Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E124C94EDBB11EEA27DF7C8775412E6.roa
File: 1E124C94EDBB11EEA27DF7C8775412E6.roa (raw, json)
Hash identifier: Qt6dKrEk3ONAJDBAUYD2MB++GCeeidpbjwFefcJ8I+o=
Subject key identifier: 98:87:52:CB:4D:7C:22:8F:50:21:1F:94:DC:A5:5E:81:DB:05:D8:F3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A74D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E124C94EDBB11EEA27DF7C8775412E6.roa
Signing time: Fri 29 Mar 2024 10:57:21 +0000
ROA not before: Fri 29 Mar 2024 10:57:18 +0000
ROA not after: Sat 04 May 2024 10:57:18 +0000
asID: 142062
IP address blocks: 154.86.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 10:57:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42829 (0xa74d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 29 10:57:18 2024 GMT
Not After : May 4 10:57:18 2024 GMT
Subject: CN=66069e91-ff68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:09:cb:d3:ed:ab:ff:4d:4a:7d:c9:da:e9:3e:
ab:18:bb:df:cd:d8:1a:8b:47:55:c1:b3:e6:93:4f:
1c:44:95:01:46:c5:d0:57:9e:19:a3:47:5b:6e:37:
ed:c0:5f:74:5d:74:40:90:f6:2c:e1:56:06:a3:5a:
97:ec:e1:f4:95:cc:a6:c1:e7:a6:3b:79:80:0c:6f:
fc:d1:d2:d0:f2:b1:83:7c:9c:5b:7c:68:2e:8d:c7:
b9:14:89:90:64:b1:12:a3:4a:27:45:03:fe:d6:32:
3a:bf:2c:3a:89:b1:41:5d:f8:de:81:2e:77:79:82:
5a:94:0a:eb:f7:51:cd:0b:8b:cc:30:c0:e7:32:df:
e2:75:2c:84:54:4c:97:4d:5f:4a:56:4c:4f:2b:4c:
8b:f5:c1:db:28:e5:89:3f:ec:a0:d3:75:1b:2d:7a:
23:1c:cd:d6:31:f2:32:74:c6:78:5b:70:d3:51:75:
ec:9c:0c:f1:f3:0f:f2:2c:18:e0:c9:7c:8e:66:83:
01:38:68:ab:d9:99:84:b1:13:ae:6e:26:23:f7:4c:
9b:9a:5d:0e:96:bf:5d:db:d8:a5:56:b1:19:bb:a8:
c7:97:20:ab:a4:77:62:f4:28:ef:a6:7f:b8:53:e2:
ba:df:34:c2:b7:f3:9a:4b:ed:45:cb:7d:4d:72:fd:
d9:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:87:52:CB:4D:7C:22:8F:50:21:1F:94:DC:A5:5E:81:DB:05:D8:F3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E124C94EDBB11EEA27DF7C8775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.71.0/24
Signature Algorithm: sha256WithRSAEncryption
44:04:fe:ee:fc:75:17:44:11:96:e6:83:b4:16:45:ac:1c:9f:
6a:f6:d1:91:c3:76:a6:e9:67:08:b0:25:f5:c6:30:b5:41:55:
19:fb:49:e8:06:77:36:27:be:67:91:c4:e7:43:77:24:30:c6:
b3:bf:25:a6:2a:da:33:8f:e2:4c:83:6c:d1:17:5f:5c:9d:14:
ef:32:bf:81:e4:de:95:9e:f3:83:05:2c:85:ec:78:68:34:ba:
a0:76:97:06:0d:a9:eb:97:27:25:a8:d9:5c:72:65:9e:3a:ae:
a5:fd:64:a8:d8:ac:7d:18:5a:e3:e5:d8:eb:60:50:e0:32:55:
93:fb:cb:9b:53:1a:b2:2c:0b:e1:c7:f2:f9:5a:70:76:25:47:
2a:e2:7e:07:2d:98:c0:03:de:48:11:4c:8b:d4:72:25:7d:69:
2c:30:a7:1d:4e:2f:fc:79:a9:59:eb:fc:f1:b5:db:25:14:8f:
21:4a:5c:36:40:3c:35:a5:2d:55:ff:dd:2e:be:4d:c5:68:d4:
2a:bd:c5:55:df:ac:01:fa:89:94:b3:d5:9f:b5:02:3c:e1:d2:
2e:3a:ff:58:1f:84:a4:b2:6f:60:2c:5f:37:2c:05:f0:b5:bc:
45:f1:5f:77:be:b0:f0:c9:4e:10:95:8f:4c:e4:d9:5a:7c:f8:
5e:b8:d8:e4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKdNMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzI5MTA1NzE4WhcNMjQwNTA0MTA1NzE4WjAYMRYw
FAYDVQQDEw02NjA2OWU5MS1mZjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0gnL0+2r/01Kfcna6T6rGLvfzdgai0dVwbPmk08cRJUBRsXQV54Zo0db
bjftwF90XXRAkPYs4VYGo1qX7OH0lcymweemO3mADG/80dLQ8rGDfJxbfGgujce5
FImQZLESo0onRQP+1jI6vyw6ibFBXfjegS53eYJalArr91HNC4vMMMDnMt/idSyE
VEyXTV9KVkxPK0yL9cHbKOWJP+yg03UbLXojHM3WMfIydMZ4W3DTUXXsnAzx8w/y
LBjgyXyOZoMBOGir2ZmEsROubiYj90ybml0Olr9d29ilVrEZu6jHlyCrpHdi9Cjv
pn+4U+K63zTCt/OaS+1Fy31Ncv3ZLwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJiH
UstNfCKPUCEflNylXoHbBdjzMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xRTEyNEM5NEVEQkIxMUVFQTI3REY3Qzg3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlZHMA0GCSqGSIb3DQEB
CwUAA4IBAQBEBP7u/HUXRBGW5oO0FkWsHJ9q9tGRw3am6WcIsCX1xjC1QVUZ+0no
Bnc2J75nkcTnQ3ckMMazvyWmKtozj+JMg2zRF19cnRTvMr+B5N6VnvODBSyF7Hho
NLqgdpcGDanrlyclqNlccmWeOq6l/WSo2Kx9GFrj5djrYFDgMlWT+8ubUxqyLAvh
x/L5WnB2JUcq4n4HLZjAA95IEUyL1HIlfWksMKcdTi/8ealZ6/zxtdslFI8hSlw2
QDw1pS1V/90uvk3FaNQqvcVV36wB+omUs9WftQI84dIuOv9YH4Sksm9gLF83LAXw
tbxF8V93vrDwyU4QlY9M5NlafPheuNjk
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:17 2024 by rpki-client on console-fra.rpki-client.org