Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/92CFE5DA02DA11EF9F8D8129017001B1.roa
File: 92CFE5DA02DA11EF9F8D8129017001B1.roa (raw, json)
Hash identifier: pAojK+KGwqi3az8c/XKbqYdC5q6Adlzg4UwM1Sn7034=
Subject key identifier: A7:4B:29:11:5B:54:E8:2B:6C:6E:76:DF:BD:6E:6B:08:75:87:41:6E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B04D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/92CFE5DA02DA11EF9F8D8129017001B1.roa
Signing time: Thu 25 Apr 2024 08:05:26 +0000
ROA not before: Thu 25 Apr 2024 08:05:23 +0000
ROA not after: Sat 01 Jun 2024 08:05:23 +0000
asID: 20473
IP address blocks: 154.194.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:04:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45133 (0xb04d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 25 08:05:23 2024 GMT
Not After : Jun 1 08:05:23 2024 GMT
Subject: CN=662a0ec6-92eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:6f:10:0c:b5:03:d4:29:19:5f:5b:a5:e6:37:
a4:71:2f:8d:35:99:b2:a2:6b:9e:ed:f2:2b:df:77:
9e:08:e1:91:00:79:ec:ca:99:65:0a:78:e4:00:d4:
93:1d:75:3e:a7:90:f4:a4:3f:38:89:f5:51:a4:96:
ba:a3:f0:84:e2:9d:eb:b5:2a:1a:3d:f5:6d:86:33:
cc:f9:63:85:be:d3:90:3f:20:65:95:a7:45:70:e4:
c8:0d:bd:66:42:78:91:55:e8:cb:60:ad:e3:62:39:
fe:2c:08:da:30:e9:06:e8:fa:8f:8a:b6:68:c5:cd:
90:d1:c4:4e:4a:5b:a4:dc:5d:8d:f7:11:77:6d:87:
33:0a:be:e3:a3:5b:91:2d:2d:34:bc:44:9c:4d:f3:
59:53:78:f9:1e:d0:12:47:f2:ca:4d:b3:ea:7d:cf:
d2:0e:21:93:c1:92:33:bd:a7:17:4f:b8:cb:ca:84:
00:b6:00:0a:be:64:c7:f4:f8:8d:93:e4:39:44:55:
3c:b6:21:31:ba:87:04:fa:70:f0:62:11:d8:51:bd:
7a:a8:7d:3f:73:44:06:ff:78:b4:5b:4f:54:f2:12:
b5:ab:ed:57:91:cd:1a:2b:bc:b3:f6:b6:7b:97:4e:
84:4f:f8:ac:e7:3e:68:b3:c2:ee:8d:92:2c:b8:8d:
d1:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:4B:29:11:5B:54:E8:2B:6C:6E:76:DF:BD:6E:6B:08:75:87:41:6E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/92CFE5DA02DA11EF9F8D8129017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.43.0/24
Signature Algorithm: sha256WithRSAEncryption
22:97:ab:8f:07:57:5d:50:30:84:02:c3:25:f6:f4:81:d1:d3:
76:94:34:3a:d6:de:70:3a:31:3d:b6:58:2c:0e:c1:fe:ea:46:
d2:8f:c6:e3:6f:50:3b:b4:5f:5b:c8:39:e8:4b:7c:e6:7d:01:
e2:2f:a3:0a:e7:9f:36:81:26:a3:4f:41:2d:1d:d5:c5:4a:e7:
04:86:24:71:d7:d3:11:07:06:4f:ae:44:9a:b2:75:cd:1d:67:
c4:38:e2:70:32:70:b6:08:52:91:15:6a:5a:ef:17:6d:0c:63:
2f:5b:cc:ef:65:0d:96:f8:26:16:8a:63:5e:f8:94:6a:7b:80:
1d:1b:97:19:7a:fa:b9:02:e4:63:7b:1f:3b:22:e0:b7:bc:9e:
97:8f:4f:22:05:1d:0c:fd:f7:35:af:a0:32:cd:a5:44:8f:58:
7b:1f:b7:5f:7b:a4:8b:7b:83:d0:18:64:86:fc:3a:5d:a0:af:
00:3d:40:66:ca:6a:b3:75:8e:dc:ab:8c:ee:5d:54:91:b0:d7:
7b:17:51:b1:9c:ba:0b:a5:82:40:8e:aa:63:0e:f2:3b:6e:c0:
d0:59:c8:da:81:d1:44:1e:a5:88:48:1b:b7:dd:92:8c:ae:e6:
85:46:23:8d:4b:0f:c4:1d:40:3a:25:83:51:63:c5:fd:8c:98:
cc:2a:05:78
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALBNMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDI1MDgwNTIzWhcNMjQwNjAxMDgwNTIzWjAYMRYw
FAYDVQQDEw02NjJhMGVjNi05MmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0G8QDLUD1CkZX1ul5jekcS+NNZmyomue7fIr33eeCOGRAHnsypllCnjk
ANSTHXU+p5D0pD84ifVRpJa6o/CE4p3rtSoaPfVthjPM+WOFvtOQPyBlladFcOTI
Db1mQniRVejLYK3jYjn+LAjaMOkG6PqPirZoxc2Q0cROSluk3F2N9xF3bYczCr7j
o1uRLS00vEScTfNZU3j5HtASR/LKTbPqfc/SDiGTwZIzvacXT7jLyoQAtgAKvmTH
9PiNk+Q5RFU8tiExuocE+nDwYhHYUb16qH0/c0QG/3i0W09U8hK1q+1Xkc0aK7yz
9rZ7l06ET/is5z5os8LujZIsuI3RBwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFKdL
KRFbVOgrbG52371uawh1h0FuMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85MkNGRTVEQTAyREExMUVGOUY4RDgxMjkwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsIrMA0GCSqGSIb3DQEB
CwUAA4IBAQAil6uPB1ddUDCEAsMl9vSB0dN2lDQ61t5wOjE9tlgsDsH+6kbSj8bj
b1A7tF9byDnoS3zmfQHiL6MK5582gSajT0EtHdXFSucEhiRx19MRBwZPrkSasnXN
HWfEOOJwMnC2CFKRFWpa7xdtDGMvW8zvZQ2W+CYWimNe+JRqe4AdG5cZevq5AuRj
ex87IuC3vJ6Xj08iBR0M/fc1r6AyzaVEj1h7H7dfe6SLe4PQGGSG/DpdoK8APUBm
ymqzdY7cq4zuXVSRsNd7F1GxnLoLpYJAjqpjDvI7bsDQWcjagdFEHqWISBu33ZKM
ruaFRiONSw/EHUA6JYNRY8X9jJjMKgV4
-----END CERTIFICATE-----
Generated at Tue May 7 03:11:42 2024 by rpki-client on console-fra.rpki-client.org