Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/281B1EF468C411EE9516FD3D4AD9E6FC.roa
File: 281B1EF468C411EE9516FD3D4AD9E6FC.roa (raw, json)
Hash identifier: wZqDtaku/KVeB/vVDpLbhlsscy0JwgsORsx/d/DXjUI=
Subject key identifier: A9:D4:D1:A8:A5:54:6E:FC:AA:EC:B9:A9:45:D7:6B:29:46:84:24:74
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 45A2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/281B1EF468C411EE9516FD3D4AD9E6FC.roa
Signing time: Thu 12 Oct 2023 05:56:59 +0000
ROA not before: Thu 12 Oct 2023 05:56:56 +0000
ROA not after: Tue 27 Aug 2024 05:56:56 +0000
asID: 138995
IP address blocks: 154.197.33.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17826 (0x45a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 12 05:56:56 2023 GMT
Not After : Aug 27 05:56:56 2024 GMT
Subject: CN=65278aab-8a1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:43:22:29:3f:17:bf:ad:b2:d9:d4:f0:2a:a1:
d3:46:ab:81:d2:32:d0:a3:36:3f:c0:4e:12:9e:df:
44:b2:d5:b0:a0:1a:0a:4f:c8:ca:42:fb:17:5f:46:
7e:78:c2:64:02:6f:74:12:ee:68:d5:f2:b9:a9:ee:
f7:07:fc:83:9d:66:8a:48:db:d5:df:27:61:dc:9e:
07:f7:59:53:14:75:0f:3c:48:47:be:f8:5c:dd:34:
3e:d3:d1:a6:b9:49:60:f3:f0:ec:b4:99:fa:20:38:
c7:c0:20:26:55:df:31:50:a5:61:50:22:bc:6a:69:
33:bd:a4:ea:a3:db:74:42:e7:b5:77:30:43:79:14:
c0:5a:3d:11:c3:56:82:d8:8c:b3:cb:b7:fa:0e:6b:
be:55:73:97:23:eb:24:1c:05:10:7c:48:f7:15:94:
37:48:d4:5e:ca:20:f0:0d:ff:52:9d:5a:a9:2d:46:
cd:c3:63:ba:b1:b5:c2:67:47:69:4f:a7:e9:d9:ff:
c6:55:32:72:e5:ec:46:c5:04:ad:8a:c0:8a:3b:57:
20:cb:01:f0:22:1e:0a:b6:84:9e:fb:51:20:85:2a:
35:ff:5a:1e:93:b9:95:07:dc:b7:45:20:f4:b5:57:
3f:d0:30:91:c4:5a:4a:10:98:2e:7a:e5:d2:22:a5:
dc:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:D4:D1:A8:A5:54:6E:FC:AA:EC:B9:A9:45:D7:6B:29:46:84:24:74
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/281B1EF468C411EE9516FD3D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.33.0/24
Signature Algorithm: sha256WithRSAEncryption
57:c3:be:80:92:2e:f7:27:33:bd:b6:8e:2d:dc:c7:ee:47:d7:
f0:cb:71:1a:56:d0:1e:67:50:8b:e0:6a:6b:8e:c8:7f:5b:81:
4a:54:c3:a4:fd:81:3c:1f:e7:66:59:66:5b:aa:68:16:68:3e:
b1:03:2f:62:4c:56:77:39:a2:3e:a6:6a:99:37:98:8a:39:86:
56:4e:da:10:30:cf:24:2f:79:8b:6e:da:34:55:53:c1:81:2d:
65:99:a6:f6:8f:3e:c6:b0:6a:aa:d9:3b:34:c1:ab:fb:4c:4e:
0b:d3:16:6e:96:96:7b:59:f6:89:86:87:9f:71:e1:23:3f:f2:
49:52:a2:ce:a6:5f:59:1a:63:62:de:ee:27:8a:9d:aa:0a:f0:
79:60:ff:9b:d4:65:d5:f1:a1:a4:b3:b8:34:a7:c1:33:13:76:
1a:c2:89:35:f8:db:ea:b4:3c:cb:eb:e0:ab:0a:47:47:e5:dc:
bb:4c:d6:f9:86:a6:35:5c:34:ab:e0:7b:b5:2a:c3:50:f1:11:
4e:1c:13:62:68:86:19:ff:4f:42:14:fa:26:6b:34:9c:ae:ed:
d0:34:06:6d:3a:6d:ef:7a:dd:71:79:24:23:d7:3d:a8:4d:c8:
b9:97:67:ac:a8:aa:57:3a:22:ee:e4:7d:65:96:7e:d2:36:76:
fe:7e:07:d7
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICRaIwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzEwMTIwNTU2NTZaFw0yNDA4MjcwNTU2NTZaMBgxFjAU
BgNVBAMTDTY1Mjc4YWFiLThhMWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC5QyIpPxe/rbLZ1PAqodNGq4HSMtCjNj/AThKe30Sy1bCgGgpPyMpC+xdf
Rn54wmQCb3QS7mjV8rmp7vcH/IOdZopI29XfJ2Hcngf3WVMUdQ88SEe++FzdND7T
0aa5SWDz8Oy0mfogOMfAICZV3zFQpWFQIrxqaTO9pOqj23RC57V3MEN5FMBaPRHD
VoLYjLPLt/oOa75Vc5cj6yQcBRB8SPcVlDdI1F7KIPAN/1KdWqktRs3DY7qxtcJn
R2lPp+nZ/8ZVMnLl7EbFBK2KwIo7VyDLAfAiHgq2hJ77USCFKjX/Wh6TuZUH3LdF
IPS1Vz/QMJHEWkoQmC565dIipdz7AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUqdTR
qKVUbvyq7LmpRddrKUaEJHQwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzI4MUIxRUY0NjhDNDExRUU5NTE2RkQzRDRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaxSEwDQYJKoZIhvcNAQEL
BQADggEBAFfDvoCSLvcnM722ji3cx+5H1/DLcRpW0B5nUIvgamuOyH9bgUpUw6T9
gTwf52ZZZluqaBZoPrEDL2JMVnc5oj6mapk3mIo5hlZO2hAwzyQveYtu2jRVU8GB
LWWZpvaPPsawaqrZOzTBq/tMTgvTFm6WlntZ9omGh59x4SM/8klSos6mX1kaY2Le
7ieKnaoK8Hlg/5vUZdXxoaSzuDSnwTMTdhrCiTX42+q0PMvr4KsKR0fl3LtM1vmG
pjVcNKvge7Uqw1DxEU4cE2Johhn/T0IU+iZrNJyu7dA0Bm06be963XF5JCPXPahN
yLmXZ6yoqlc6Iu7kfWWWftI2dv5+B9c=
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:04 2024 by rpki-client on console-ams.rpki-client.org