Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8243642E10CE11EF906B9A62017001B1.roa
File: 8243642E10CE11EF906B9A62017001B1.roa (raw, json)
Hash identifier: ooyXF5Ej4TWjDC8pQU3RpGPl0HCC9k4Cq694K2OD3K4=
Subject key identifier: DE:7A:0B:2E:31:81:FB:0F:46:E3:C9:F4:A7:41:5F:45:38:B3:F8:54
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B715
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8243642E10CE11EF906B9A62017001B1.roa
Signing time: Mon 13 May 2024 02:14:21 +0000
ROA not before: Mon 13 May 2024 02:14:17 +0000
ROA not after: Thu 04 Jul 2024 02:14:17 +0000
asID: 272854
IP address blocks: 154.194.44.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 28 Jun 2024 06:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46869 (0xb715)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 13 02:14:17 2024 GMT
Not After : Jul 4 02:14:17 2024 GMT
Subject: CN=6641777d-a52a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:52:26:09:68:b6:6e:25:b5:fb:90:af:84:ca:
ce:97:41:63:bd:e2:79:43:ef:0a:8b:c1:b6:d9:b9:
64:be:9f:56:15:c7:1b:23:31:42:15:6b:56:2a:90:
0b:8d:cf:f1:26:ff:39:8e:c0:cc:fa:27:78:00:ed:
37:32:36:eb:bf:8f:ac:94:07:af:6c:32:64:a3:fc:
70:30:22:d8:1c:a7:50:ad:0f:60:90:b2:c1:81:de:
1c:38:96:84:69:a3:80:e5:87:82:98:b5:af:70:cc:
a9:c2:3e:f6:a6:9b:b5:ba:19:75:0a:52:00:1c:0e:
c6:a7:d8:37:60:1f:11:cc:16:78:bb:de:6a:94:72:
3b:37:10:9d:74:39:63:a8:22:b9:fe:b5:7b:13:43:
01:c5:92:2e:eb:2c:ee:23:a9:43:6a:be:63:d3:ea:
10:d0:3a:1a:af:f9:93:5f:52:3c:e8:6b:17:90:87:
d9:fb:dc:fd:ba:37:a9:ef:b9:6b:7e:25:9a:73:96:
17:84:59:33:f6:d8:c6:8c:75:7b:f4:37:72:41:5d:
f8:a2:40:e8:02:c3:d7:18:02:b0:50:d2:ce:cf:f9:
4f:ba:31:e3:76:12:ee:53:26:7a:03:f9:65:4f:a7:
1f:a4:c9:4b:b2:dc:07:27:d4:42:40:0d:9a:45:1d:
01:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:7A:0B:2E:31:81:FB:0F:46:E3:C9:F4:A7:41:5F:45:38:B3:F8:54
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8243642E10CE11EF906B9A62017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.44.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:8b:78:f1:86:f4:d3:27:b9:e2:e4:cf:9e:f5:8e:49:2b:71:
da:b8:6e:c5:7b:b1:57:4e:d4:69:20:10:e3:cb:99:c1:95:0d:
b0:75:9b:3c:ec:fe:eb:d0:f1:e2:1d:35:66:c1:a6:99:08:b4:
3e:69:a1:6f:ff:d9:a6:15:ec:ca:a6:f0:33:f8:a1:c4:4a:3a:
1c:c1:9e:34:ae:91:e2:b9:8a:4f:6b:94:e8:a3:77:63:e0:f8:
e4:5e:fd:a8:25:41:75:18:33:78:56:27:c2:ff:ba:9b:43:4a:
31:9d:26:74:4e:56:0c:c1:9b:5f:76:ca:38:96:01:99:df:3c:
48:c1:94:d2:cf:01:47:6b:ad:02:ef:d0:d9:4b:16:7a:ba:ef:
03:21:1b:6a:a6:0c:31:2a:19:e2:a7:e0:9f:97:40:b3:11:c8:
1e:7a:f0:bb:4c:1e:1e:45:5a:fd:08:4b:1a:e0:4b:7a:d0:b6:
3f:31:9e:28:6e:cc:60:5b:04:9c:f8:fc:11:6c:2a:ae:65:22:
64:4c:c2:a0:9d:fb:74:5e:a2:06:71:61:60:87:b8:0f:39:a3:
2a:8b:f3:e6:56:82:28:f2:c1:60:bb:69:82:88:78:b1:f9:4f:
bb:c9:10:0f:3e:bd:d7:43:14:88:6d:1e:3a:ae:1f:11:b8:17:
06:6d:ee:7a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALcVMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNTEzMDIxNDE3WhcNMjQwNzA0MDIxNDE3WjAYMRYw
FAYDVQQDEw02NjQxNzc3ZC1hNTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxVImCWi2biW1+5CvhMrOl0FjveJ5Q+8Ki8G22blkvp9WFccbIzFCFWtW
KpALjc/xJv85jsDM+id4AO03Mjbrv4+slAevbDJko/xwMCLYHKdQrQ9gkLLBgd4c
OJaEaaOA5YeCmLWvcMypwj72ppu1uhl1ClIAHA7Gp9g3YB8RzBZ4u95qlHI7NxCd
dDljqCK5/rV7E0MBxZIu6yzuI6lDar5j0+oQ0Doar/mTX1I86GsXkIfZ+9z9ujep
77lrfiWac5YXhFkz9tjGjHV79DdyQV34okDoAsPXGAKwUNLOz/lPujHjdhLuUyZ6
A/llT6cfpMlLstwHJ9RCQA2aRR0BvQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFN56
Cy4xgfsPRuPJ9KdBX0U4s/hUMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84MjQzNjQyRTEwQ0UxMUVGOTA2QjlBNjIwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsIsMA0GCSqGSIb3DQEB
CwUAA4IBAQAri3jxhvTTJ7ni5M+e9Y5JK3HauG7Fe7FXTtRpIBDjy5nBlQ2wdZs8
7P7r0PHiHTVmwaaZCLQ+aaFv/9mmFezKpvAz+KHESjocwZ40rpHiuYpPa5Too3dj
4PjkXv2oJUF1GDN4VifC/7qbQ0oxnSZ0TlYMwZtfdso4lgGZ3zxIwZTSzwFHa60C
79DZSxZ6uu8DIRtqpgwxKhnip+Cfl0CzEcgeevC7TB4eRVr9CEsa4Et60LY/MZ4o
bsxgWwSc+PwRbCquZSJkTMKgnft0XqIGcWFgh7gPOaMqi/PmVoIo8sFgu2mCiHix
+U+7yRAPPr3XQxSIbR46rh8RuBcGbe56
-----END CERTIFICATE-----
Generated at Wed Jun 26 08:13:30 2024 by rpki-client on console-ams.rpki-client.org