Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8FB6AF72CCC111EE8E7BBB8A775412E6.roa
File: 8FB6AF72CCC111EE8E7BBB8A775412E6.roa (raw, json)
Hash identifier: IKWgWrSEAo5FSyyL/DHvVfaQkvPxAvaJe52+TtSi2l0=
Subject key identifier: 84:84:B8:73:42:1F:82:32:C1:C8:CD:A5:F6:B0:6B:6C:84:89:53:2B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8B0F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8FB6AF72CCC111EE8E7BBB8A775412E6.roa
Signing time: Fri 16 Feb 2024 11:50:21 +0000
ROA not before: Fri 16 Feb 2024 11:50:17 +0000
ROA not after: Fri 26 Apr 2024 11:50:17 +0000
asID: 9009
IP address blocks: 154.216.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 11:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35599 (0x8b0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 11:50:17 2024 GMT
Not After : Apr 26 11:50:17 2024 GMT
Subject: CN=65cf4bfd-9258
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b1:4e:1c:73:11:47:20:68:01:5c:fb:f1:51:
69:63:04:0a:2a:f2:48:b9:b7:ee:4e:1a:17:d9:5d:
ce:d9:ad:87:50:71:df:66:73:33:9b:b3:c0:d4:63:
4e:ff:f7:8e:e4:06:d1:57:bd:38:a0:75:fa:87:eb:
71:38:b6:6f:a9:67:45:5e:6b:ba:3f:e4:a3:e1:00:
91:7a:e5:2d:8a:d8:c2:0a:7a:d3:65:58:65:d3:81:
ec:d0:78:ca:64:6d:0a:bc:fd:89:75:f4:5c:fa:09:
f2:78:8c:01:be:4f:db:6d:94:09:49:7a:3c:33:22:
5d:fd:73:d1:77:af:77:fa:fc:c0:4a:01:a4:ab:1d:
71:0a:9b:cf:22:18:4a:fc:96:ff:02:e1:66:14:39:
1f:b5:9a:c2:a9:c9:83:ef:aa:bb:47:c4:4b:59:6d:
b1:10:e2:4c:ba:f9:5a:b4:f0:b9:3f:ec:24:70:ee:
fc:c4:f0:19:17:e1:41:3f:57:6b:c5:38:45:e4:e6:
34:16:27:38:92:50:18:91:e8:5e:86:a1:21:3b:98:
72:01:a9:af:0e:0e:ee:5a:d2:69:3d:cc:fa:d9:c9:
cb:99:2f:aa:28:17:a6:0f:84:da:45:d5:e6:a8:7d:
ae:fe:cb:af:a2:d8:fe:6e:dd:0d:9e:c8:03:e8:64:
9a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:84:B8:73:42:1F:82:32:C1:C8:CD:A5:F6:B0:6B:6C:84:89:53:2B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8FB6AF72CCC111EE8E7BBB8A775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.247.0/24
Signature Algorithm: sha256WithRSAEncryption
88:2a:3a:c9:21:35:0e:c0:da:11:55:db:ec:ba:dd:04:51:0c:
d9:b8:ea:fd:8b:35:53:56:7b:87:ec:4f:d1:96:0f:f1:c5:d1:
d6:95:d9:8d:b1:e2:0e:4c:f8:8b:2c:65:17:bf:63:c3:c9:5e:
38:11:39:bd:9e:94:41:57:38:37:7b:f3:03:9c:43:3a:78:4b:
74:1e:67:4a:42:2c:ab:b9:8a:78:0f:78:91:e6:0f:af:87:ae:
59:5a:b4:d0:74:3e:ce:1c:13:1b:a9:6f:e0:50:94:79:97:0a:
49:e9:01:9d:83:db:86:71:3b:09:71:dc:7f:57:86:2e:a1:57:
91:e9:5d:83:fb:c3:e9:49:bd:d6:5f:85:6c:6a:62:98:ec:22:
4d:5e:41:ff:2c:65:30:ea:52:e1:af:1f:cd:1a:b8:f4:46:39:
51:90:ed:c3:17:4d:8f:94:c9:bb:4b:c6:26:33:6f:e0:14:e1:
55:d6:3d:06:61:74:11:88:f9:ad:3b:27:39:f6:51:6b:fa:ec:
30:d7:dd:9e:37:0a:d0:a5:ce:56:7a:67:35:31:c2:45:c0:f4:
7b:ea:27:66:5b:3b:79:81:69:11:d2:83:62:2d:f5:6b:85:ed:
d4:df:1d:c3:ab:70:af:4c:da:92:7a:a8:0a:ab:e4:34:da:be:
0a:39:f8:25
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAIsPMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMjE2MTE1MDE3WhcNMjQwNDI2MTE1MDE3WjAYMRYw
FAYDVQQDEw02NWNmNGJmZC05MjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAl7FOHHMRRyBoAVz78VFpYwQKKvJIubfuThoX2V3O2a2HUHHfZnMzm7PA
1GNO//eO5AbRV704oHX6h+txOLZvqWdFXmu6P+Sj4QCReuUtitjCCnrTZVhl04Hs
0HjKZG0KvP2JdfRc+gnyeIwBvk/bbZQJSXo8MyJd/XPRd693+vzASgGkqx1xCpvP
IhhK/Jb/AuFmFDkftZrCqcmD76q7R8RLWW2xEOJMuvlatPC5P+wkcO78xPAZF+FB
P1drxThF5OY0Fic4klAYkehehqEhO5hyAamvDg7uWtJpPcz62cnLmS+qKBemD4Ta
RdXmqH2u/suvotj+bt0NnsgD6GSaOwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFISE
uHNCH4IywcjNpfawa2yEiVMrMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84RkI2QUY3MkNDQzExMUVFOEU3QkJCOEE3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtj3MA0GCSqGSIb3DQEB
CwUAA4IBAQCIKjrJITUOwNoRVdvsut0EUQzZuOr9izVTVnuH7E/Rlg/xxdHWldmN
seIOTPiLLGUXv2PDyV44ETm9npRBVzg3e/MDnEM6eEt0HmdKQiyruYp4D3iR5g+v
h65ZWrTQdD7OHBMbqW/gUJR5lwpJ6QGdg9uGcTsJcdx/V4YuoVeR6V2D+8PpSb3W
X4VsamKY7CJNXkH/LGUw6lLhrx/NGrj0RjlRkO3DF02PlMm7S8YmM2/gFOFV1j0G
YXQRiPmtOyc59lFr+uww192eNwrQpc5Wemc1McJFwPR76idmWzt5gWkR0oNiLfVr
he3U3x3Dq3CvTNqSeqgKq+Q02r4KOfgl
-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:42 2024 by rpki-client on console-ams.rpki-client.org