Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B8B77C8B6D811EE990B017E775412E6.roa
File: 4B8B77C8B6D811EE990B017E775412E6.roa (raw, json)
Hash identifier: JpRsm4yViODKV2hkhPGRaJ+boKeCU8RDtny7BkY3tIg=
Subject key identifier: 7C:72:1B:FF:51:A0:60:B5:C8:29:2B:CE:50:AE:22:A2:06:49:0D:F1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 7854
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B8B77C8B6D811EE990B017E775412E6.roa
Signing time: Fri 19 Jan 2024 14:37:39 +0000
ROA not before: Fri 19 Jan 2024 14:37:35 +0000
ROA not after: Wed 22 Jan 2025 14:37:35 +0000
asID: 29802
IP address blocks: 154.198.184.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 02 May 2024 06:13:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30804 (0x7854)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 19 14:37:35 2024 GMT
Not After : Jan 22 14:37:35 2025 GMT
Subject: CN=65aa8933-5e04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d8:6b:44:12:62:43:51:f1:bd:4a:94:4d:eb:
3f:d9:9e:63:a2:fc:54:97:d6:47:8a:22:1f:0d:e5:
28:45:f4:fe:c0:36:5f:0e:52:6c:cb:79:39:b6:5a:
57:c3:3c:51:9b:b9:83:95:fd:47:f8:52:b0:e3:7c:
4a:60:14:81:71:5c:fe:08:f6:5f:ec:b6:9d:8c:9e:
e6:f3:c7:d4:6d:be:6f:a6:85:0e:e2:cb:b6:61:e5:
5a:3e:61:8b:ec:cf:94:32:5b:91:96:dd:59:6a:d9:
46:2c:a8:80:8b:a2:47:19:5d:76:e2:46:79:24:c8:
8f:99:23:8d:b5:13:68:8a:80:f2:f8:0d:a9:b5:e2:
63:5e:bc:ad:d7:92:f8:a8:a8:06:98:5a:e2:f7:d7:
fd:9f:d3:c7:22:ec:bd:de:16:b6:ab:eb:67:a5:ab:
73:8c:a8:87:9f:dd:2c:f1:54:33:9e:78:85:7d:e2:
d2:92:fc:94:b5:2d:b8:d7:f5:0d:c9:87:31:0a:d9:
25:8d:d7:83:88:32:f2:5c:f6:3d:e5:ba:18:f9:3c:
cb:d9:f7:da:ef:ac:83:35:16:e8:82:eb:1a:9f:ce:
1d:b2:c6:28:95:d8:2d:1c:ef:b1:31:75:07:57:75:
56:97:e5:ca:65:2a:00:28:77:30:0a:7e:d2:14:06:
39:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:72:1B:FF:51:A0:60:B5:C8:29:2B:CE:50:AE:22:A2:06:49:0D:F1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B8B77C8B6D811EE990B017E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.184.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:45:ec:02:e8:78:10:12:56:d8:3d:0d:32:6c:00:09:89:09:
f0:41:77:3f:e3:b2:12:a9:10:0d:81:78:af:67:f8:6a:bf:b9:
81:e0:45:36:c7:db:f7:a8:02:d6:38:46:32:e4:3d:92:42:4d:
fa:b0:c9:fa:5e:ed:c2:14:0a:0b:f1:d8:75:52:ae:f7:bc:05:
83:07:2e:5d:db:d1:31:2b:10:07:67:25:1a:0a:2d:85:83:0c:
74:96:5f:b5:50:5f:62:d3:d0:bf:d7:d0:4f:4e:80:27:f6:72:
70:ea:8e:ba:eb:70:14:16:6f:c2:df:99:db:ea:09:2d:6b:a3:
f7:f8:35:dd:31:95:39:87:45:c8:24:ec:12:09:2e:3d:fc:c7:
21:69:eb:ae:c5:78:f4:ed:bb:91:8c:47:e2:f9:cd:5b:85:82:
96:e2:d5:92:20:8c:f1:e1:e7:89:d5:db:4b:78:9b:bd:81:be:
45:58:85:11:c9:af:72:64:93:98:95:3c:07:f2:cc:72:bd:4b:
00:ec:c8:b5:6f:e3:78:6c:bd:23:cc:ed:e2:8a:03:72:86:af:
3f:99:90:16:f7:a4:43:5f:f3:c2:c9:a1:10:99:9a:ff:d0:b8:
c4:47:cc:e8:2a:57:db:ed:d8:6a:57:fe:70:1d:7f:c2:d8:32:
d4:fe:16:2e
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICeFQwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yNDAxMTkxNDM3MzVaFw0yNTAxMjIxNDM3MzVaMBgxFjAU
BgNVBAMTDTY1YWE4OTMzLTVlMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDM2GtEEmJDUfG9SpRN6z/ZnmOi/FSX1keKIh8N5ShF9P7ANl8OUmzLeTm2
WlfDPFGbuYOV/Uf4UrDjfEpgFIFxXP4I9l/stp2Mnubzx9Rtvm+mhQ7iy7Zh5Vo+
YYvsz5QyW5GW3Vlq2UYsqICLokcZXXbiRnkkyI+ZI421E2iKgPL4Dam14mNevK3X
kvioqAaYWuL31/2f08ci7L3eFrar62elq3OMqIef3SzxVDOeeIV94tKS/JS1LbjX
9Q3JhzEK2SWN14OIMvJc9j3luhj5PMvZ99rvrIM1FuiC6xqfzh2yxiiV2C0c77Ex
dQdXdVaX5cplKgAodzAKftIUBjm5AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUfHIb
/1GgYLXIKSvOUK4iogZJDfEwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzRCOEI3N0M4QjZEODExRUU5OTBCMDE3RTc3NTQxMkU2LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGaxrgwDQYJKoZIhvcNAQEL
BQADggEBACpF7ALoeBASVtg9DTJsAAmJCfBBdz/jshKpEA2BeK9n+Gq/uYHgRTbH
2/eoAtY4RjLkPZJCTfqwyfpe7cIUCgvx2HVSrve8BYMHLl3b0TErEAdnJRoKLYWD
DHSWX7VQX2LT0L/X0E9OgCf2cnDqjrrrcBQWb8LfmdvqCS1ro/f4Nd0xlTmHRcgk
7BIJLj38xyFp667FePTtu5GMR+L5zVuFgpbi1ZIgjPHh54nV20t4m72BvkVYhRHJ
r3Jkk5iVPAfyzHK9SwDsyLVv43hsvSPM7eKKA3KGrz+ZkBb3pENf88LJoRCZmv/Q
uMRHzOgqV9vt2GpX/nAdf8LYMtT+Fi4=
-----END CERTIFICATE-----
Generated at Tue Apr 30 12:57:30 2024 by rpki-client on console-fra.rpki-client.org