4fktflOjKppFE1JdjMtlh/w7WfWPulLAFC+TGDLEWEFtH5M
TYW4Q6dRclViEF866/xSX+T0F1cEwhRl
-----END CERTIFICATE-----
Generated at Sat Jun 1 09:09:59 2024 by rpki-client on console-fra.rpki-client.org