Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/229BCD02DC5011EE93E837B6775412E6.roa
File: 229BCD02DC5011EE93E837B6775412E6.roa (raw, json)
Hash identifier: gBKCixFRPgom+B1agEx7EFATDHri8SMr24Q8/9sCxlY=
Subject key identifier: AE:49:8B:22:E5:1F:32:8D:62:97:B0:9B:5A:FE:C1:56:5E:1F:3A:FF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 9F40
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/229BCD02DC5011EE93E837B6775412E6.roa
Signing time: Thu 07 Mar 2024 06:58:43 +0000
ROA not before: Thu 07 Mar 2024 06:58:40 +0000
ROA not after: Wed 28 Aug 2024 06:58:40 +0000
asID: 209242
IP address blocks: 154.197.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40768 (0x9f40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 7 06:58:40 2024 GMT
Not After : Aug 28 06:58:40 2024 GMT
Subject: CN=65e965a3-bb0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:30:08:cf:33:fa:69:d4:b0:6f:58:bf:39:bd:
58:86:1c:29:c2:28:0e:9a:df:51:5a:2e:f8:2b:61:
f6:73:ae:5d:00:0a:44:52:06:ac:82:9a:99:6e:17:
02:19:75:90:94:e1:1e:72:04:ff:5b:3d:dd:22:ed:
8f:33:85:12:9d:a3:ad:84:8d:ef:dd:81:a2:55:a0:
fe:b6:a4:3c:c2:98:0e:fd:da:0d:35:41:30:9d:f7:
eb:f9:ce:8c:46:71:4c:f0:56:5d:16:44:0f:4f:84:
96:c5:d7:4a:25:d7:9c:7b:be:87:bb:d8:34:28:fb:
cc:43:df:e8:61:f9:95:70:d9:89:60:9d:a4:ec:95:
38:3c:cf:a4:b1:44:0f:52:72:d3:e6:03:9d:a4:05:
be:3f:de:23:c7:41:cd:28:ae:fa:f3:16:b2:e1:79:
3b:36:f6:d5:09:8b:e4:82:4b:1e:2e:32:9f:aa:12:
87:cd:a1:e7:d2:6c:18:9b:ff:3e:7d:a2:d8:5e:3d:
99:3a:d0:90:21:14:5f:af:29:ac:94:1b:a8:97:df:
87:9e:19:10:12:cb:f4:19:d6:1d:92:07:8d:f8:00:
ce:49:31:24:34:73:f2:76:2b:42:8a:2c:24:65:e1:
95:7d:30:12:04:11:ce:5f:e2:dd:fb:0e:27:5a:24:
20:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:49:8B:22:E5:1F:32:8D:62:97:B0:9B:5A:FE:C1:56:5E:1F:3A:FF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/229BCD02DC5011EE93E837B6775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.80.0/24
Signature Algorithm: sha256WithRSAEncryption
94:ca:4c:39:c7:12:f5:29:e9:3b:ea:03:21:df:eb:93:ec:b4:
3d:5a:be:e3:0f:5e:33:eb:6f:1c:b3:f9:57:61:f6:38:e2:66:
e1:84:87:54:62:c4:05:4e:b7:3c:44:df:80:a1:f3:4b:55:c8:
f9:81:25:4f:31:95:6f:f0:97:69:a5:19:e8:71:f4:95:9e:a2:
d3:77:a5:9e:67:1f:11:be:95:6f:28:07:63:bb:bf:46:2e:4f:
d4:93:69:b7:f5:9e:f3:63:a7:76:d1:e0:78:2a:0b:28:6a:e0:
2c:a3:d5:d8:33:ee:7d:c0:cc:70:13:60:2a:7e:ac:05:1c:3d:
6e:b5:3d:5e:d4:b0:d7:b6:1c:56:88:b9:d1:45:0e:fb:5d:43:
a6:1e:6e:d2:96:b8:c2:cb:25:65:4d:b6:67:7c:bf:10:86:68:
bc:9e:4d:c8:80:f2:e2:75:3b:fe:2b:5d:82:72:8c:9c:f7:1f:
39:21:2b:1d:24:01:bc:19:4d:9b:cf:6e:d6:b0:db:4c:73:ff:
20:b3:f7:3a:5e:f8:a0:39:91:c9:a7:34:97:ec:48:db:cf:29:
31:55:8a:c5:0f:27:a2:b5:87:7c:ed:67:51:b9:c6:9b:cb:2b:
9e:d3:5a:b8:ae:dc:4a:e3:d2:bf:4f:58:c7:32:e1:1d:5e:24:
7c:20:57:2d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAJ9AMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzA3MDY1ODQwWhcNMjQwODI4MDY1ODQwWjAYMRYw
FAYDVQQDEw02NWU5NjVhMy1iYjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2TAIzzP6adSwb1i/Ob1YhhwpwigOmt9RWi74K2H2c65dAApEUgasgpqZ
bhcCGXWQlOEecgT/Wz3dIu2PM4USnaOthI3v3YGiVaD+tqQ8wpgO/doNNUEwnffr
+c6MRnFM8FZdFkQPT4SWxddKJdece76Hu9g0KPvMQ9/oYfmVcNmJYJ2k7JU4PM+k
sUQPUnLT5gOdpAW+P94jx0HNKK768xay4Xk7NvbVCYvkgkseLjKfqhKHzaHn0mwY
m/8+faLYXj2ZOtCQIRRfrymslBuol9+HnhkQEsv0GdYdkgeN+ADOSTEkNHPyditC
iiwkZeGVfTASBBHOX+Ld+w4nWiQgAQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFK5J
iyLlHzKNYpewm1r+wVZeHzr/MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yMjlCQ0QwMkRDNTAxMUVFOTNFODM3QjY3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsVQMA0GCSqGSIb3DQEB
CwUAA4IBAQCUykw5xxL1Kek76gMh3+uT7LQ9Wr7jD14z628cs/lXYfY44mbhhIdU
YsQFTrc8RN+AofNLVcj5gSVPMZVv8JdppRnocfSVnqLTd6WeZx8RvpVvKAdju79G
Lk/Uk2m39Z7zY6d20eB4KgsoauAso9XYM+59wMxwE2AqfqwFHD1utT1e1LDXthxW
iLnRRQ77XUOmHm7SlrjCyyVlTbZnfL8Qhmi8nk3IgPLidTv+K12Ccoyc9x85ISsd
JAG8GU2bz27WsNtMc/8gs/c6XvigOZHJpzSX7EjbzykxVYrFDyeitYd87WdRucab
yyue01q4rtxK49K/T1jHMuEdXiR8IFct
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:04 2024 by rpki-client on console-ams.rpki-client.org