Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/1F8AA2D4FC1511EEBE609B6B017001B1.roa
File: 1F8AA2D4FC1511EEBE609B6B017001B1.roa (raw, json)
Hash identifier: IGZHRVB09T9QBuaN1RA84u8Vw5wYZBtAgZtcXmJyc3s=
Subject key identifier: E1:94:A7:64:D8:41:50:BF:0C:67:76:FF:6C:60:A2:46:EB:AD:2B:DB
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 15CE
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/1F8AA2D4FC1511EEBE609B6B017001B1.roa
Signing time: Tue 16 Apr 2024 17:16:55 +0000
ROA not before: Tue 16 Apr 2024 17:16:51 +0000
ROA not after: Sat 18 Apr 2026 17:16:51 +0000
asID: 16276
IP address blocks: 154.16.72.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 06 May 2024 00:04:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5582 (0x15ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Apr 16 17:16:51 2024 GMT
Not After : Apr 18 17:16:51 2026 GMT
Subject: CN=661eb287-ae47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:41:9c:f6:d5:dd:1b:60:4f:05:7e:af:db:ba:
19:9a:d9:31:69:84:86:91:f3:53:d6:f9:2d:7e:30:
55:e5:a9:97:3a:09:5a:8e:a0:ea:8a:68:1f:f2:11:
2b:94:b0:f5:d8:35:1f:68:38:b6:f8:bb:3d:2e:2c:
83:e5:e8:3c:19:c1:5e:d5:f0:e4:41:86:08:f6:9d:
43:37:db:49:b0:8f:52:31:1a:03:86:86:97:20:98:
a9:3e:e4:9d:ed:57:ab:bd:64:8d:65:ef:96:42:40:
26:19:12:fc:8d:e8:ff:3e:c1:93:10:53:2c:ac:ce:
4a:ce:c7:b6:ce:d4:6b:98:a0:2c:8a:fe:a3:e9:47:
f3:33:33:c2:99:dd:d7:25:9d:0d:17:5b:32:39:1f:
cc:75:a9:5d:4c:c1:c5:4f:5f:02:8c:28:3e:7d:2e:
6e:00:c2:62:39:dd:8e:4c:4e:26:5c:83:60:63:d2:
33:a6:c0:10:9b:7a:a7:bc:fb:2d:76:36:dc:7a:f0:
12:78:a3:8b:31:fb:21:44:05:d5:69:75:c2:de:2a:
22:a9:2c:c3:ea:92:d8:6e:7c:d6:5f:5f:04:9a:07:
d7:16:38:93:ff:3b:71:f0:bc:17:d3:27:1c:ce:6d:
db:9a:23:2d:0a:d1:cf:f1:1d:70:2d:b0:96:a1:b8:
04:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:94:A7:64:D8:41:50:BF:0C:67:76:FF:6C:60:A2:46:EB:AD:2B:DB
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/1F8AA2D4FC1511EEBE609B6B017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.72.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:2c:de:3b:48:0b:d9:79:a4:10:22:1b:92:fb:d3:b5:d0:bc:
dd:69:05:fb:5d:87:3c:8a:cb:e3:13:1a:72:6d:a2:20:dd:3c:
3b:2d:17:6b:39:48:52:1c:6c:a5:ca:41:ea:fd:d9:a5:ce:f6:
9b:e5:e9:99:2d:5a:ec:66:cc:27:5a:f9:5e:30:16:48:6d:12:
72:55:81:54:61:6b:95:de:c6:3e:e4:fa:eb:86:5e:64:cb:81:
44:d2:36:d8:be:83:70:bf:6c:e9:59:d3:c1:d1:bc:54:f2:71:
ff:36:3d:a2:69:bf:a8:0c:66:42:e2:9a:1e:8f:d9:ee:09:d1:
43:91:89:a9:97:01:39:97:2f:42:45:c7:0b:9d:be:16:67:48:
0b:30:69:b4:03:8d:31:4b:5a:bc:03:cd:7d:a3:2c:3d:de:45:
ff:95:b5:2c:d1:a1:e9:d4:25:6e:cf:34:8e:98:a6:0e:3d:38:
16:a4:1f:9d:30:47:4b:cc:39:91:ce:a8:51:3d:85:6e:90:c8:
58:f9:f4:a1:fa:ea:c0:d2:a7:55:79:db:d8:b0:a0:bd:9b:e5:
4c:cd:70:ba:12:9f:8e:10:b1:76:c6:68:33:a2:9e:a9:b7:58:
f5:40:ee:47:f0:25:5c:98:77:bd:b3:89:8c:e3:23:7b:af:84:
89:ea:d2:37
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICFc4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yNDA0MTYxNzE2NTFaFw0yNjA0MTgxNzE2NTFaMBgxFjAU
BgNVBAMTDTY2MWViMjg3LWFlNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCqQZz21d0bYE8Ffq/buhma2TFphIaR81PW+S1+MFXlqZc6CVqOoOqKaB/y
ESuUsPXYNR9oOLb4uz0uLIPl6DwZwV7V8ORBhgj2nUM320mwj1IxGgOGhpcgmKk+
5J3tV6u9ZI1l75ZCQCYZEvyN6P8+wZMQUyyszkrOx7bO1GuYoCyK/qPpR/MzM8KZ
3dclnQ0XWzI5H8x1qV1MwcVPXwKMKD59Lm4AwmI53Y5MTiZcg2Bj0jOmwBCbeqe8
+y12Ntx68BJ4o4sx+yFEBdVpdcLeKiKpLMPqkthufNZfXwSaB9cWOJP/O3HwvBfT
JxzObduaIy0K0c/xHXAtsJahuARnAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU4ZSn
ZNhBUL8MZ3b/bGCiRuutK9swHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzFGOEFBMkQ0RkMxNTExRUVCRTYwOUI2QjAxNzAwMUIxLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEEgwDQYJKoZIhvcNAQEL
BQADggEBAJ0s3jtIC9l5pBAiG5L707XQvN1pBftdhzyKy+MTGnJtoiDdPDstF2s5
SFIcbKXKQer92aXO9pvl6ZktWuxmzCda+V4wFkhtEnJVgVRha5Xexj7k+uuGXmTL
gUTSNti+g3C/bOlZ08HRvFTycf82PaJpv6gMZkLimh6P2e4J0UORiamXATmXL0JF
xwudvhZnSAswabQDjTFLWrwDzX2jLD3eRf+VtSzRoenUJW7PNI6Ypg49OBakH50w
R0vMOZHOqFE9hW6QyFj59KH66sDSp1V529iwoL2b5UzNcLoSn44QsXbGaDOinqm3
WPVA7kfwJVyYd72ziYzjI3uvhInq0jc=
-----END CERTIFICATE-----
Generated at Sat May 4 02:37:17 2024 by rpki-client on console-fra.rpki-client.org