Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FB3C034E73E11EEB7623180775412E6.roa
File: 0FB3C034E73E11EEB7623180775412E6.roa (raw, json)
Hash identifier: 6ngZ4fc0USCM8BDv6O10i/RvKibaOZsPU+SuY7Wh7po=
Subject key identifier: 90:DD:BA:A1:52:3C:A7:F2:FE:14:68:C3:92:BE:97:7C:83:7F:1F:73
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A3B8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FB3C034E73E11EEB7623180775412E6.roa
Signing time: Thu 21 Mar 2024 04:47:03 +0000
ROA not before: Thu 21 Mar 2024 04:47:00 +0000
ROA not after: Tue 23 Apr 2024 04:47:00 +0000
asID: 44559
IP address blocks: 154.221.221.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41912 (0xa3b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 04:47:00 2024 GMT
Not After : Apr 23 04:47:00 2024 GMT
Subject: CN=65fbbbc7-09d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:15:a6:24:32:41:aa:26:13:dc:c9:15:6e:67:
be:4b:16:ff:5f:cc:8d:95:7c:41:ce:2c:d4:20:7c:
2e:a1:82:3d:d3:a9:34:9f:68:bb:94:4a:f7:61:e5:
f8:f4:b1:25:e9:7c:4d:b7:56:76:61:65:a8:c5:ad:
da:bd:ae:c7:c5:d7:c8:29:6a:9a:49:1e:a5:09:4b:
44:e9:1d:29:48:7f:6a:11:86:4b:94:f6:f8:61:3b:
15:09:e2:f2:c0:64:2b:e4:7a:43:56:fb:87:8f:a4:
91:8f:15:98:77:2b:32:89:c3:aa:81:ac:13:44:37:
2b:5d:23:02:96:f2:66:80:a3:24:87:4d:38:d5:bd:
87:6b:84:54:90:eb:64:bf:82:6b:e5:16:fe:64:f9:
16:d6:10:ca:ee:46:4e:3e:2c:9e:d6:fb:3c:84:d0:
16:9e:26:da:19:e7:0f:58:76:43:e9:88:01:1d:55:
38:39:0c:89:bb:a3:d0:1e:88:43:27:08:7e:66:4a:
73:c9:5d:67:b5:4e:72:dd:41:f2:40:d5:28:14:ab:
97:49:a8:40:e8:3e:b6:9b:46:98:57:99:bd:e0:3f:
89:62:4f:3f:6f:8a:6d:63:28:b5:bf:5c:5d:dc:ee:
f1:e0:fc:b2:38:18:14:06:59:48:86:cf:32:e0:14:
f6:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:DD:BA:A1:52:3C:A7:F2:FE:14:68:C3:92:BE:97:7C:83:7F:1F:73
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FB3C034E73E11EEB7623180775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.221.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:fa:71:65:74:76:4d:07:99:da:c2:00:1e:7f:23:3a:62:48:
ac:2c:8e:26:06:56:e2:4a:9e:00:5a:43:9c:b1:cd:32:bc:f6:
a4:98:b8:98:fa:ed:83:47:c3:dc:92:10:d7:9b:ef:22:8f:9e:
ef:5e:fa:77:a9:8c:76:e4:ed:96:c9:fd:92:10:c7:4a:4e:5a:
63:f7:3d:62:32:ab:19:6c:81:52:68:e4:48:f5:7d:e7:4b:d7:
f9:7e:dd:b1:f3:34:e2:e3:40:91:b0:08:c2:24:7c:53:c5:2f:
70:5c:29:9a:86:d8:74:e4:b5:80:2f:57:0d:f0:99:41:ea:ab:
f5:b5:8b:84:3a:7d:1e:07:70:7f:d8:84:ca:e8:15:cc:fa:52:
fb:f5:8e:75:02:13:ae:26:54:08:a2:3d:2a:c5:88:91:78:76:
f3:0e:db:0f:33:20:a2:de:f6:17:ef:57:b7:68:e2:dc:e3:41:
eb:9d:85:f6:72:37:f2:7b:27:68:f0:cd:23:b1:3d:33:cc:e3:
29:cc:73:e6:fd:98:ca:32:c9:28:ec:3b:05:d0:ca:64:38:cc:
7c:2e:16:b3:39:8c:ea:87:ac:bc:1b:ec:07:1c:64:d4:8e:c2:
7e:06:e1:6f:04:30:56:5d:ab:23:07:da:7a:5e:fe:70:f7:de:
d5:19:8a:64
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKO4MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMDQ0NzAwWhcNMjQwNDIzMDQ0NzAwWjAYMRYw
FAYDVQQDEw02NWZiYmJjNy0wOWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0RWmJDJBqiYT3MkVbme+Sxb/X8yNlXxBzizUIHwuoYI906k0n2i7lEr3
YeX49LEl6XxNt1Z2YWWoxa3ava7HxdfIKWqaSR6lCUtE6R0pSH9qEYZLlPb4YTsV
CeLywGQr5HpDVvuHj6SRjxWYdysyicOqgawTRDcrXSMClvJmgKMkh0041b2Ha4RU
kOtkv4Jr5Rb+ZPkW1hDK7kZOPiye1vs8hNAWnibaGecPWHZD6YgBHVU4OQyJu6PQ
HohDJwh+ZkpzyV1ntU5y3UHyQNUoFKuXSahA6D62m0aYV5m94D+JYk8/b4ptYyi1
v1xd3O7x4PyyOBgUBllIhs8y4BT2hwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJDd
uqFSPKfy/hRow5K+l3yDfx9zMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wRkIzQzAzNEU3M0UxMUVFQjc2MjMxODA3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt3dMA0GCSqGSIb3DQEB
CwUAA4IBAQDS+nFldHZNB5nawgAefyM6YkisLI4mBlbiSp4AWkOcsc0yvPakmLiY
+u2DR8PckhDXm+8ij57vXvp3qYx25O2Wyf2SEMdKTlpj9z1iMqsZbIFSaORI9X3n
S9f5ft2x8zTi40CRsAjCJHxTxS9wXCmahth05LWAL1cN8JlB6qv1tYuEOn0eB3B/
2ITK6BXM+lL79Y51AhOuJlQIoj0qxYiReHbzDtsPMyCi3vYX71e3aOLc40HrnYX2
cjfyeydo8M0jsT0zzOMpzHPm/ZjKMsko7DsF0MpkOMx8LhazOYzqh6y8G+wHHGTU
jsJ+BuFvBDBWXasjB9p6Xv5w997VGYpk
-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:13 2024 by rpki-client on console-fra.rpki-client.org