Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3651254/A1B323EE033511E6A6751974F8AEA228/E8DE0D8E3D8911ED8B8D47C8F1222468.roa
File: E8DE0D8E3D8911ED8B8D47C8F1222468.roa (raw, json)
Hash identifier: 0zFAuBmeEnXNJJd7TsaHijdXotZ0h58i4YSoZ+ZY9H4=
Subject key identifier: 49:2C:DC:A9:1F:77:91:34:7E:FB:48:B0:F0:20:8E:E4:C8:01:77:94
Certificate issuer: /CN=F3651254AF/serialNumber=E555DD940F3150185D591C2DAAE29F28EAEAF575
Certificate serial: 097A
Authority key identifier: E5:55:DD:94:0F:31:50:18:5D:59:1C:2D:AA:E2:9F:28:EA:EA:F5:75
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/5VXdlA8xUBhdWRwtquKfKOrq9XU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3651254/A1B323EE033511E6A6751974F8AEA228/E8DE0D8E3D8911ED8B8D47C8F1222468.roa
Signing time: Mon 26 Sep 2022 10:56:44 +0000
ROA not before: Mon 26 Sep 2022 10:56:41 +0000
ROA not after: Thu 30 Sep 2032 10:56:41 +0000
asID: 37658
IP address blocks: 154.66.144.0/21 maxlen: 24
154.66.145.0/24 maxlen: 24
154.66.146.0/24 maxlen: 24
154.66.147.0/24 maxlen: 24
154.66.148.0/24 maxlen: 24
154.66.149.0/24 maxlen: 24
154.66.150.0/24 maxlen: 24
154.66.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3651254/A1B323EE033511E6A6751974F8AEA228/5VXdlA8xUBhdWRwtquKfKOrq9XU.crl
rsync://rpki.afrinic.net/repository/member_repository/F3651254/A1B323EE033511E6A6751974F8AEA228/5VXdlA8xUBhdWRwtquKfKOrq9XU.mft
rsync://rpki.afrinic.net/repository/afrinic/5VXdlA8xUBhdWRwtquKfKOrq9XU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2426 (0x97a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3651254AF/serialNumber=E555DD940F3150185D591C2DAAE29F28EAEAF575
Validity
Not Before: Sep 26 10:56:41 2022 GMT
Not After : Sep 30 10:56:41 2032 GMT
Subject: CN=6331856c-bafa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ee:3e:5d:8e:87:c0:17:06:69:b7:e4:d7:fd:
98:8c:9a:54:7a:37:c1:80:9b:76:5b:b5:d4:35:d6:
0a:5e:85:56:85:92:0d:6b:93:d8:ef:df:04:44:e5:
ee:83:a2:bf:a7:42:eb:91:29:03:67:1c:c8:be:86:
c3:e7:b1:30:f7:77:06:05:51:d6:18:06:6e:66:e4:
95:e9:75:56:84:fd:52:f0:34:cf:a6:66:98:9b:8f:
62:2f:a7:44:c3:8c:30:13:24:80:ac:5a:08:f3:3d:
07:61:7b:e8:be:f5:5e:56:2a:1d:18:df:6e:4b:03:
55:4f:00:54:26:65:1d:d6:5f:a1:d6:cd:21:5e:86:
1d:74:59:78:db:af:d1:1c:33:1b:90:03:32:cd:60:
96:df:6e:f2:c9:37:06:9d:23:da:29:9e:89:24:a4:
94:5d:0b:b4:94:a8:e7:71:c8:6b:46:69:2e:72:e1:
b6:24:32:5d:81:2b:b6:61:07:5a:04:d8:ad:56:76:
15:e2:a5:6c:03:d9:5d:37:b4:df:29:b1:d2:aa:59:
eb:68:da:2a:1b:56:07:2a:14:a8:b8:09:ac:c8:ee:
2c:42:86:a9:24:89:d4:49:89:12:14:f5:8b:a2:b0:
a3:5a:bb:a0:65:1b:6b:05:97:79:61:34:c4:29:0a:
6b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:2C:DC:A9:1F:77:91:34:7E:FB:48:B0:F0:20:8E:E4:C8:01:77:94
X509v3 Authority Key Identifier:
keyid:E5:55:DD:94:0F:31:50:18:5D:59:1C:2D:AA:E2:9F:28:EA:EA:F5:75
