Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/34AF8E0C03C911EFB91FEB3D017001B1.roa
File: 34AF8E0C03C911EFB91FEB3D017001B1.roa (raw, json)
Hash identifier: fihGq28eaUoIP4VfLwJecpdgEb5r1iRzD9UoZ7VdCtQ=
Subject key identifier: 0E:9D:07:9B:54:BC:67:48:D9:0C:26:F9:D9:1D:AF:5C:20:60:65:D3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B1A4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/34AF8E0C03C911EFB91FEB3D017001B1.roa
Signing time: Fri 26 Apr 2024 12:33:38 +0000
ROA not before: Fri 26 Apr 2024 12:33:33 +0000
ROA not after: Sun 06 Jan 2030 12:33:33 +0000
asID: 136235
IP address blocks: 154.88.8.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45476 (0xb1a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 26 12:33:33 2024 GMT
Not After : Jan 6 12:33:33 2030 GMT
Subject: CN=662b9f22-d9f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d2:8b:1e:51:71:5f:d6:1c:75:ad:3b:74:8c:
e8:5f:91:98:6f:7a:b0:a0:6f:78:3b:52:81:3f:60:
1f:3f:dd:e5:f2:1d:a9:ef:a0:0d:04:74:c0:b7:4a:
8d:63:35:a2:2b:63:d3:81:1a:e9:fe:41:56:99:88:
56:88:dc:1b:fd:57:56:11:ff:ab:c0:b5:91:4b:78:
27:e6:fe:62:57:4f:09:88:3a:c5:11:82:7c:73:e5:
c9:c7:4f:49:d3:71:42:16:ea:83:df:2e:48:02:87:
5d:55:b8:c3:08:f1:1f:86:9f:f2:bc:40:48:7b:5e:
c6:07:37:60:00:ae:72:a1:49:99:e8:94:f5:38:bf:
8a:a9:64:a0:1f:53:43:26:9f:64:f0:9d:04:8f:8b:
d0:5a:bb:07:e7:82:de:19:ac:59:24:52:5d:a4:52:
6d:cf:76:23:e9:16:2b:57:8b:8b:5c:a2:05:2a:df:
56:b1:bf:28:c1:07:a2:b7:e2:96:a6:91:1a:57:fe:
38:32:5d:56:15:32:8f:f3:79:81:0b:69:0f:58:b6:
7c:0a:a2:61:d6:55:d8:d1:65:df:86:1b:32:5d:58:
4d:49:a2:8f:26:ba:82:51:3c:53:d2:ec:c9:1a:4d:
79:b1:60:cd:3d:e9:6c:45:7f:fd:77:49:1c:12:b8:
19:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:9D:07:9B:54:BC:67:48:D9:0C:26:F9:D9:1D:AF:5C:20:60:65:D3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/34AF8E0C03C911EFB91FEB3D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.8.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:85:d9:66:76:31:b4:f1:d6:c6:b9:92:e3:32:75:a9:94:ff:
dd:5d:18:32:44:a4:34:6d:39:ad:76:a2:5a:c6:6c:d4:f2:49:
f8:93:a6:d4:91:2a:3c:72:bd:f1:6b:fb:d4:98:39:6a:a9:b7:
f0:5a:bd:48:34:f1:4b:87:73:e4:6e:10:93:83:ce:b6:00:89:
55:f4:87:aa:73:48:db:6c:30:09:84:08:6a:5a:fe:95:25:69:
e2:c4:96:15:fa:43:7b:6e:8c:c9:9a:57:47:82:ec:f8:76:bc:
a9:43:2e:55:8d:29:84:36:5a:65:52:98:43:4c:0f:76:aa:1b:
f8:2b:70:f7:8e:16:7a:a6:4d:5f:ce:58:f1:36:7e:cd:b5:ee:
f6:7e:ea:d7:c3:a2:63:57:fb:9d:74:62:ee:97:e3:e2:2b:63:
41:76:be:e7:ee:ce:b7:9c:ba:a2:a1:bb:be:a7:e0:46:32:24:
7d:c5:fc:2a:66:c2:07:8a:19:48:de:e3:88:cc:d7:6f:a8:ac:
2b:e2:66:15:d2:56:13:fe:84:be:33:7d:f1:60:1e:4f:af:8a:
48:fc:21:68:3e:d2:d3:c0:97:8d:b3:7b:e3:13:a7:bb:e9:b2:
2a:88:08:ea:db:c1:bb:7e:b4:79:0b:00:48:cb:b5:3b:cc:bc:
8d:70:5e:44
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALGkMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDI2MTIzMzMzWhcNMzAwMTA2MTIzMzMzWjAYMRYw
FAYDVQQDEw02NjJiOWYyMi1kOWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA09KLHlFxX9Ycda07dIzoX5GYb3qwoG94O1KBP2AfP93l8h2p76ANBHTA
t0qNYzWiK2PTgRrp/kFWmYhWiNwb/VdWEf+rwLWRS3gn5v5iV08JiDrFEYJ8c+XJ
x09J03FCFuqD3y5IAoddVbjDCPEfhp/yvEBIe17GBzdgAK5yoUmZ6JT1OL+KqWSg
H1NDJp9k8J0Ej4vQWrsH54LeGaxZJFJdpFJtz3Yj6RYrV4uLXKIFKt9Wsb8owQei
t+KWppEaV/44Ml1WFTKP83mBC2kPWLZ8CqJh1lXY0WXfhhsyXVhNSaKPJrqCUTxT
0uzJGk15sWDNPelsRX/9d0kcErgZFQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFA6d
B5tUvGdI2Qwm+dkdr1wgYGXTMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zNEFGOEUwQzAzQzkxMUVGQjkxRkVCM0QwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlgIMA0GCSqGSIb3DQEB
CwUAA4IBAQAahdlmdjG08dbGuZLjMnWplP/dXRgyRKQ0bTmtdqJaxmzU8kn4k6bU
kSo8cr3xa/vUmDlqqbfwWr1INPFLh3PkbhCTg862AIlV9Ieqc0jbbDAJhAhqWv6V
JWnixJYV+kN7bozJmldHguz4drypQy5VjSmENlplUphDTA92qhv4K3D3jhZ6pk1f
zljxNn7Nte72furXw6JjV/uddGLul+PiK2NBdr7n7s63nLqiobu+p+BGMiR9xfwq
ZsIHihlI3uOIzNdvqKwr4mYV0lYT/oS+M33xYB5Pr4pI/CFoPtLTwJeNs3vjE6e7
6bIqiAjq28G7frR5CwBIy7U7zLyNcF5E
-----END CERTIFICATE-----
Generated at Sat Jun 1 09:10:01 2024 by rpki-client on console-fra.rpki-client.org