Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/141DEEC2FE1A11EEA42E3669017001B1.roa
File: 141DEEC2FE1A11EEA42E3669017001B1.roa (raw, json)
Hash identifier: xFBOVvrmrrJrUJVbUpL0B/RN1/Qk+KPWwfQSu5REwTA=
Subject key identifier: 53:68:AD:EE:12:37:50:BC:9B:DC:A8:DC:25:32:D7:E1:7B:36:CD:F6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AE4A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/141DEEC2FE1A11EEA42E3669017001B1.roa
Signing time: Fri 19 Apr 2024 06:57:26 +0000
ROA not before: Fri 19 Apr 2024 06:57:22 +0000
ROA not after: Wed 22 May 2024 06:57:22 +0000
asID: 20473
IP address blocks: 154.197.32.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44618 (0xae4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 19 06:57:22 2024 GMT
Not After : May 22 06:57:22 2024 GMT
Subject: CN=662215d5-7248
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f4:0b:9b:55:61:c1:02:c8:19:fb:fb:f0:b5:
4f:78:a0:f2:cf:72:db:ba:69:76:f1:88:f1:59:9e:
9e:3c:15:ba:d7:5b:82:eb:2c:95:70:09:90:83:90:
59:65:70:40:83:3c:7f:20:c7:27:95:63:4b:52:f8:
72:3d:19:18:07:dc:2c:17:86:04:f4:8b:f7:67:a0:
e4:9b:71:4a:fa:4f:b8:d5:a0:d8:90:ae:c2:fb:bc:
c1:c1:2d:97:ce:26:1f:8f:35:cc:3f:94:18:2e:b3:
48:53:f1:d4:6f:b6:fd:14:49:eb:5b:0f:11:70:08:
8e:d3:5e:20:c9:bb:59:d1:03:8b:a8:31:18:55:55:
b0:e8:15:f3:c9:b2:4c:eb:d6:a3:de:3a:dc:9e:6d:
66:b7:b0:19:39:3e:d1:9e:c8:8f:ac:f4:09:54:de:
84:18:9b:60:9c:7c:93:bf:47:a0:63:ce:cf:b6:31:
21:1f:2e:ef:56:71:97:f4:3c:37:c6:05:30:70:52:
d1:a2:35:0b:7c:21:89:f2:3e:af:44:9d:e8:0c:d1:
72:73:7c:9d:81:34:cb:e0:c2:e2:e1:0f:d2:c8:98:
6f:01:5e:ea:5f:90:24:b4:01:49:8f:83:82:3b:bc:
a7:ad:bc:d1:f3:d3:24:96:9c:3f:39:8d:6c:24:46:
01:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:68:AD:EE:12:37:50:BC:9B:DC:A8:DC:25:32:D7:E1:7B:36:CD:F6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/141DEEC2FE1A11EEA42E3669017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.32.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:bd:d8:d2:0b:fc:65:b1:c6:96:91:44:4e:6c:5e:1c:36:e9:
a7:8c:c4:e3:66:b3:3e:e8:07:08:da:27:b5:5a:40:fc:a9:2a:
c2:f6:55:e6:e5:01:50:55:e5:c9:fc:f3:e2:1e:52:6a:44:6e:
a3:71:d6:f6:77:db:2e:7a:92:99:e0:46:18:40:7b:fb:47:f5:
ae:94:3c:33:a6:40:b4:07:f3:75:16:c9:88:c8:c6:8d:b8:9d:
53:2d:7c:19:c6:7b:6b:3f:21:5c:10:06:29:7a:f1:88:e0:da:
a9:63:d1:fc:cf:6b:16:4b:6f:75:01:70:1c:17:49:76:ef:4e:
5a:b9:ef:94:72:32:5f:0e:98:57:b5:e5:5f:44:79:f7:db:50:
c4:04:9f:6b:15:33:b5:23:93:cc:ee:07:3c:6a:5c:a6:22:af:
21:3d:66:11:94:da:83:44:3c:a9:73:32:ca:9d:fe:59:67:ec:
09:f0:89:62:16:8a:74:c3:92:f3:71:d2:aa:59:84:ed:e4:f2:
3e:80:10:72:6f:48:9e:91:78:99:42:a4:a6:66:9a:1b:54:5b:
76:ce:bf:f6:09:ff:4b:d5:9c:92:f3:57:72:25:a1:4e:90:8b:
b6:b0:ac:29:9e:24:b8:54:15:ba:f2:e1:09:5d:29:1a:bd:59:
76:1a:2b:c7
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAK5KMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDE5MDY1NzIyWhcNMjQwNTIyMDY1NzIyWjAYMRYw
FAYDVQQDEw02NjIyMTVkNS03MjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAx/QLm1VhwQLIGfv78LVPeKDyz3Lbuml28YjxWZ6ePBW611uC6yyVcAmQ
g5BZZXBAgzx/IMcnlWNLUvhyPRkYB9wsF4YE9Iv3Z6Dkm3FK+k+41aDYkK7C+7zB
wS2XziYfjzXMP5QYLrNIU/HUb7b9FEnrWw8RcAiO014gybtZ0QOLqDEYVVWw6BXz
ybJM69aj3jrcnm1mt7AZOT7RnsiPrPQJVN6EGJtgnHyTv0egY87PtjEhHy7vVnGX
9Dw3xgUwcFLRojULfCGJ8j6vRJ3oDNFyc3ydgTTL4MLi4Q/SyJhvAV7qX5AktAFJ
j4OCO7ynrbzR89Mklpw/OY1sJEYB/wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFNo
re4SN1C8m9yo3CUy1+F7Ns32MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xNDFERUVDMkZFMUExMUVFQTQyRTM2NjkwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsUgMA0GCSqGSIb3DQEB
CwUAA4IBAQDDvdjSC/xlscaWkURObF4cNumnjMTjZrM+6AcI2ie1WkD8qSrC9lXm
5QFQVeXJ/PPiHlJqRG6jcdb2d9suepKZ4EYYQHv7R/WulDwzpkC0B/N1FsmIyMaN
uJ1TLXwZxntrPyFcEAYpevGI4NqpY9H8z2sWS291AXAcF0l2705aue+UcjJfDphX
teVfRHn321DEBJ9rFTO1I5PM7gc8alymIq8hPWYRlNqDRDypczLKnf5ZZ+wJ8Ili
Fop0w5LzcdKqWYTt5PI+gBByb0iekXiZQqSmZpobVFt2zr/2Cf9L1ZyS81dyJaFO
kIu2sKwpniS4VBW68uEJXSkavVl2GivH
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:03 2024 by rpki-client on console-ams.rpki-client.org