Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D740614F17211EEAD945362775412E6.roa
File: 1D740614F17211EEAD945362775412E6.roa (raw, json)
Hash identifier: oDY+yqScy+i12JXUfjZI8P0xhZqU7UjCR8fKHUOFOIs=
Subject key identifier: E5:B5:35:EE:46:BC:33:28:9C:75:54:83:CA:78:47:7F:C0:4A:4D:A1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A92E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D740614F17211EEAD945362775412E6.roa
Signing time: Wed 03 Apr 2024 04:24:52 +0000
ROA not before: Wed 03 Apr 2024 04:24:48 +0000
ROA not after: Mon 06 May 2024 04:24:48 +0000
asID: 147176
IP address blocks: 154.197.102.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43310 (0xa92e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 3 04:24:48 2024 GMT
Not After : May 6 04:24:48 2024 GMT
Subject: CN=660cda14-5fe8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1f:e0:26:c7:00:53:3f:89:be:75:ba:01:4f:
58:9b:46:ce:e9:3a:92:53:86:61:24:f5:2b:ce:2c:
07:cf:8a:80:94:dc:33:ad:d6:d7:a4:9a:a7:79:cf:
ab:f0:29:ca:41:ba:26:e7:86:47:ee:3c:f5:f2:eb:
7e:d1:fa:a3:bc:92:db:9f:7d:73:07:f4:be:95:69:
8f:9f:6c:0a:db:04:e5:b7:21:2f:61:ce:d2:96:a7:
70:ce:b7:50:ca:a2:5c:40:45:94:33:c6:13:6c:7e:
90:a1:b4:89:f5:ee:ee:87:be:be:e2:85:f3:6d:6d:
b5:c5:6e:52:f0:1c:8e:64:07:ac:b0:0b:bd:69:88:
73:e4:5b:e8:f0:a3:ce:70:bc:85:d8:b3:33:5b:41:
dd:d0:00:cf:ba:3a:17:40:3e:d6:79:de:fe:8f:67:
50:d2:76:d1:f4:11:26:9c:79:e4:a7:96:8d:ee:6b:
7b:6e:ca:33:31:96:f8:17:d1:f8:f3:24:f1:fb:d0:
d5:d8:0d:1f:cb:99:f0:40:05:94:91:93:38:0c:82:
a3:7d:91:6b:29:04:ff:9c:17:1b:3c:fc:26:40:78:
46:d7:76:e7:dc:a8:00:35:00:0a:e8:10:c9:bd:c5:
96:f4:87:6f:b4:72:db:f7:23:03:33:68:7d:b6:ef:
9e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:B5:35:EE:46:BC:33:28:9C:75:54:83:CA:78:47:7F:C0:4A:4D:A1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D740614F17211EEAD945362775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.102.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:b6:b4:de:d3:f8:94:4b:45:28:94:6a:84:5f:a2:3c:ec:37:
2b:f4:64:70:5d:76:1c:59:f9:8a:75:0a:1d:18:6c:0c:28:59:
7b:73:fd:06:17:71:32:28:e4:81:ad:c0:93:58:2d:f4:39:28:
4d:ea:c4:d5:ef:42:f0:69:17:19:b0:2b:5c:b4:9e:50:a3:97:
10:be:07:ff:c8:eb:5f:0e:63:18:dd:a9:57:30:2f:f5:63:fa:
dd:a1:1b:af:e4:06:fe:7c:71:51:2f:3d:cd:80:58:46:91:18:
05:9c:03:e1:c1:61:bc:1c:1e:18:39:ff:60:80:40:c9:d3:b2:
e0:3b:2a:ee:f2:03:ba:1e:db:9e:2b:05:b1:ca:79:cd:6d:14:
bc:fa:11:eb:fd:b7:56:af:e0:67:a0:98:30:07:38:a3:1e:b3:
11:23:a4:90:04:51:61:ca:b3:b5:dc:57:64:c4:dd:97:d6:0c:
5c:20:6e:5e:49:14:35:d7:fd:90:38:99:1e:2d:f1:f6:a4:89:
57:10:c6:6d:fa:11:ba:1b:37:15:73:5b:1d:5b:56:9a:b5:1e:
24:2b:78:e7:18:38:13:62:2f:45:eb:8c:5e:bc:74:a4:99:db:
47:fd:d2:5c:4d:ff:0e:f5:60:35:d1:d5:92:80:25:11:05:17:
06:29:83:0d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKkuMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDAzMDQyNDQ4WhcNMjQwNTA2MDQyNDQ4WjAYMRYw
FAYDVQQDEw02NjBjZGExNC01ZmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyh/gJscAUz+JvnW6AU9Ym0bO6TqSU4ZhJPUrziwHz4qAlNwzrdbXpJqn
ec+r8CnKQbom54ZH7jz18ut+0fqjvJLbn31zB/S+lWmPn2wK2wTltyEvYc7Slqdw
zrdQyqJcQEWUM8YTbH6QobSJ9e7uh76+4oXzbW21xW5S8ByOZAessAu9aYhz5Fvo
8KPOcLyF2LMzW0Hd0ADPujoXQD7Wed7+j2dQ0nbR9BEmnHnkp5aN7mt7bsozMZb4
F9H48yTx+9DV2A0fy5nwQAWUkZM4DIKjfZFrKQT/nBcbPPwmQHhG13bn3KgANQAK
6BDJvcWW9IdvtHLb9yMDM2h9tu+egwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOW1
Ne5GvDMonHVUg8p4R3/ASk2hMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xRDc0MDYxNEYxNzIxMUVFQUQ5NDUzNjI3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsVmMA0GCSqGSIb3DQEB
CwUAA4IBAQA7trTe0/iUS0UolGqEX6I87Dcr9GRwXXYcWfmKdQodGGwMKFl7c/0G
F3EyKOSBrcCTWC30OShN6sTV70LwaRcZsCtctJ5Qo5cQvgf/yOtfDmMY3alXMC/1
Y/rdoRuv5Ab+fHFRLz3NgFhGkRgFnAPhwWG8HB4YOf9ggEDJ07LgOyru8gO6Htue
KwWxynnNbRS8+hHr/bdWr+BnoJgwBzijHrMRI6SQBFFhyrO13FdkxN2X1gxcIG5e
SRQ11/2QOJkeLfH2pIlXEMZt+hG6GzcVc1sdW1aatR4kK3jnGDgTYi9F64xevHSk
mdtH/dJcTf8O9WA10dWSgCURBRcGKYMN
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:17 2024 by rpki-client on console-fra.rpki-client.org