Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/149CF5EEF47B11EE809B8195775412E6.roa
File: 149CF5EEF47B11EE809B8195775412E6.roa (raw, json)
Hash identifier: 4i8zolxtQBJlOLBhCvJbiW1enyctIKgCKCsxtR9yKQY=
Subject key identifier: D4:AB:73:1F:3A:82:5A:06:24:9A:F1:97:5D:2D:3A:70:7A:5A:67:8B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A976
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/149CF5EEF47B11EE809B8195775412E6.roa
Signing time: Sun 07 Apr 2024 01:06:36 +0000
ROA not before: Sun 07 Apr 2024 01:06:32 +0000
ROA not after: Mon 07 Oct 2024 01:06:32 +0000
asID: 267834
IP address blocks: 154.198.56.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43382 (0xa976)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 01:06:32 2024 GMT
Not After : Oct 7 01:06:32 2024 GMT
Subject: CN=6611f19c-3e99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:88:8d:1e:33:7b:92:27:0a:22:1d:95:a5:82:
f2:eb:96:ed:4f:73:01:27:9f:00:54:c2:25:35:bd:
bb:7d:90:56:61:52:15:2d:f1:82:35:20:ba:3c:9e:
5e:11:25:2c:32:07:8b:7b:06:40:18:10:60:6b:1f:
cd:f3:9d:c5:8a:3c:d0:1f:13:4d:33:9f:c0:66:6a:
a1:cb:11:19:d8:dc:42:08:2f:03:02:5b:f1:08:84:
64:b4:90:51:6e:72:ae:28:ea:da:06:90:9c:c0:26:
33:82:8b:29:fc:93:7b:f1:2a:6c:fc:16:37:b6:c5:
d1:97:04:c8:41:4c:1b:85:a2:81:1d:5e:cd:75:bc:
aa:9f:df:da:0f:4e:a7:f7:25:f5:ac:ab:1a:e0:3e:
82:a6:e1:1e:3e:c3:53:63:0e:01:db:37:07:7f:8d:
22:0e:c2:64:cc:cc:d7:fd:e3:67:70:a0:01:0a:3d:
f5:0a:31:38:43:8d:b9:d7:01:76:34:69:b3:86:f6:
0b:00:42:31:4e:47:e9:be:45:0e:34:2b:e4:e3:60:
ef:d0:34:8f:d3:dd:5b:b2:6a:89:db:a2:f3:ed:76:
f9:12:14:45:bd:6c:fb:56:1b:9a:e7:cf:57:bc:00:
71:1b:c8:4b:54:f7:d1:42:08:e6:7b:7c:68:30:d4:
9b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:AB:73:1F:3A:82:5A:06:24:9A:F1:97:5D:2D:3A:70:7A:5A:67:8B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/149CF5EEF47B11EE809B8195775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.56.0/22
Signature Algorithm: sha256WithRSAEncryption
32:7a:37:89:60:fb:f0:a5:9b:97:74:6e:8f:7c:01:6d:62:c6:
9c:0f:6b:93:e6:ba:40:8d:d3:c1:ec:b6:14:33:13:97:58:74:
79:2d:ae:c5:20:4f:92:fa:8e:8f:14:5a:dd:e1:2a:3b:cc:e4:
7d:39:ef:f5:f0:73:09:a3:48:ef:a1:f3:10:9a:df:ce:63:c7:
af:a4:8f:7a:20:7e:5b:ae:9c:c3:c7:5b:f1:0b:69:38:7b:fc:
62:9d:20:0d:6b:b6:a5:74:7e:e3:8e:4b:8f:12:08:03:03:61:
4d:82:98:2d:dd:36:67:d1:f1:f2:1b:42:7c:b8:a4:ef:33:70:
7d:55:fe:1c:63:81:f5:cd:33:8a:a9:fe:84:db:ee:3b:50:8a:
cb:57:40:29:57:01:45:f1:cf:09:e2:5e:55:5f:28:fb:65:17:
34:44:e5:14:a2:97:1f:ae:a8:c1:25:d1:26:75:cd:5d:b9:13:
c8:2c:9c:80:14:cc:20:97:42:92:9b:00:bc:ff:e5:da:2f:aa:
a0:c5:4c:1e:fc:e5:65:06:ba:59:75:1d:57:24:29:17:df:da:
13:fb:6a:47:c8:79:bd:c0:6f:42:a4:2e:0a:f0:32:59:41:05:
36:7e:7a:c6:1b:45:ea:ee:d8:53:ad:46:09:78:03:f9:15:33:
9c:28:24:f4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKl2MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDA3MDEwNjMyWhcNMjQxMDA3MDEwNjMyWjAYMRYw
FAYDVQQDEw02NjExZjE5Yy0zZTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyoiNHjN7kicKIh2VpYLy65btT3MBJ58AVMIlNb27fZBWYVIVLfGCNSC6
PJ5eESUsMgeLewZAGBBgax/N853FijzQHxNNM5/AZmqhyxEZ2NxCCC8DAlvxCIRk
tJBRbnKuKOraBpCcwCYzgosp/JN78Sps/BY3tsXRlwTIQUwbhaKBHV7Ndbyqn9/a
D06n9yX1rKsa4D6CpuEePsNTYw4B2zcHf40iDsJkzMzX/eNncKABCj31CjE4Q425
1wF2NGmzhvYLAEIxTkfpvkUONCvk42Dv0DSP091bsmqJ26Lz7Xb5EhRFvWz7Vhua
589XvABxG8hLVPfRQgjme3xoMNSbgwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFNSr
cx86gloGJJrxl10tOnB6WmeLMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xNDlDRjVFRUY0N0IxMUVFODA5QjgxOTU3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmsY4MA0GCSqGSIb3DQEB
CwUAA4IBAQAyejeJYPvwpZuXdG6PfAFtYsacD2uT5rpAjdPB7LYUMxOXWHR5La7F
IE+S+o6PFFrd4So7zOR9Oe/18HMJo0jvofMQmt/OY8evpI96IH5brpzDx1vxC2k4
e/xinSANa7aldH7jjkuPEggDA2FNgpgt3TZn0fHyG0J8uKTvM3B9Vf4cY4H1zTOK
qf6E2+47UIrLV0ApVwFF8c8J4l5VXyj7ZRc0ROUUopcfrqjBJdEmdc1duRPILJyA
FMwgl0KSmwC8/+XaL6qgxUwe/OVlBrpZdR1XJCkX39oT+2pHyHm9wG9CpC4K8DJZ
QQU2fnrGG0Xq7thTrUYJeAP5FTOcKCT0
-----END CERTIFICATE-----
Generated at Fri May 3 03:10:14 2024 by rpki-client on console-ams.rpki-client.org