Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E0C9A0610DA11EEADCE06224AD9E6FC.roa
File: 1E0C9A0610DA11EEADCE06224AD9E6FC.roa (raw, json)
Hash identifier: 68mG6Cx0bAVZFO1XotvSxR+S6wymywIjC9hLpfKDM4I=
Subject key identifier: 5D:BD:DF:65:C2:64:12:CF:B3:18:95:56:96:FD:0D:68:48:FF:E0:62
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2D3E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E0C9A0610DA11EEADCE06224AD9E6FC.roa
Signing time: Thu 22 Jun 2023 08:52:29 +0000
ROA not before: Thu 22 Jun 2023 08:52:25 +0000
ROA not after: Fri 05 Jul 2024 08:52:25 +0000
asID: 210334
IP address blocks: 154.89.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11582 (0x2d3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 22 08:52:25 2023 GMT
Not After : Jul 5 08:52:25 2024 GMT
Subject: CN=64940bcd-d758
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:fb:45:e3:74:74:48:08:be:97:fb:ef:0d:c5:
52:9d:57:da:67:09:27:1b:ac:80:f7:0c:ba:d3:ff:
ed:05:2c:a1:c5:aa:d3:1f:78:4b:4b:97:31:ac:23:
d7:f5:07:81:ac:98:1f:fc:cb:4b:00:a6:59:37:91:
de:81:9e:40:9b:55:28:d7:85:05:a4:4d:37:bd:48:
48:b6:30:88:3d:88:41:8a:7d:d2:b8:9f:32:73:eb:
fa:6d:08:2f:cc:8a:ce:0b:bc:99:b6:6e:ba:cb:56:
ac:4e:a9:b5:a0:57:4d:b7:ed:e1:4e:f9:5f:fc:6c:
bd:9a:bd:1b:9b:d4:bb:fa:b3:31:6b:9c:42:c1:12:
c5:0b:3d:cb:e9:36:5b:77:4c:84:cb:43:3e:0f:a7:
7d:9b:69:0b:c9:32:d7:28:fe:66:d3:64:65:7e:b7:
2a:8d:4c:db:91:1a:33:32:e8:bd:d9:10:65:2d:ba:
b3:b7:c0:aa:f9:9b:34:d1:45:4b:cc:8c:cd:41:23:
22:40:19:f8:35:e8:e6:55:f3:d7:b1:12:b8:aa:15:
da:b9:c7:dd:27:2a:6b:b6:8f:df:32:2d:28:c5:39:
dd:37:1b:7c:0a:77:2a:30:f3:a4:d5:bc:4e:b1:62:
84:e7:80:cf:01:06:c1:20:1e:36:72:43:a0:93:c1:
43:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:BD:DF:65:C2:64:12:CF:B3:18:95:56:96:FD:0D:68:48:FF:E0:62
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E0C9A0610DA11EEADCE06224AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.35.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:a9:d3:3e:14:82:ea:89:5c:bf:84:28:8f:0d:4d:56:cf:3e:
92:dc:db:23:fc:d6:a6:f6:ce:d5:ec:82:a3:19:05:ea:df:24:
a5:fc:65:b2:e0:38:b0:94:1e:39:89:32:40:02:49:fe:b9:6e:
dd:53:8b:98:7f:9f:0c:fe:e2:6c:9f:71:dd:f3:23:cf:e1:09:
fc:c5:b0:5f:4c:4f:77:b9:94:c2:52:a0:f6:2e:19:13:19:bd:
21:2d:d0:a6:7b:43:43:f6:fe:9b:2c:17:2f:31:18:96:1a:e6:
92:68:73:8a:cb:fc:b4:5a:b5:e8:26:04:4d:16:17:52:4a:f1:
b5:3f:a0:99:97:0e:08:6f:b5:ee:83:c4:cd:eb:28:4d:cd:c5:
04:bc:7f:ed:6a:3a:18:6e:c2:ba:ff:36:b6:e1:15:54:35:20:
18:5b:26:06:2e:e4:8d:45:8f:4e:fc:50:51:c3:db:25:f5:2c:
19:90:7b:21:9c:1d:7c:38:ec:8c:de:7f:89:6f:a1:c2:f9:9c:
e7:c3:11:55:d4:57:51:4e:5f:09:c9:8a:6b:1c:ad:b7:9f:72:
a5:81:ff:ea:8f:c0:d2:a0:91:1d:05:70:b5:b8:39:e6:4c:7e:
48:a4:9b:15:85:59:6d:a1:29:3d:ee:32:4f:a0:11:c7:3b:b6:
7d:ca:6c:51
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICLT4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA2MjIwODUyMjVaFw0yNDA3MDUwODUyMjVaMBgxFjAU
BgNVBAMTDTY0OTQwYmNkLWQ3NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDs+0XjdHRICL6X++8NxVKdV9pnCScbrID3DLrT/+0FLKHFqtMfeEtLlzGs
I9f1B4GsmB/8y0sAplk3kd6BnkCbVSjXhQWkTTe9SEi2MIg9iEGKfdK4nzJz6/pt
CC/Mis4LvJm2brrLVqxOqbWgV0237eFO+V/8bL2avRub1Lv6szFrnELBEsULPcvp
Nlt3TITLQz4Pp32baQvJMtco/mbTZGV+tyqNTNuRGjMy6L3ZEGUturO3wKr5mzTR
RUvMjM1BIyJAGfg16OZV89exEriqFdq5x90nKmu2j98yLSjFOd03G3wKdyow86TV
vE6xYoTngM8BBsEgHjZyQ6CTwUOjAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUXb3f
ZcJkEs+zGJVWlv0NaEj/4GIwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzFFMEM5QTA2MTBEQTExRUVBRENFMDYyMjRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaWSMwDQYJKoZIhvcNAQEL
BQADggEBALep0z4UguqJXL+EKI8NTVbPPpLc2yP81qb2ztXsgqMZBerfJKX8ZbLg
OLCUHjmJMkACSf65bt1Ti5h/nwz+4myfcd3zI8/hCfzFsF9MT3e5lMJSoPYuGRMZ
vSEt0KZ7Q0P2/pssFy8xGJYa5pJoc4rL/LRategmBE0WF1JK8bU/oJmXDghvte6D
xM3rKE3NxQS8f+1qOhhuwrr/NrbhFVQ1IBhbJgYu5I1Fj078UFHD2yX1LBmQeyGc
HXw47Izef4lvocL5nOfDEVXUV1FOXwnJimscrbefcqWB/+qPwNKgkR0FcLW4OeZM
fkikmxWFWW2hKT3uMk+gEcc7tn3KbFE=
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:03 2024 by rpki-client on console-ams.rpki-client.org