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3651254/A1B323EE033511E6A6751974F8AEA228/5VXdlA8xUBhdWRwtquKfKOrq9XU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/5VXdlA8xUBhdWRwtquKfKOrq9XU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3651254/A1B323EE033511E6A6751974F8AEA228/E8DE0D8E3D8911ED8B8D47C8F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.66.144.0/21
Signature Algorithm: sha256WithRSAEncryption
1b:9b:5d:11:30:fe:5b:c0:0b:e9:0a:16:20:7f:22:45:73:ae:
3d:4b:c2:9a:fb:5d:b3:c7:af:b8:f0:ab:fa:d9:85:3c:62:4e:
bb:da:28:04:6d:b5:0d:91:5b:ec:db:69:18:4b:42:f6:c0:e5:
f5:d0:8f:14:60:a3:61:00:42:b3:84:37:a1:95:6e:6e:aa:45:
ba:37:59:ae:df:f0:28:e9:62:a0:45:28:5f:18:fd:5c:50:23:
5c:4f:c2:ef:80:4e:43:ed:32:64:70:a6:0e:52:67:22:0e:59:
e1:2a:54:61:a0:ce:dc:70:e4:a0:97:c1:a2:93:04:f9:a4:a1:
9f:78:aa:e1:6f:7a:35:6f:50:db:59:52:2d:03:27:5f:af:de:
9a:f0:f4:cb:cb:2a:3c:62:9a:68:d1:c6:cb:fb:37:1b:a1:3d:
52:12:c4:8d:ec:0b:87:f9:47:c3:f7:a9:ab:b9:f6:b6:17:85:
36:30:f0:e0:0b:9e:43:5f:5e:94:96:25:3b:9e:d0:2a:5d:ff:
f4:d3:47:55:90:84:75:09:ef:c3:63:e2:61:d0:0c:00:24:0c:
d4:29:52:2d:f7:0b:67:5e:36:cb:cb:20:e9:11:21:4b:c5:56:
46:23:b1:f9:13:6b:3a:d5:a1:19:fc:5c:9e:b3:b6:ea:57:4b:
90:1f:cb:33
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICCXowDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
NTEyNTRBRjExMC8GA1UEBRMoRTU1NUREOTQwRjMxNTAxODVENTkxQzJEQUFFMjlG
MjhFQUVBRjU3NTAeFw0yMjA5MjYxMDU2NDFaFw0zMjA5MzAxMDU2NDFaMBgxFjAU
BgNVBAMMDTYzMzE4NTZjLWJhZmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDG7j5djofAFwZpt+TX/ZiMmlR6N8GAm3ZbtdQ11gpehVaFkg1rk9jv3wRE
5e6Dor+nQuuRKQNnHMi+hsPnsTD3dwYFUdYYBm5m5JXpdVaE/VLwNM+mZpibj2Iv
p0TDjDATJICsWgjzPQdhe+i+9V5WKh0Y325LA1VPAFQmZR3WX6HWzSFehh10WXjb
r9EcMxuQAzLNYJbfbvLJNwadI9opnokkpJRdC7SUqOdxyGtGaS5y4bYkMl2BK7Zh
B1oE2K1WdhXipWwD2V03tN8psdKqWeto2iobVgcqFKi4CazI7ixChqkkidRJiRIU
9YuisKNau6BlG2sFl3lhNMQpCmt5AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUSSzc
qR93kTR++0iw8CCO5MgBd5QwHwYDVR0jBBgwFoAU5VXdlA8xUBhdWRwtquKfKOrq
9XUwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjUxMjU0L0ExQjMyM0VFMDMzNTExRTZBNjc1MTk3NEY4QUVBMjI4LzVWWGRs
QTh4VUJoZFdSd3RxdUtmS09ycTlYVS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljLzVWWGRsQTh4VUJoZFdSd3RxdUtmS09ycTlYVS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjUxMjU0L0ExQjMyM0VFMDMzNTExRTZBNjc1MTk3NEY4
QUVBMjI4L0U4REUwRDhFM0Q4OTExRUQ4QjhENDdDOEYxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAOaQpAwDQYJKoZIhvcNAQEL
BQADggEBABubXREw/lvAC+kKFiB/IkVzrj1Lwpr7XbPHr7jwq/rZhTxiTrvaKARt
tQ2RW+zbaRhLQvbA5fXQjxRgo2EAQrOEN6GVbm6qRbo3Wa7f8CjpYqBFKF8Y/VxQ
I1xPwu+ATkPtMmRwpg5SZyIOWeEqVGGgztxw5KCXwaKTBPmkoZ94quFvejVvUNtZ
Ui0DJ1+v3prw9MvLKjximmjRxsv7NxuhPVISxI3sC4f5R8P3qau59rYXhTYw8OAL
nkNfXpSWJTue0Cpd//TTR1WQhHUJ78Nj4mHQDAAkDNQpUi33C2deNsvLIOkRIUvF
VkYjsfkTazrVoRn8XJ6ztupXS5AfyzM=
-----END CERTIFICATE-----
Generated at Sun May 19 01:46:28 2024 by rpki-client on console-ams.rpki-client.org