Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/11BC3880E73D11EEAC91147A775412E6.roa
File: 11BC3880E73D11EEAC91147A775412E6.roa (raw, json)
Hash identifier: TLai3zX5yQIOcvHhw68MtFQ29BHLZ4bJCLX8nAJQMy8=
Subject key identifier: 0B:08:8F:30:73:CB:12:9D:B8:7A:F0:82:5B:75:34:EB:F4:A3:79:81
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A3AE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/11BC3880E73D11EEAC91147A775412E6.roa
Signing time: Thu 21 Mar 2024 04:39:57 +0000
ROA not before: Thu 21 Mar 2024 04:39:54 +0000
ROA not after: Tue 23 Apr 2024 04:39:54 +0000
asID: 44559
IP address blocks: 154.221.226.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41902 (0xa3ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 04:39:54 2024 GMT
Not After : Apr 23 04:39:54 2024 GMT
Subject: CN=65fbba1d-6e46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a3:09:9e:1e:1f:e2:d1:79:63:f1:f3:d3:2e:
db:1d:8b:ca:ef:10:18:37:21:9a:ca:2c:a2:7e:a5:
ee:08:6a:67:ee:6e:a6:a7:a7:06:19:a3:94:dc:b9:
51:1b:d5:5e:16:7c:35:0a:d1:f2:c9:25:0e:a5:7b:
28:b4:fd:97:41:5e:16:75:24:ad:9e:e9:b2:95:8f:
cf:82:5b:61:8e:96:b4:dd:5c:05:7b:70:3c:c0:a0:
45:d7:68:ac:e4:96:34:3c:a9:47:72:9c:ca:f4:d3:
9a:f1:f5:4b:eb:54:de:fc:84:aa:95:f5:62:5d:f2:
93:4d:3a:d2:73:75:36:00:68:c8:6f:8f:d8:d2:d2:
6e:cb:0f:00:c2:ed:59:65:d8:27:a0:94:2d:85:9d:
cf:d8:05:d8:da:f7:13:37:78:e5:ed:1e:ae:92:d7:
e5:f9:68:2a:0c:8a:b3:2f:0b:56:0c:08:32:28:16:
c6:8a:ce:ad:55:4e:16:b7:c7:96:02:dc:3b:d2:f8:
b1:85:5a:e9:ed:6a:6a:82:db:4b:fc:da:28:bb:a5:
7b:a8:fd:4a:1f:dc:aa:56:d3:40:c7:18:ff:18:5b:
9a:e8:a4:5f:86:2c:3f:59:be:60:7d:60:fa:25:69:
d0:c8:a0:0e:b6:57:31:ef:c8:0e:45:68:3d:3d:73:
6a:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:08:8F:30:73:CB:12:9D:B8:7A:F0:82:5B:75:34:EB:F4:A3:79:81
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/11BC3880E73D11EEAC91147A775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.226.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:ec:80:88:ca:a8:04:62:32:28:97:7a:8f:4f:07:8f:2d:f0:
fc:07:b8:73:83:6c:83:3a:72:70:c3:a0:64:4b:d6:3c:d7:90:
0d:f5:ed:1e:62:f8:55:6d:d8:c8:69:7a:d7:c4:40:27:55:6e:
68:ee:4c:bb:49:ed:bd:cc:ee:fe:3a:15:79:3b:ea:5e:72:e6:
8c:44:9c:e3:a8:a9:67:b1:7f:35:30:14:ea:c4:da:08:c5:03:
77:ac:8c:6c:e9:ef:64:bd:da:6a:bc:0c:a8:d8:a7:0b:6b:1e:
b8:4c:41:b2:de:e3:28:b3:1f:79:1e:c2:7f:52:0f:2c:4d:fe:
e9:a4:8d:8f:69:88:ac:14:bf:ad:ed:b9:eb:5e:b5:6a:6c:35:
2a:45:68:6d:6e:e6:9b:e5:d9:fd:42:a6:7e:f9:ff:08:06:a4:
76:14:ef:d0:f0:32:28:86:78:97:20:86:c1:c3:46:2e:0a:25:
83:31:02:ba:c3:d6:5b:b7:8c:b6:81:d7:6b:6d:6b:5b:b2:9a:
8a:70:b8:08:88:bc:26:37:7d:ac:8b:c6:14:06:20:f1:3d:9e:
9e:07:e2:08:57:88:df:ea:33:7a:93:f9:e7:f6:9f:16:22:f7:
f4:a3:65:4b:dd:3d:99:06:05:0e:c3:a7:5d:51:ca:4c:34:6e:
73:49:8d:82
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKOuMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMDQzOTU0WhcNMjQwNDIzMDQzOTU0WjAYMRYw
FAYDVQQDEw02NWZiYmExZC02ZTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsKMJnh4f4tF5Y/Hz0y7bHYvK7xAYNyGayiyifqXuCGpn7m6mp6cGGaOU
3LlRG9VeFnw1CtHyySUOpXsotP2XQV4WdSStnumylY/Pglthjpa03VwFe3A8wKBF
12is5JY0PKlHcpzK9NOa8fVL61Te/ISqlfViXfKTTTrSc3U2AGjIb4/Y0tJuyw8A
wu1ZZdgnoJQthZ3P2AXY2vcTN3jl7R6uktfl+WgqDIqzLwtWDAgyKBbGis6tVU4W
t8eWAtw70vixhVrp7WpqgttL/Noou6V7qP1KH9yqVtNAxxj/GFua6KRfhiw/Wb5g
fWD6JWnQyKAOtlcx78gORWg9PXNqBQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFAsI
jzBzyxKduHrwglt1NOv0o3mBMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xMUJDMzg4MEU3M0QxMUVFQUM5MTE0N0E3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt3iMA0GCSqGSIb3DQEB
CwUAA4IBAQBv7ICIyqgEYjIol3qPTwePLfD8B7hzg2yDOnJww6BkS9Y815AN9e0e
YvhVbdjIaXrXxEAnVW5o7ky7Se29zO7+OhV5O+pecuaMRJzjqKlnsX81MBTqxNoI
xQN3rIxs6e9kvdpqvAyo2KcLax64TEGy3uMosx95HsJ/Ug8sTf7ppI2PaYisFL+t
7bnrXrVqbDUqRWhtbuab5dn9QqZ++f8IBqR2FO/Q8DIohniXIIbBw0YuCiWDMQK6
w9Zbt4y2gddrbWtbspqKcLgIiLwmN32si8YUBiDxPZ6eB+IIV4jf6jN6k/nn9p8W
Ivf0o2VL3T2ZBgUOw6ddUcpMNG5zSY2C
-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:13 2024 by rpki-client on console-ams.rpki-client.org