Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/21A4288EE74711EE9A2FD0C6775412E6.roa
File: 21A4288EE74711EE9A2FD0C6775412E6.roa (raw, json)
Hash identifier: gxzoYIFnVLxuBSw60WALRZMDIFpL3IwVHIjUNuM3nQs=
Subject key identifier: 9A:31:17:3C:70:F0:A7:D4:37:97:BD:08:1F:DD:52:A7:E4:F8:28:DD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A411
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/21A4288EE74711EE9A2FD0C6775412E6.roa
Signing time: Thu 21 Mar 2024 05:51:59 +0000
ROA not before: Thu 21 Mar 2024 05:51:56 +0000
ROA not after: Tue 23 Apr 2024 05:51:56 +0000
asID: 44559
IP address blocks: 154.220.176.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42001 (0xa411)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 05:51:56 2024 GMT
Not After : Apr 23 05:51:56 2024 GMT
Subject: CN=65fbcaff-cd61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:2e:34:74:b2:17:75:6b:49:49:2d:a9:62:c0:
98:c1:83:73:b8:52:34:e3:c8:45:e2:f7:93:bf:55:
3f:a5:09:fc:33:42:f0:55:e6:96:b9:74:85:ae:8c:
ab:ae:5e:d9:ae:e8:2f:3c:b6:71:2c:b5:8e:4b:46:
e2:34:5e:80:a3:15:b4:94:45:18:91:8a:a5:1f:48:
b0:bd:b7:70:52:12:db:03:3a:a4:18:8b:4f:06:dc:
42:7d:27:80:a0:20:fb:5f:45:4a:d5:87:07:65:07:
ad:67:56:7d:c1:40:c9:e7:6d:3b:15:37:f4:ce:b5:
8b:f2:a5:d9:16:ff:ad:f6:10:d4:a4:2d:1e:5a:a4:
8b:fc:e2:38:18:48:fc:2a:50:ae:99:53:c4:67:b4:
31:8c:70:0e:09:7f:1b:42:35:5d:c6:11:a1:23:e6:
c8:35:5f:f2:55:3e:12:15:dd:fd:d8:8e:bd:3c:ce:
98:b9:4f:ae:f8:ed:6a:0a:3d:3f:61:3d:e3:f8:03:
95:57:ef:66:8a:38:5d:dc:83:cf:59:e0:07:5a:cb:
d4:66:3f:d5:6a:cb:ab:8b:7a:28:35:96:a5:f8:86:
6a:65:4b:43:b2:46:2b:3a:0d:eb:e9:b7:33:a4:2b:
ad:75:2f:af:0e:a1:5b:3f:26:09:f9:49:a7:b9:08:
28:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:31:17:3C:70:F0:A7:D4:37:97:BD:08:1F:DD:52:A7:E4:F8:28:DD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/21A4288EE74711EE9A2FD0C6775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.176.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:d7:bf:a4:f6:3f:59:92:5f:b4:40:9e:d1:42:21:10:6b:e5:
d1:bd:91:fb:84:7a:03:21:ae:62:f4:7c:ae:e4:c2:63:ff:03:
91:24:7f:fa:e6:81:6e:09:2e:f1:23:15:44:d4:16:b6:e9:6a:
37:33:42:06:2a:32:46:96:58:4c:eb:f9:bf:20:6b:3e:8e:e5:
e7:9f:96:28:d9:c1:8f:78:4f:69:46:1c:2f:a2:18:ff:35:b7:
20:71:7e:52:83:88:ad:c6:80:6e:7a:06:d1:4e:00:93:af:6e:
a3:60:01:49:16:ce:87:83:68:24:ca:36:a5:24:a6:9e:c7:45:
36:6b:bb:2c:40:5c:b2:56:45:4b:2e:90:5a:93:04:e0:42:f4:
84:c4:85:5b:96:da:dd:4d:60:88:18:c7:2a:38:ea:ec:e5:f8:
64:04:60:a6:fb:c1:8b:c2:eb:39:a9:8a:8a:07:ee:27:cf:c5:
23:f8:67:1b:f7:7b:52:4a:4c:9d:7d:d0:9a:74:10:de:c2:5c:
2f:36:6c:9d:7a:83:bc:8b:0c:43:8f:c4:29:cf:6d:78:af:94:
5d:bd:1d:68:f3:92:7d:85:59:5a:1d:92:6e:13:40:c2:ba:3b:
96:18:79:e8:89:ca:20:40:f3:0a:10:d3:b7:da:6c:08:c4:eb:
8e:90:fc:46
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKQRMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMDU1MTU2WhcNMjQwNDIzMDU1MTU2WjAYMRYw
FAYDVQQDEw02NWZiY2FmZi1jZDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyy40dLIXdWtJSS2pYsCYwYNzuFI048hF4veTv1U/pQn8M0LwVeaWuXSF
royrrl7ZrugvPLZxLLWOS0biNF6AoxW0lEUYkYqlH0iwvbdwUhLbAzqkGItPBtxC
fSeAoCD7X0VK1YcHZQetZ1Z9wUDJ5207FTf0zrWL8qXZFv+t9hDUpC0eWqSL/OI4
GEj8KlCumVPEZ7QxjHAOCX8bQjVdxhGhI+bINV/yVT4SFd392I69PM6YuU+u+O1q
Cj0/YT3j+AOVV+9mijhd3IPPWeAHWsvUZj/Vasuri3ooNZal+IZqZUtDskYrOg3r
6bczpCutdS+vDqFbPyYJ+UmnuQgo1wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJox
Fzxw8KfUN5e9CB/dUqfk+CjdMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yMUE0Mjg4RUU3NDcxMUVFOUEyRkQwQzY3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtywMA0GCSqGSIb3DQEB
CwUAA4IBAQA617+k9j9Zkl+0QJ7RQiEQa+XRvZH7hHoDIa5i9Hyu5MJj/wORJH/6
5oFuCS7xIxVE1Ba26Wo3M0IGKjJGllhM6/m/IGs+juXnn5Yo2cGPeE9pRhwvohj/
NbcgcX5Sg4itxoBuegbRTgCTr26jYAFJFs6Hg2gkyjalJKaex0U2a7ssQFyyVkVL
LpBakwTgQvSExIVbltrdTWCIGMcqOOrs5fhkBGCm+8GLwus5qYqKB+4nz8Uj+Gcb
93tSSkydfdCadBDewlwvNmydeoO8iwxDj8Qpz214r5RdvR1o85J9hVlaHZJuE0DC
ujuWGHnoicogQPMKENO32mwIxOuOkPxG
-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:15 2024 by rpki-client on console-ams.rpki-client.org