Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/23087E14FAE811EE962B055D017001B1.roa
File: 23087E14FAE811EE962B055D017001B1.roa (raw, json)
Hash identifier: dBX2foUKRsM2QpQ/E6NroC9VpRa7/eLfR0dS3tvGVQw=
Subject key identifier: 23:1F:2D:F5:87:83:A6:70:30:9E:A5:F1:1A:D1:B7:CE:DE:DB:42:82
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AC8A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/23087E14FAE811EE962B055D017001B1.roa
Signing time: Mon 15 Apr 2024 05:22:22 +0000
ROA not before: Mon 15 Apr 2024 05:22:19 +0000
ROA not after: Thu 09 May 2024 05:22:19 +0000
asID: 139646
IP address blocks: 154.91.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44170 (0xac8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 05:22:19 2024 GMT
Not After : May 9 05:22:19 2024 GMT
Subject: CN=661cb98e-b67b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:16:6f:0f:4f:28:fe:e9:16:e5:92:d0:75:ec:
65:e6:c8:36:2e:cc:64:99:b5:91:80:98:9c:53:37:
0d:7a:65:f5:e8:55:63:26:1e:98:ae:8f:5a:6f:b7:
96:3c:42:fe:9b:a4:10:63:d2:4b:55:8c:17:eb:f7:
9e:80:98:26:5b:30:db:2c:68:e8:09:4e:2f:a3:49:
7f:19:6a:ea:db:7e:62:cc:c6:e0:af:43:7b:f1:68:
5d:b9:44:20:56:db:c7:5d:93:92:a3:6b:ca:12:aa:
c0:8b:ea:00:40:47:7a:fe:ee:02:68:9e:34:cb:2a:
a6:65:83:fc:f6:4b:7c:27:e3:2b:ee:c4:0f:f9:92:
6e:5a:d0:5e:f2:8c:64:9b:0d:2d:05:68:47:db:f3:
10:3f:93:8d:41:98:1a:b5:ad:03:4e:6a:ab:d2:cc:
2c:91:0e:f5:dc:80:19:b8:26:e7:53:a2:3a:50:81:
82:6a:0b:ea:d4:1c:c6:36:5b:9e:e3:09:31:61:7d:
e9:99:ec:5b:c9:e1:d0:21:1a:93:44:07:b2:09:af:
15:93:95:c4:fd:84:d6:fe:b2:ba:35:d2:44:ba:2e:
ea:a0:c8:19:aa:ef:74:f8:ea:5a:41:e7:7e:d8:b4:
8e:d6:d2:a5:4d:75:2c:11:8b:96:e2:36:0e:9e:0b:
ea:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:1F:2D:F5:87:83:A6:70:30:9E:A5:F1:1A:D1:B7:CE:DE:DB:42:82
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/23087E14FAE811EE962B055D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.224.0/19
Signature Algorithm: sha256WithRSAEncryption
4c:f8:48:28:5e:b5:c9:ad:ee:53:8a:03:91:c9:50:43:88:99:
bd:fa:c9:b4:34:95:32:39:79:36:a3:f4:5f:5a:35:57:c3:4d:
2b:c7:be:66:38:9e:8b:b6:29:f3:1d:ba:3e:f7:ee:b6:2c:05:
9c:7d:9e:6e:a8:df:b5:f9:66:e4:5a:16:c0:85:75:38:6e:ba:
a0:a1:f9:36:31:28:fc:0e:6b:ee:5e:a6:1d:f5:6d:1a:64:14:
44:b5:e9:b9:c8:ae:d1:e5:20:07:74:4f:af:78:5e:57:40:83:
fa:49:ff:88:9b:91:ff:e4:9e:19:a0:ad:42:ca:86:bf:47:63:
02:75:90:24:76:b8:4f:bb:d9:4d:a4:ee:ee:d0:c3:dd:7f:88:
80:77:bc:b2:5e:63:60:8f:b2:9b:53:44:86:6f:e7:72:cb:7b:
c5:0d:d8:fb:58:8d:9a:69:ea:e6:88:73:49:12:3b:f2:7d:14:
47:8f:23:09:84:46:11:07:a7:ef:8d:50:ea:7a:33:75:f6:b3:
53:56:82:d7:29:ec:1e:16:3b:0b:a0:a1:00:35:34:4c:fb:1c:
2b:2d:7e:2f:46:e4:ae:49:b2:9c:86:fd:63:98:98:ee:e9:2c:
4a:b7:49:30:82:26:d4:99:69:43:a6:60:d1:b3:80:82:0b:92:
a8:07:65:8e
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKyKMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDE1MDUyMjE5WhcNMjQwNTA5MDUyMjE5WjAYMRYw
FAYDVQQDEw02NjFjYjk4ZS1iNjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAphZvD08o/ukW5ZLQdexl5sg2LsxkmbWRgJicUzcNemX16FVjJh6Yro9a
b7eWPEL+m6QQY9JLVYwX6/eegJgmWzDbLGjoCU4vo0l/GWrq235izMbgr0N78Whd
uUQgVtvHXZOSo2vKEqrAi+oAQEd6/u4CaJ40yyqmZYP89kt8J+Mr7sQP+ZJuWtBe
8oxkmw0tBWhH2/MQP5ONQZgata0DTmqr0swskQ713IAZuCbnU6I6UIGCagvq1BzG
Nlue4wkxYX3pmexbyeHQIRqTRAeyCa8Vk5XE/YTW/rK6NdJEui7qoMgZqu90+Opa
Qed+2LSO1tKlTXUsEYuW4jYOngvqpQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCMf
LfWHg6ZwMJ6l8RrRt87e20KCMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yMzA4N0UxNEZBRTgxMUVFOTYyQjA1NUQwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFmlvgMA0GCSqGSIb3DQEB
CwUAA4IBAQBM+EgoXrXJre5TigORyVBDiJm9+sm0NJUyOXk2o/RfWjVXw00rx75m
OJ6LtinzHbo+9+62LAWcfZ5uqN+1+WbkWhbAhXU4brqgofk2MSj8DmvuXqYd9W0a
ZBREtem5yK7R5SAHdE+veF5XQIP6Sf+Im5H/5J4ZoK1Cyoa/R2MCdZAkdrhPu9lN
pO7u0MPdf4iAd7yyXmNgj7KbU0SGb+dyy3vFDdj7WI2aaermiHNJEjvyfRRHjyMJ
hEYRB6fvjVDqejN19rNTVoLXKeweFjsLoKEANTRM+xwrLX4vRuSuSbKchv1jmJju
6SxKt0kwgibUmWlDpmDRs4CCC5KoB2WO
-----END CERTIFICATE-----
Generated at Fri May 3 01:29:49 2024 by rpki-client on console-fra.rpki-client.org