Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A59A6201E7F11EF8181D1007DDC24C2.roa
File: 1A59A6201E7F11EF8181D1007DDC24C2.roa (raw, json)
Hash identifier: xb1pPc5FFc7sWfzJ8LSlqjIyld8moxF1F8h5CFFlkzY=
Subject key identifier: 23:6F:D9:F9:9F:59:61:78:2D:36:DA:62:5D:E9:BA:84:C5:43:69:3F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: BC28
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A59A6201E7F11EF8181D1007DDC24C2.roa
Signing time: Thu 30 May 2024 12:21:12 +0000
ROA not before: Thu 30 May 2024 12:21:09 +0000
ROA not after: Thu 05 Sep 2024 12:21:09 +0000
asID: 26617
IP address blocks: 154.202.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 28 Jun 2024 06:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48168 (0xbc28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 30 12:21:09 2024 GMT
Not After : Sep 5 12:21:09 2024 GMT
Subject: CN=66586f38-5200
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:46:fc:32:af:52:19:28:c6:dc:99:99:75:ac:
f7:57:49:8c:97:77:5a:7d:2f:14:35:ac:c7:98:4e:
c8:f7:72:61:4a:ef:80:c2:2e:ad:9f:ff:5c:6a:e4:
93:71:29:ce:f5:13:f6:92:57:f4:27:f4:d7:41:88:
54:3a:81:4a:8d:bb:3e:6b:6a:e1:c4:32:3b:4f:aa:
42:ca:34:c9:45:32:e9:cb:61:55:67:4d:c1:70:4e:
79:c0:97:db:cc:5d:4d:58:b9:3a:1e:4d:bc:51:17:
c4:69:f6:0b:2e:a7:eb:b1:66:6a:54:1a:58:a9:43:
fc:4b:d8:ae:58:8a:b9:a0:9f:fa:e4:7d:70:04:0f:
f7:c6:56:88:8a:bf:73:03:87:e2:bb:7f:87:24:76:
0f:a8:9f:de:b8:b0:82:53:5e:83:0c:ba:33:41:a6:
a4:f1:9d:a5:80:15:ff:26:9f:3c:57:6a:dc:67:f4:
53:5b:44:f7:fe:24:e8:4b:a4:00:31:2b:16:05:08:
4a:a0:cf:46:6b:06:10:ad:79:63:f5:57:07:e8:98:
d3:43:57:df:0a:74:49:0c:25:65:9e:b1:ce:86:fa:
92:c2:d2:1f:63:22:8c:40:0e:79:66:53:27:97:ac:
94:73:6c:47:a7:53:87:d8:57:dc:b2:38:8d:ea:92:
94:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:6F:D9:F9:9F:59:61:78:2D:36:DA:62:5D:E9:BA:84:C5:43:69:3F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A59A6201E7F11EF8181D1007DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.6.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:3a:d2:2b:6a:79:81:e5:8e:27:c9:b1:97:68:84:9b:c7:f2:
69:03:a4:fc:3d:af:2a:2b:b8:b3:a9:99:7a:91:89:b2:3c:f4:
ae:89:84:0d:d2:9a:18:03:72:5a:9c:bc:f3:1d:56:66:1b:90:
c6:63:60:b3:f6:1d:ef:4d:84:d9:a8:d3:64:dc:fd:5d:24:a4:
d0:31:b2:79:c4:aa:21:9e:94:36:57:c5:00:b3:13:d2:46:db:
c0:5c:bb:bb:95:bf:f8:54:72:27:b5:b3:48:d9:04:80:24:6f:
36:a6:55:52:83:27:bb:c4:78:66:43:27:6a:b0:5c:d3:c1:65:
5c:50:fd:5c:50:6f:d2:e4:9d:f4:27:be:60:68:24:9c:5a:83:
70:46:a6:13:11:d0:ed:72:ff:5b:63:c1:25:b0:8c:36:d3:2b:
c3:80:2e:a6:7b:35:cd:0d:a5:b9:30:f0:f8:05:de:ce:88:f9:
94:f3:9d:c2:a5:ba:e7:12:ba:b7:59:74:84:c5:ed:39:b6:98:
97:76:e4:23:09:a1:bf:1b:16:33:5c:90:a0:b9:87:74:db:c2:
43:75:76:d3:f4:d1:aa:46:69:77:31:bf:1a:8e:f7:e0:26:e5:
69:af:02:b1:a4:94:b1:43:ed:6a:1e:65:8a:81:62:d2:6b:68:
3e:b7:94:d1
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALwoMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNTMwMTIyMTA5WhcNMjQwOTA1MTIyMTA5WjAYMRYw
FAYDVQQDEw02NjU4NmYzOC01MjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAq0b8Mq9SGSjG3JmZdaz3V0mMl3dafS8UNazHmE7I93JhSu+Awi6tn/9c
auSTcSnO9RP2klf0J/TXQYhUOoFKjbs+a2rhxDI7T6pCyjTJRTLpy2FVZ03BcE55
wJfbzF1NWLk6Hk28URfEafYLLqfrsWZqVBpYqUP8S9iuWIq5oJ/65H1wBA/3xlaI
ir9zA4fiu3+HJHYPqJ/euLCCU16DDLozQaak8Z2lgBX/Jp88V2rcZ/RTW0T3/iTo
S6QAMSsWBQhKoM9GawYQrXlj9VcH6JjTQ1ffCnRJDCVlnrHOhvqSwtIfYyKMQA55
ZlMnl6yUc2xHp1OH2FfcsjiN6pKUxwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCNv
2fmfWWF4LTbaYl3puoTFQ2k/MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xQTU5QTYyMDFFN0YxMUVGODE4MUQxMDA3RERDMjRDMi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsoGMA0GCSqGSIb3DQEB
CwUAA4IBAQCaOtIranmB5Y4nybGXaISbx/JpA6T8Pa8qK7izqZl6kYmyPPSuiYQN
0poYA3JanLzzHVZmG5DGY2Cz9h3vTYTZqNNk3P1dJKTQMbJ5xKohnpQ2V8UAsxPS
RtvAXLu7lb/4VHIntbNI2QSAJG82plVSgye7xHhmQydqsFzTwWVcUP1cUG/S5J30
J75gaCScWoNwRqYTEdDtcv9bY8ElsIw20yvDgC6mezXNDaW5MPD4Bd7OiPmU853C
pbrnErq3WXSExe05tpiXduQjCaG/GxYzXJCguYd028JDdXbT9NGqRml3Mb8ajvfg
JuVprwKxpJSxQ+1qHmWKgWLSa2g+t5TR
-----END CERTIFICATE-----
Generated at Wed Jun 26 09:29:02 2024 by rpki-client on console-fra.rpki-client.org