Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6121736E05D211EFB75B1D61017001B1.roa
File: 6121736E05D211EFB75B1D61017001B1.roa (raw, json)
Hash identifier: awhuoYXJ7SD1LyxoUtloSGR9lNfCX59ROj5SYipZ3eI=
Subject key identifier: 57:58:33:31:08:5B:B5:CD:1C:25:D4:13:EC:BD:3E:8F:C4:99:FC:76
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B1CA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6121736E05D211EFB75B1D61017001B1.roa
Signing time: Mon 29 Apr 2024 02:44:20 +0000
ROA not before: Mon 29 Apr 2024 02:44:15 +0000
ROA not after: Fri 31 May 2024 02:44:15 +0000
asID: 35916
IP address blocks: 154.208.131.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45514 (0xb1ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 02:44:15 2024 GMT
Not After : May 31 02:44:15 2024 GMT
Subject: CN=662f0984-7322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9e:b0:a5:4b:db:65:0e:45:b7:1c:cb:78:42:
a0:09:42:00:10:5c:10:0a:7c:7b:36:a0:59:5e:69:
75:86:20:09:fc:c8:b9:b4:5d:00:e8:cb:6b:15:02:
18:f9:56:34:bb:f7:42:7d:97:41:eb:5d:e7:fc:f8:
56:33:87:62:b3:76:17:b6:53:82:d5:d8:a2:ac:37:
50:8c:1a:63:0d:48:65:52:94:8a:44:74:af:0f:36:
b2:0c:63:61:12:28:e5:f1:3f:85:d8:cb:c1:29:3c:
0c:d4:03:cd:19:dc:4c:db:10:31:4f:d6:ff:08:71:
a8:28:a0:7b:14:69:89:c1:7c:dc:ab:63:90:24:9a:
70:dc:86:4b:a5:6e:ae:29:08:86:81:50:4a:ce:91:
72:d0:ba:3c:a9:25:e6:73:d9:c9:a0:e2:44:8d:34:
37:d1:74:6d:d8:c2:14:7a:0e:4e:6c:37:a2:80:0d:
22:97:18:cd:e4:17:04:8c:d7:0c:0c:74:a4:bc:49:
15:d1:33:54:70:1e:a9:0c:9b:32:6d:12:3c:bb:ff:
8e:cd:99:e0:4c:d0:42:51:67:dd:1a:8d:0d:a4:dc:
db:c7:54:21:73:c1:31:ae:e7:36:bc:ad:85:5f:04:
09:43:e3:67:6d:ee:c2:4d:26:90:c4:a0:7a:de:8b:
fd:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:58:33:31:08:5B:B5:CD:1C:25:D4:13:EC:BD:3E:8F:C4:99:FC:76
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6121736E05D211EFB75B1D61017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.131.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:c4:f3:fb:0b:53:6a:7d:4c:b7:ec:62:91:ec:17:8f:02:01:
d3:72:44:d1:91:31:05:a2:2c:0b:d1:62:1d:9a:34:4d:b6:d7:
03:c6:08:76:d2:a2:2e:f0:21:c6:e3:60:a8:86:0d:2f:c1:94:
55:64:da:cf:3b:e1:7c:a8:c7:f7:d6:02:30:b6:b1:26:c8:de:
49:83:3a:bd:a7:cb:96:33:93:20:d2:50:58:47:2c:84:26:90:
a5:14:e6:34:c8:6a:a1:ff:4c:49:93:15:46:82:da:8d:f0:e4:
ce:b2:60:3d:e0:de:9d:4e:54:a6:2b:6b:11:ad:70:5d:f8:22:
0e:51:e6:19:c5:ff:70:3f:8e:24:29:4c:24:84:fe:28:b8:7d:
65:a6:19:84:ea:1a:b9:66:0a:ae:55:db:4e:d6:51:35:82:bd:
75:da:50:25:37:9f:66:a2:d1:1a:59:c3:dc:2b:c2:7c:de:a7:
19:1b:bc:c6:4f:b3:cd:c8:8e:24:a2:4a:01:6f:c8:73:ae:0a:
67:75:71:76:3b:44:e2:5d:df:7e:40:17:e1:cc:a5:08:57:b5:
8b:bc:07:af:b2:cc:5b:06:84:cc:af:e9:3b:9a:de:68:91:a1:
83:3b:8a:33:ed:39:d4:1c:d7:cf:74:61:89:aa:74:c9:12:3b:
cb:b4:f9:6e
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALHKMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDI5MDI0NDE1WhcNMjQwNTMxMDI0NDE1WjAYMRYw
FAYDVQQDEw02NjJmMDk4NC03MzIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqJ6wpUvbZQ5FtxzLeEKgCUIAEFwQCnx7NqBZXml1hiAJ/Mi5tF0A6Mtr
FQIY+VY0u/dCfZdB613n/PhWM4dis3YXtlOC1diirDdQjBpjDUhlUpSKRHSvDzay
DGNhEijl8T+F2MvBKTwM1APNGdxM2xAxT9b/CHGoKKB7FGmJwXzcq2OQJJpw3IZL
pW6uKQiGgVBKzpFy0Lo8qSXmc9nJoOJEjTQ30XRt2MIUeg5ObDeigA0ilxjN5BcE
jNcMDHSkvEkV0TNUcB6pDJsybRI8u/+OzZngTNBCUWfdGo0NpNzbx1Qhc8Exruc2
vK2FXwQJQ+Nnbe7CTSaQxKB63ov9CQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFdY
MzEIW7XNHCXUE+y9Po/Emfx2MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82MTIxNzM2RTA1RDIxMUVGQjc1QjFENjEwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtCDMA0GCSqGSIb3DQEB
CwUAA4IBAQBsxPP7C1NqfUy37GKR7BePAgHTckTRkTEFoiwL0WIdmjRNttcDxgh2
0qIu8CHG42Cohg0vwZRVZNrPO+F8qMf31gIwtrEmyN5Jgzq9p8uWM5Mg0lBYRyyE
JpClFOY0yGqh/0xJkxVGgtqN8OTOsmA94N6dTlSmK2sRrXBd+CIOUeYZxf9wP44k
KUwkhP4ouH1lphmE6hq5ZgquVdtO1lE1gr112lAlN59motEaWcPcK8J83qcZG7zG
T7PNyI4kokoBb8hzrgpndXF2O0TiXd9+QBfhzKUIV7WLvAevssxbBoTMr+k7mt5o
kaGDO4oz7TnUHNfPdGGJqnTJEjvLtPlu
-----END CERTIFICATE-----
Generated at Mon May 20 03:18:16 2024 by rpki-client on console-fra.rpki-client.org