![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/88B00F9E222911EFB32DD3097DDC24C2.roa
File: 88B00F9E222911EFB32DD3097DDC24C2.roa (raw, json)
Hash identifier: e3ActJoI+W85bl3icM6btrWOZjMdy9ZxTrQ+P6SNYNs=
Subject key identifier: 1E:D0:83:29:C3:E3:3C:C6:4B:12:1E:74:8C:7A:6B:72:88:1B:39:5F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: BF19
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/88B00F9E222911EFB32DD3097DDC24C2.roa
Signing time: Tue 04 Jun 2024 04:18:45 +0000
ROA not before: Tue 04 Jun 2024 04:18:42 +0000
ROA not after: Sat 06 Jul 2024 04:18:42 +0000
asID: 210542
IP address blocks: 154.84.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 28 Jun 2024 00:05:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48921 (0xbf19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 4 04:18:42 2024 GMT
Not After : Jul 6 04:18:42 2024 GMT
Subject: CN=665e95a5-68a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:80:63:d4:43:1e:6a:48:51:12:46:3b:a3:33:
8a:5e:28:6c:d0:2d:3f:f6:51:00:57:a3:1c:5c:53:
e1:9b:61:62:26:25:14:7d:ec:27:52:78:7d:04:e4:
da:4e:49:20:f2:43:73:35:3a:c3:f2:2e:b0:c0:c7:
40:12:0f:34:a8:eb:c5:b1:47:67:e9:2e:7d:35:76:
a4:89:f2:8d:99:f4:e8:d1:3c:fd:43:a0:89:5c:52:
27:34:55:74:6d:38:16:fd:53:7b:dc:1e:43:b6:93:
75:5c:1e:f4:68:c5:6e:4e:3b:b6:cf:e6:9d:72:b7:
a9:7b:26:ea:f4:81:5d:64:05:d5:12:cf:3a:82:48:
ac:12:71:a6:97:42:27:a2:88:cb:9f:6d:50:fb:c3:
37:8d:cb:13:d0:82:4f:df:55:4d:5c:27:66:42:e3:
2d:ec:25:fb:56:2a:c2:d6:35:1a:6e:35:2c:87:1c:
18:de:64:ba:82:3b:48:2e:ea:6f:c5:dc:7c:42:d7:
22:25:3a:be:1d:82:0e:28:32:93:35:d6:ee:88:e0:
d0:71:20:0e:1b:c5:96:da:7b:87:6d:c4:ca:18:55:
58:d9:16:a7:1f:cc:dd:e2:06:d4:3c:d8:ce:e5:29:
5c:74:60:4a:32:8e:77:c7:62:1e:94:1f:cf:50:7a:
bd:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:D0:83:29:C3:E3:3C:C6:4B:12:1E:74:8C:7A:6B:72:88:1B:39:5F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/88B00F9E222911EFB32DD3097DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.0.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:a2:d2:b4:4a:41:bf:b0:a1:1b:22:bb:ae:df:45:90:d5:a6:
61:ee:96:7f:2f:59:1d:b4:09:9c:28:6d:68:99:e4:89:10:9f:
0a:1b:7f:23:54:7e:15:30:47:61:49:2d:2f:fb:88:a7:7a:f6:
2b:59:21:a9:b9:fa:45:fa:a0:e8:ba:ec:90:2e:ee:06:15:75:
6b:73:03:38:01:88:22:43:b8:94:3a:15:dc:26:cf:a9:e5:c1:
59:70:8a:36:6a:ea:24:92:8a:28:70:6f:a4:4d:58:af:98:b2:
f9:f2:6e:1f:3a:e8:bf:f8:5a:64:50:78:00:1f:a8:a3:d6:07:
b3:cf:71:c7:3f:bf:bb:9d:02:6f:bf:f8:51:6d:44:70:4f:cb:
8c:48:ba:e1:fb:0c:79:36:fe:4e:e4:db:43:44:4a:d0:7a:25:
03:7f:d5:83:35:b9:ed:b0:88:60:26:e7:67:46:6b:c6:6f:9a:
95:6e:d8:60:23:6c:5f:9d:99:ff:a7:28:6c:ab:f9:28:c1:86:
f5:60:a3:a6:fa:82:e1:8e:ce:0b:66:78:79:2b:7c:a9:4e:08:
f4:24:77:04:ac:56:8f:e3:21:90:1e:59:79:cc:7a:5a:3e:9a:
b2:45:9c:0a:2a:6b:f0:75:2a:5e:4c:bf:d1:f6:38:79:31:79:
8b:be:6d:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 02:45:07 2024 by rpki-client on console-fra.rpki-client.org