Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C9C4C1EF0BB11EE851140C5775412E6.roa
File: 0C9C4C1EF0BB11EE851140C5775412E6.roa (raw, json)
Hash identifier: DqKUGitFv/yYC+JP9QL28sYPXXDBxS+2fDskC2avrwI=
Subject key identifier: 86:36:1B:7C:16:64:A1:A4:2C:F7:EC:DF:E6:69:91:36:2F:3B:11:AD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A8AF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C9C4C1EF0BB11EE851140C5775412E6.roa
Signing time: Tue 02 Apr 2024 06:34:26 +0000
ROA not before: Tue 02 Apr 2024 06:34:22 +0000
ROA not after: Mon 30 Sep 2024 06:34:22 +0000
asID: 211392
IP address blocks: 154.85.10.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43183 (0xa8af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 2 06:34:22 2024 GMT
Not After : Sep 30 06:34:22 2024 GMT
Subject: CN=660ba6f2-436c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b6:9b:f3:f0:18:f7:6f:e9:2a:c7:41:84:d8:
83:91:f1:b6:f0:91:cd:cf:4a:9f:7a:fe:78:c5:3d:
05:d6:2a:b4:bd:da:93:ef:d9:03:40:76:3e:d3:a2:
45:1f:1b:77:1f:ea:7d:15:26:18:19:a5:fb:02:9b:
7b:21:68:21:12:7d:d2:dd:fe:37:aa:a7:46:af:95:
38:7d:9f:d9:88:6d:e7:35:4e:29:73:9b:60:45:bd:
61:fb:38:41:6b:bb:7c:82:28:6b:b9:ae:d5:17:75:
a7:ee:66:08:4a:c9:46:fa:0e:6b:1a:f2:dd:1f:fa:
79:d5:7e:38:7b:28:eb:e0:1e:25:fe:27:19:8a:bd:
33:ca:40:96:4c:a8:63:5a:01:6d:48:4b:88:ed:f9:
03:23:43:1f:bc:43:b8:f8:d3:61:1d:58:fa:65:30:
09:a7:55:cc:09:a6:c5:e5:2f:2a:4f:49:fc:29:89:
61:fb:b1:57:49:0d:25:92:83:ae:4c:9e:21:e5:54:
17:7a:49:a3:3d:b7:45:e2:35:bf:7e:92:78:b6:28:
74:e0:98:f1:36:34:a7:3e:18:5b:8f:fb:08:8e:51:
13:b6:b0:9e:7f:34:10:21:c2:fb:b5:d8:ee:15:fa:
55:c3:8f:2c:e2:e9:c4:db:91:99:14:b3:53:3c:2e:
2c:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:36:1B:7C:16:64:A1:A4:2C:F7:EC:DF:E6:69:91:36:2F:3B:11:AD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C9C4C1EF0BB11EE851140C5775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.10.0/23
Signature Algorithm: sha256WithRSAEncryption
14:d3:33:0b:f3:94:69:7f:c3:bb:07:48:a2:86:1c:21:71:a3:
e1:38:de:84:0e:c0:79:2b:59:52:52:95:79:44:e6:17:4b:ce:
b7:85:5b:e1:aa:35:d6:63:fb:0c:b6:fe:f1:ee:95:ab:ac:b0:
15:ba:5b:9c:8a:95:86:fe:72:79:d2:52:a1:60:79:07:ec:ad:
60:75:1c:21:2e:30:1c:f3:1b:43:9a:13:e4:ad:b9:70:c6:77:
78:93:72:49:c0:84:ea:e7:1a:10:d6:cf:57:4b:6f:d1:7b:0c:
34:1b:c8:7e:8a:7a:73:fe:e8:40:4f:3d:dc:9c:53:f6:7e:18:
00:13:a1:9d:80:29:ad:36:a8:1c:3c:93:65:2b:13:87:29:86:
09:06:64:3a:a1:5e:a1:5b:66:5d:53:ac:97:5f:11:f2:f6:14:
07:13:6e:89:54:58:37:a8:56:eb:f3:2f:9e:1c:20:27:e2:12:
0f:7d:37:c2:f9:c7:23:d3:c0:e6:86:f3:c1:21:8a:a4:f3:48:
ae:94:7f:04:ee:a5:1c:fa:79:e2:e1:45:9b:89:71:8a:2c:7c:
08:4e:6f:28:7a:6a:20:d7:f7:65:a4:cb:fc:af:53:af:97:27:
76:ae:4c:b8:94:d7:49:8f:7e:e1:3e:d7:05:a3:19:41:30:31:
6e:94:d3:35
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKivMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDAyMDYzNDIyWhcNMjQwOTMwMDYzNDIyWjAYMRYw
FAYDVQQDEw02NjBiYTZmMi00MzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArbab8/AY92/pKsdBhNiDkfG28JHNz0qfev54xT0F1iq0vdqT79kDQHY+
06JFHxt3H+p9FSYYGaX7Apt7IWghEn3S3f43qqdGr5U4fZ/ZiG3nNU4pc5tgRb1h
+zhBa7t8gihrua7VF3Wn7mYISslG+g5rGvLdH/p51X44eyjr4B4l/icZir0zykCW
TKhjWgFtSEuI7fkDI0MfvEO4+NNhHVj6ZTAJp1XMCabF5S8qT0n8KYlh+7FXSQ0l
koOuTJ4h5VQXekmjPbdF4jW/fpJ4tih04JjxNjSnPhhbj/sIjlETtrCefzQQIcL7
tdjuFfpVw48s4unE25GZFLNTPC4sSwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFIY2
G3wWZKGkLPfs3+ZpkTYvOxGtMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wQzlDNEMxRUYwQkIxMUVFODUxMTQwQzU3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmlUKMA0GCSqGSIb3DQEB
CwUAA4IBAQAU0zML85Rpf8O7B0iihhwhcaPhON6EDsB5K1lSUpV5ROYXS863hVvh
qjXWY/sMtv7x7pWrrLAVulucipWG/nJ50lKhYHkH7K1gdRwhLjAc8xtDmhPkrblw
xnd4k3JJwITq5xoQ1s9XS2/Reww0G8h+inpz/uhATz3cnFP2fhgAE6GdgCmtNqgc
PJNlKxOHKYYJBmQ6oV6hW2ZdU6yXXxHy9hQHE26JVFg3qFbr8y+eHCAn4hIPfTfC
+ccj08DmhvPBIYqk80iulH8E7qUc+nni4UWbiXGKLHwITm8oemog1/dlpMv8r1Ov
lyd2rky4lNdJj37hPtcFoxlBMDFulNM1
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:15 2024 by rpki-client on console-fra.rpki-client.org