Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0D5ACE64C50511EEB9E56AB3775412E6.roa
File: 0D5ACE64C50511EEB9E56AB3775412E6.roa (raw, json)
Hash identifier: VVw9XLa5HhZkEB5tqoVuK7dspevaxgoxojXwQHiZ4fY=
Subject key identifier: 7F:5B:6C:C5:06:41:4D:66:07:E0:03:DC:6B:49:C2:D0:F8:E0:1D:55
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 863B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0D5ACE64C50511EEB9E56AB3775412E6.roa
Signing time: Tue 06 Feb 2024 15:33:18 +0000
ROA not before: Tue 06 Feb 2024 15:33:15 +0000
ROA not after: Thu 13 Jun 2024 15:33:15 +0000
asID: 212238
IP address blocks: 154.195.42.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 28 Apr 2024 11:49:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34363 (0x863b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 6 15:33:15 2024 GMT
Not After : Jun 13 15:33:15 2024 GMT
Subject: CN=65c2513e-9341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:7a:84:e4:fd:8a:ac:07:ae:08:31:44:cd:f8:
c7:c3:a7:0d:2d:c1:e6:99:68:b2:3f:cc:30:1a:9c:
79:22:14:0e:59:65:be:84:7d:0a:a2:d8:62:3d:62:
df:d1:08:49:f8:17:7b:29:2b:62:ed:73:3b:d1:ee:
b2:8e:1b:85:25:13:bd:6e:5a:45:ff:9d:85:75:ea:
04:27:20:dc:24:8e:6e:8d:20:ba:03:c9:33:01:59:
d6:7a:30:c8:40:4d:d6:07:4e:21:d9:87:fe:6e:8b:
73:21:b6:3d:b0:74:bc:c0:9e:70:6a:6d:f2:e8:f5:
64:7c:e1:79:8f:c5:3e:5c:17:59:e3:9d:22:e5:9e:
96:c6:0a:b9:85:05:82:17:29:8d:c0:aa:ac:a9:63:
b7:59:ca:6f:c4:73:1b:e7:65:78:ed:85:bf:be:81:
8f:de:94:0e:ef:ae:cf:f3:06:be:cc:6a:ed:c6:7d:
7d:d2:d6:ab:0d:bf:c0:fd:07:ff:50:76:10:28:59:
6f:58:c2:ca:ab:d1:e3:58:de:f9:fb:8c:81:26:c1:
16:69:8f:6a:19:68:90:38:7c:94:d5:81:d9:9d:65:
fa:87:50:e5:4a:d6:b0:59:26:dd:2b:a0:38:49:a1:
2b:d4:0f:90:ab:a6:58:b6:00:31:7d:67:ff:2c:0b:
16:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:5B:6C:C5:06:41:4D:66:07:E0:03:DC:6B:49:C2:D0:F8:E0:1D:55
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0D5ACE64C50511EEB9E56AB3775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.42.0/24
Signature Algorithm: sha256WithRSAEncryption
60:b9:e7:ce:d5:2a:ad:f9:ff:d9:6f:e4:9b:2f:9f:7b:3a:08:
2b:99:97:66:5a:30:ac:85:42:c5:5b:1b:a2:bf:65:29:cb:a9:
5b:a2:bf:aa:10:c0:2a:35:e7:52:cd:2b:d1:2f:39:e7:a9:4b:
f3:f1:c0:e7:29:67:42:7c:99:a8:a2:a2:5c:4a:7d:45:af:4d:
d0:7e:9e:2a:12:86:a8:32:c1:20:c3:83:bb:62:15:cd:e1:27:
f5:f3:10:2c:c8:f4:c8:36:e5:34:dd:fa:b9:e3:0c:a6:2e:71:
fd:ef:07:3d:aa:da:95:9a:ae:29:94:45:11:b6:78:80:85:b5:
ee:1b:c6:74:b1:18:97:b1:fd:4a:86:3e:d2:81:b4:28:ff:fd:
c6:01:0d:b3:9d:84:ba:f4:fb:33:ee:dc:ce:b6:72:62:8b:5f:
10:7c:b1:b1:1e:47:5d:09:7b:36:6c:91:c0:a7:ca:10:fb:40:
a6:01:75:c4:24:e9:0f:aa:8c:6c:37:ae:e7:70:29:78:82:82:
dd:00:eb:f8:5b:8e:7a:a9:39:e4:96:22:48:48:13:84:85:33:
a6:af:05:0f:11:19:c8:0d:2c:6a:c3:1e:de:dd:f8:37:28:e1:
c2:5e:d9:e5:d2:3d:de:f1:45:24:d0:f2:08:cb:fc:1d:25:7d:
89:ff:f7:3a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAIY7MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMjA2MTUzMzE1WhcNMjQwNjEzMTUzMzE1WjAYMRYw
FAYDVQQDEw02NWMyNTEzZS05MzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAoHqE5P2KrAeuCDFEzfjHw6cNLcHmmWiyP8wwGpx5IhQOWWW+hH0Kothi
PWLf0QhJ+Bd7KSti7XM70e6yjhuFJRO9blpF/52FdeoEJyDcJI5ujSC6A8kzAVnW
ejDIQE3WB04h2Yf+botzIbY9sHS8wJ5wam3y6PVkfOF5j8U+XBdZ450i5Z6Wxgq5
hQWCFymNwKqsqWO3WcpvxHMb52V47YW/voGP3pQO767P8wa+zGrtxn190tarDb/A
/Qf/UHYQKFlvWMLKq9HjWN75+4yBJsEWaY9qGWiQOHyU1YHZnWX6h1DlStawWSbd
K6A4SaEr1A+Qq6ZYtgAxfWf/LAsWZQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFH9b
bMUGQU1mB+AD3GtJwtD44B1VMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wRDVBQ0U2NEM1MDUxMUVFQjlFNTZBQjM3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsMqMA0GCSqGSIb3DQEB
CwUAA4IBAQBguefO1Sqt+f/Zb+SbL597OggrmZdmWjCshULFWxuiv2Upy6lbor+q
EMAqNedSzSvRLznnqUvz8cDnKWdCfJmooqJcSn1Fr03Qfp4qEoaoMsEgw4O7YhXN
4Sf18xAsyPTINuU03fq54wymLnH97wc9qtqVmq4plEURtniAhbXuG8Z0sRiXsf1K
hj7SgbQo//3GAQ2znYS69Psz7tzOtnJii18QfLGxHkddCXs2bJHAp8oQ+0CmAXXE
JOkPqoxsN67ncCl4goLdAOv4W456qTnkliJISBOEhTOmrwUPERnIDSxqwx7e3fg3
KOHCXtnl0j3e8UUk0PIIy/wdJX2J//c6
-----END CERTIFICATE-----
Generated at Sat Apr 27 13:33:40 2024 by rpki-client on console-ams.rpki-client.org