Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24E11C34E4F211EEA46F8EAE775412E6.roa
File: 24E11C34E4F211EEA46F8EAE775412E6.roa (raw, json)
Hash identifier: ruxjTX06hEIuQRx6fT9eut1WqBNe+krBj+/BxBzbMnY=
Subject key identifier: C9:AB:75:39:00:D4:94:71:1B:7E:C5:A7:27:FE:3F:96:8C:5F:49:16
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A29D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24E11C34E4F211EEA46F8EAE775412E6.roa
Signing time: Mon 18 Mar 2024 06:38:35 +0000
ROA not before: Mon 18 Mar 2024 06:38:31 +0000
ROA not after: Sat 20 Apr 2024 06:38:31 +0000
asID: 39600
IP address blocks: 154.95.40.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 20 Apr 2024 06:38:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41629 (0xa29d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 18 06:38:31 2024 GMT
Not After : Apr 20 06:38:31 2024 GMT
Subject: CN=65f7e16b-e518
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:da:14:b6:57:ec:ce:a6:94:9b:b4:16:80:2d:
da:7c:c2:d9:fd:e2:43:ae:95:33:09:8c:4f:e3:b1:
63:f0:d4:7e:1d:be:fd:19:4c:84:f1:23:32:b3:21:
73:d9:2d:6d:23:31:27:93:67:5f:e9:94:72:03:c9:
09:db:f7:1c:32:06:28:a6:19:68:10:dc:43:98:d5:
28:d5:d0:f4:27:24:ac:6c:9b:e3:06:98:6b:f0:9b:
eb:18:06:e1:71:70:94:b4:90:74:8c:36:09:67:a0:
75:35:e3:b4:c9:c1:be:a6:15:0f:a5:6f:b2:4e:37:
c6:e2:86:de:88:03:1d:8d:34:3e:cc:e7:a2:60:5a:
04:8a:69:d0:b8:08:0d:94:fa:28:34:3e:15:1d:97:
cc:69:7c:fd:9f:9c:cf:c7:7c:37:a9:a1:22:cf:f6:
db:e5:a3:dd:35:a7:94:ef:e8:fb:c3:f1:1d:02:88:
37:f7:ed:bd:fc:79:2c:3d:c9:d7:73:9a:b7:19:43:
73:86:54:dc:73:47:16:ef:3f:5f:0d:8c:68:58:62:
12:0f:8d:d2:a7:3d:f2:95:b0:6b:56:1a:09:69:4d:
92:6c:00:5a:ea:55:03:85:fd:ac:97:56:03:1f:3f:
dc:3c:94:b4:ee:33:5d:d8:eb:5e:31:6e:35:d4:5c:
34:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:AB:75:39:00:D4:94:71:1B:7E:C5:A7:27:FE:3F:96:8C:5F:49:16
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24E11C34E4F211EEA46F8EAE775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.40.0/21
Signature Algorithm: sha256WithRSAEncryption
14:dd:fd:15:23:75:ae:a8:46:e7:6c:3d:58:97:16:d3:5b:64:
d9:24:c2:82:b5:8a:94:44:d4:8d:c8:69:b1:0b:9d:d4:ae:ab:
c3:74:0f:2c:21:6c:14:1d:80:1c:c7:32:49:31:28:00:cb:b2:
ce:df:dc:0a:3b:e5:e7:4c:c4:c6:f0:b7:9d:bd:38:c6:cc:dd:
dd:d4:7a:58:93:51:45:91:9a:c9:76:96:fa:dd:34:ff:cf:e9:
66:3c:62:28:22:e5:9f:85:30:fe:92:b7:b3:60:85:3f:d4:95:
75:69:88:53:66:08:b3:02:b7:da:0b:3e:0f:67:73:5c:4c:87:
02:e9:f5:c4:cf:c2:df:ba:e5:26:4f:8c:05:64:a6:11:aa:e3:
36:62:30:ec:40:f2:d3:42:04:24:af:45:5f:27:1b:23:09:39:
f5:17:66:31:4f:57:da:7e:ba:0b:6b:30:dd:e0:b0:78:f7:89:
4a:39:7d:b0:04:ae:82:9a:54:41:67:3f:ac:86:a5:65:d7:59:
c7:7b:83:1e:24:8b:95:3c:fb:a1:0e:cf:f5:e9:4c:9d:72:fa:
11:1c:5a:64:df:ed:96:cc:2a:9a:06:98:08:1b:08:61:5e:6f:
ce:50:8a:8b:ec:35:56:82:35:c1:63:48:ef:a5:77:3e:94:0f:
18:ce:e0:d0
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKKdMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzE4MDYzODMxWhcNMjQwNDIwMDYzODMxWjAYMRYw
FAYDVQQDEw02NWY3ZTE2Yi1lNTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAr9oUtlfszqaUm7QWgC3afMLZ/eJDrpUzCYxP47Fj8NR+Hb79GUyE8SMy
syFz2S1tIzEnk2df6ZRyA8kJ2/ccMgYophloENxDmNUo1dD0JySsbJvjBphr8Jvr
GAbhcXCUtJB0jDYJZ6B1NeO0ycG+phUPpW+yTjfG4obeiAMdjTQ+zOeiYFoEimnQ
uAgNlPooND4VHZfMaXz9n5zPx3w3qaEiz/bb5aPdNaeU7+j7w/EdAog39+29/Hks
PcnXc5q3GUNzhlTcc0cW7z9fDYxoWGISD43Spz3ylbBrVhoJaU2SbABa6lUDhf2s
l1YDHz/cPJS07jNd2OteMW411Fw01wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFMmr
dTkA1JRxG37Fpyf+P5aMX0kWMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yNEUxMUMzNEU0RjIxMUVFQTQ2RjhFQUU3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDml8oMA0GCSqGSIb3DQEB
CwUAA4IBAQAU3f0VI3WuqEbnbD1YlxbTW2TZJMKCtYqURNSNyGmxC53UrqvDdA8s
IWwUHYAcxzJJMSgAy7LO39wKO+XnTMTG8LedvTjGzN3d1HpYk1FFkZrJdpb63TT/
z+lmPGIoIuWfhTD+krezYIU/1JV1aYhTZgizArfaCz4PZ3NcTIcC6fXEz8LfuuUm
T4wFZKYRquM2YjDsQPLTQgQkr0VfJxsjCTn1F2YxT1fafroLazDd4LB494lKOX2w
BK6CmlRBZz+shqVl11nHe4MeJIuVPPuhDs/16UydcvoRHFpk3+2WzCqaBpgIGwhh
Xm/OUIqL7DVWgjXBY0jvpXc+lA8YzuDQ
-----END CERTIFICATE-----
Generated at Sat Apr 20 01:48:17 2024 by rpki-client on console-fra.rpki-client.org