Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/3F557270D54A11EE90EACE8F775412E6.roa
File: 3F557270D54A11EE90EACE8F775412E6.roa (raw, json)
Hash identifier: W1CyfSW4dTr3kkD5Vro+9qh6dxvOWxVqj/XldA5NPg0=
Subject key identifier: FC:E4:2C:38:12:30:C0:62:7B:FB:5D:5A:09:D7:0E:90:61:BE:98:42
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 14F6
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/3F557270D54A11EE90EACE8F775412E6.roa
Signing time: Tue 27 Feb 2024 08:28:56 +0000
ROA not before: Tue 27 Feb 2024 08:28:53 +0000
ROA not after: Fri 27 Feb 2026 08:28:53 +0000
asID: 201341
IP address blocks: 154.16.85.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 27 Apr 2024 05:23:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5366 (0x14f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Feb 27 08:28:53 2024 GMT
Not After : Feb 27 08:28:53 2026 GMT
Subject: CN=65dd9d48-17f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:82:66:18:c8:87:89:9f:e8:4c:7a:38:51:a8:
98:79:c0:e5:64:56:be:f0:1e:d9:d8:a5:65:da:27:
f7:59:5c:d7:c6:65:9d:32:4e:e0:df:2f:4d:6b:ee:
f3:63:49:72:00:be:35:31:4d:93:50:19:6e:8a:cb:
53:25:cb:4b:ae:a3:c2:fb:fb:78:f8:8c:9b:66:0a:
6f:e7:69:82:b6:0d:d4:8c:60:e7:06:f6:42:29:4f:
22:61:b4:f8:8b:4c:49:e6:11:4d:9f:d3:51:bc:cb:
8e:55:28:b0:76:98:9a:30:9e:6b:5a:28:e4:a7:bc:
8c:59:3a:9a:f6:b2:4c:f7:82:8f:6c:a1:15:11:36:
0c:b0:d1:51:c8:40:0f:b1:b3:cd:8e:ff:72:f7:7e:
6c:f3:6c:dc:f4:17:ad:67:c5:52:90:1f:69:0a:05:
5a:9a:04:7e:2b:50:68:3f:f3:cd:a1:32:9f:a3:2f:
14:ed:84:ca:b6:ff:91:4a:50:ef:b8:df:a1:cb:77:
1b:2c:0c:f3:4f:2d:b4:d5:82:f9:db:1f:65:74:3f:
2d:37:eb:14:57:b1:6c:95:40:98:2b:d0:0e:3b:b5:
d8:3f:f8:c8:01:3a:26:ac:60:73:2b:5a:ed:5f:41:
4a:d1:a2:21:eb:4e:4d:3d:24:eb:08:2c:95:64:5b:
01:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:E4:2C:38:12:30:C0:62:7B:FB:5D:5A:09:D7:0E:90:61:BE:98:42
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/3F557270D54A11EE90EACE8F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.85.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:cc:90:6f:38:64:1b:28:94:4c:43:ba:ec:03:6e:92:2e:f6:
58:9a:77:1a:a4:7e:87:30:05:7f:20:45:15:8b:cd:3c:ba:5c:
3c:dd:ba:b3:d7:21:30:ff:4e:79:94:f2:e6:0e:ac:54:3b:e4:
29:53:6a:71:ae:f2:e1:9c:41:d6:ec:5c:48:4b:1d:4d:04:7a:
4a:89:c0:78:55:a0:f3:56:54:6b:95:5c:61:22:01:73:70:10:
d6:04:a4:77:34:0d:e2:e1:89:08:a7:48:58:91:3e:80:b0:a0:
49:3b:39:a6:4b:a2:70:5e:bb:fc:12:57:76:9e:73:33:94:f0:
59:2f:70:fc:4a:2b:3c:19:f0:65:2d:07:06:c0:2d:39:ae:5e:
fb:e7:1c:fb:58:b9:ad:00:7c:ac:1c:4c:5a:a3:b8:01:f9:bd:
9c:d0:59:08:51:c4:0a:50:84:a8:aa:a5:62:08:81:ff:d4:56:
bc:2b:87:2b:3b:77:b3:67:24:5d:83:26:9b:ee:03:a7:9d:a1:
00:ef:96:a4:10:80:1d:a2:c7:3b:cd:d7:ae:25:32:33:d0:7d:
58:11:81:ae:00:1e:9c:09:57:06:75:41:83:08:fd:4c:82:ca:
cb:f4:e5:c4:2c:40:31:58:4d:75:2f:dc:cf:8a:bf:25:e3:0b:
4a:f1:fd:ab
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICFPYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yNDAyMjcwODI4NTNaFw0yNjAyMjcwODI4NTNaMBgxFjAU
BgNVBAMTDTY1ZGQ5ZDQ4LTE3ZjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDQgmYYyIeJn+hMejhRqJh5wOVkVr7wHtnYpWXaJ/dZXNfGZZ0yTuDfL01r
7vNjSXIAvjUxTZNQGW6Ky1Mly0uuo8L7+3j4jJtmCm/naYK2DdSMYOcG9kIpTyJh
tPiLTEnmEU2f01G8y45VKLB2mJownmtaKOSnvIxZOpr2skz3go9soRURNgyw0VHI
QA+xs82O/3L3fmzzbNz0F61nxVKQH2kKBVqaBH4rUGg/882hMp+jLxTthMq2/5FK
UO+436HLdxssDPNPLbTVgvnbH2V0Py036xRXsWyVQJgr0A47tdg/+MgBOiasYHMr
Wu1fQUrRoiHrTk09JOsILJVkWwG9AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU/OQs
OBIwwGJ7+11aCdcOkGG+mEIwHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzNGNTU3MjcwRDU0QTExRUU5MEVBQ0U4Rjc3NTQxMkU2LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEFUwDQYJKoZIhvcNAQEL
BQADggEBAE7MkG84ZBsolExDuuwDbpIu9liadxqkfocwBX8gRRWLzTy6XDzdurPX
ITD/TnmU8uYOrFQ75ClTanGu8uGcQdbsXEhLHU0EekqJwHhVoPNWVGuVXGEiAXNw
ENYEpHc0DeLhiQinSFiRPoCwoEk7OaZLonBeu/wSV3aeczOU8FkvcPxKKzwZ8GUt
BwbALTmuXvvnHPtYua0AfKwcTFqjuAH5vZzQWQhRxApQhKiqpWIIgf/UVrwrhys7
d7NnJF2DJpvuA6edoQDvlqQQgB2ixzvN164lMjPQfVgRga4AHpwJVwZ1QYMI/UyC
ysv05cQsQDFYTXUv3M+KvyXjC0rx/as=
-----END CERTIFICATE-----
Generated at Thu Apr 25 22:33:22 2024 by rpki-client on console-fra.rpki-client.org