![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3669DA021E5111EF8B5D62E77CDC24C2.roa
File: 3669DA021E5111EF8B5D62E77CDC24C2.roa (raw, json)
Hash identifier: 0rMF4vAFsCAAFiIM/3UQxS4tu9kxhbix7UOI7j1Z3Qg=
Subject key identifier: 43:D1:B5:2F:B6:00:6F:C7:6A:E3:B1:73:82:65:1C:6F:1F:15:11:A4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: BBE8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3669DA021E5111EF8B5D62E77CDC24C2.roa
Signing time: Thu 30 May 2024 06:52:43 +0000
ROA not before: Thu 30 May 2024 06:52:39 +0000
ROA not after: Mon 01 Jul 2024 06:52:39 +0000
asID: 49505
IP address blocks: 154.213.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 28 Jun 2024 06:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48104 (0xbbe8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 30 06:52:39 2024 GMT
Not After : Jul 1 06:52:39 2024 GMT
Subject: CN=6658223a-923f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:fe:96:34:a7:f4:b0:7a:7a:a8:0c:26:1d:17:
65:06:7e:b7:c1:7b:26:8e:84:2f:57:41:7e:e9:bc:
2e:40:28:2e:89:6f:36:57:f7:a6:7a:7b:9f:e5:ef:
4e:ee:1b:9a:8f:ba:36:c4:95:f3:31:26:7b:cf:e1:
c6:1b:94:d6:58:0a:77:89:db:18:3f:e0:20:59:ca:
78:98:4e:98:5d:b5:3f:b3:97:68:7f:74:44:a3:7d:
27:68:1a:f0:e2:58:6a:1a:ee:24:b6:0d:80:10:b2:
73:fc:df:a8:67:96:41:51:37:3e:27:9f:37:0d:a4:
e7:69:a7:f0:cd:af:47:f4:cd:af:75:ea:96:85:46:
c6:e4:2b:7f:8d:17:ac:82:85:68:82:3b:a4:3f:df:
6a:d8:1a:da:26:e0:9c:f0:9d:4a:47:fb:fa:34:6b:
9e:64:63:1d:e0:64:be:50:af:24:f1:a6:5b:f2:2b:
31:e4:8e:a3:67:b4:16:89:92:e7:6b:39:0c:01:d7:
bd:a5:e9:c1:6a:bc:7e:80:ea:58:73:ba:4a:f8:65:
67:df:58:9f:9b:76:38:93:e3:48:52:5e:41:92:95:
af:c3:e7:f7:25:e1:24:48:38:0b:fc:01:93:4a:b3:
88:2e:93:bf:d1:49:9b:dd:5e:86:be:a6:2e:eb:41:
d7:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:D1:B5:2F:B6:00:6F:C7:6A:E3:B1:73:82:65:1C:6F:1F:15:11:A4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3669DA021E5111EF8B5D62E77CDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.0.0/24
Signature Algorithm: sha256WithRSAEncryption
87:37:fe:9b:3f:03:0f:68:29:22:d4:2c:ce:36:be:97:2f:18:
1b:91:99:48:48:7d:fd:5d:c6:e1:51:de:c6:49:1f:47:01:04:
83:3f:8f:ac:69:34:7e:da:93:4c:e2:26:e0:a0:f3:da:b7:eb:
c1:21:22:da:e7:41:ac:cf:06:99:55:c6:d6:c2:f1:e4:d2:5e:
fe:5d:ab:0c:ca:a7:a0:2e:a0:f3:53:c5:0d:0b:f3:43:1e:a2:
86:85:6c:ca:93:6f:86:6f:7c:3b:c6:0d:7e:6d:d0:89:23:36:
1b:32:d8:7d:a9:55:e8:3c:12:97:6c:7f:e0:55:04:e2:17:cf:
4b:2c:05:bb:1c:f2:05:88:5f:42:7d:87:6b:0d:80:93:1b:4a:
c2:82:e3:3b:84:3b:30:59:78:94:ac:c0:b4:a6:1d:e7:3e:53:
cf:e3:58:c3:73:6e:b0:3c:76:fc:58:c2:f1:22:c5:36:21:f6:
07:ec:02:be:9f:30:52:21:2c:d0:2f:32:a8:47:85:af:6c:d2:
8c:d6:68:2a:f2:44:c9:2c:4e:c8:52:4d:c6:c2:28:46:cd:99:
97:5f:22:4d:51:e3:52:b3:b7:da:67:c1:5c:9c:10:d4:3d:80:
85:21:54:05:48:fd:10:c9:bb:58:fb:45:52:7e:91:e1:70:58:
dd:10:7b:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 11:43:32 2024 by rpki-client on console-ams.rpki-client.org