Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2A35B49CE28B11EEBC3F53AF775412E6.roa
File: 2A35B49CE28B11EEBC3F53AF775412E6.roa (raw, json)
Hash identifier: jIiy1EXHl1JYdWUGnQb7Y//A3voar/I0PQ0KZRq8hmA=
Subject key identifier: 3F:7A:A6:9D:08:33:BF:23:46:86:30:33:99:DA:5C:B8:0C:C0:14:A0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A17F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2A35B49CE28B11EEBC3F53AF775412E6.roa
Signing time: Fri 15 Mar 2024 05:16:23 +0000
ROA not before: Fri 15 Mar 2024 05:16:20 +0000
ROA not after: Fri 20 Sep 2024 05:16:20 +0000
asID: 2914
IP address blocks: 154.214.222.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41343 (0xa17f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 15 05:16:20 2024 GMT
Not After : Sep 20 05:16:20 2024 GMT
Subject: CN=65f3d9a7-ce8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:70:0a:47:96:2d:90:60:35:1f:e7:e4:32:b6:
e5:e3:75:4b:bd:fd:5a:21:ba:bf:0b:2a:7a:c0:f5:
7e:3e:4b:d1:e2:6c:bb:ad:87:3c:63:7b:30:da:39:
22:2a:fc:14:04:9d:3e:e2:40:f9:41:e7:6b:f8:8d:
66:a5:bb:59:3c:2d:b0:91:ca:41:c2:ca:57:e1:35:
f1:df:b7:ba:71:a6:e7:a4:9d:e3:0a:18:49:94:16:
08:fa:c0:bb:99:8b:e1:2b:09:42:7a:f5:25:5c:26:
f9:67:5d:95:ad:0c:3a:33:bd:fe:44:33:5b:78:5f:
d4:6f:2f:47:a7:06:de:83:88:69:c5:a1:d9:9b:75:
36:47:dd:09:2f:42:c9:e1:bf:e0:9a:7a:bb:6c:b8:
ae:ce:e2:4a:a0:dd:47:21:d0:64:57:a7:d0:9e:7c:
2e:da:e3:7a:6f:dd:ff:aa:a3:29:fa:65:e7:ee:86:
c1:e7:e7:b7:16:fa:f6:f9:44:49:41:2d:81:af:2d:
b3:65:0d:e0:81:2e:5d:2f:ae:b1:50:cf:8b:52:ee:
91:55:22:5a:0f:4d:d6:02:99:7e:80:de:cb:30:89:
3b:bc:05:b8:69:96:ba:bf:f2:e4:75:d3:08:0f:0a:
dd:2a:e0:1e:72:8d:d5:2d:ad:96:41:ce:41:b5:13:
5f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:7A:A6:9D:08:33:BF:23:46:86:30:33:99:DA:5C:B8:0C:C0:14:A0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2A35B49CE28B11EEBC3F53AF775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.222.0/24
Signature Algorithm: sha256WithRSAEncryption
77:75:e1:3c:24:98:e8:7d:ef:74:22:4d:d4:3b:cb:ba:15:de:
63:8e:c5:b4:a6:ee:7d:0c:1d:fc:fd:fa:0b:cd:ea:dc:00:fd:
63:8a:e9:2c:3a:46:7c:98:07:1c:99:b0:6c:b6:40:b8:2b:26:
2a:39:aa:a1:49:bc:a7:e1:e3:c5:a3:9f:12:42:e0:ab:d7:f1:
fb:ea:f2:7b:8b:04:2d:e1:cd:81:51:b0:f8:51:8f:98:4b:ae:
db:d8:2f:e0:d9:b2:cb:c0:09:4c:be:d0:6d:2c:89:a8:5b:3a:
ac:58:0f:d6:53:37:d3:19:92:9e:ee:6c:f7:f3:6b:6b:db:2f:
d6:ae:74:3c:38:ba:2a:69:d7:c0:80:ad:30:e8:54:09:85:d0:
ee:4b:cc:22:e3:0b:37:81:c6:25:dc:d3:bf:b6:d2:49:02:a9:
ac:60:3f:fa:a7:ce:b2:7e:2e:9a:f3:fe:0b:1a:41:c7:86:e1:
ba:8c:2c:f8:e8:23:63:f3:41:81:c9:b6:21:9b:32:79:a1:45:
d7:7f:5c:cd:2f:d4:87:b6:af:aa:68:95:3e:5b:9a:66:04:21:
16:fc:92:ab:c3:4b:5e:f3:38:8a:c8:d8:e5:cb:7b:cb:64:d7:
03:de:2d:a9:77:27:ec:51:e1:d7:b8:0c:19:60:4a:41:f0:a2:
47:45:af:52
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKF/MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzE1MDUxNjIwWhcNMjQwOTIwMDUxNjIwWjAYMRYw
FAYDVQQDEw02NWYzZDlhNy1jZThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3nAKR5YtkGA1H+fkMrbl43VLvf1aIbq/Cyp6wPV+PkvR4my7rYc8Y3sw
2jkiKvwUBJ0+4kD5Qedr+I1mpbtZPC2wkcpBwspX4TXx37e6cabnpJ3jChhJlBYI
+sC7mYvhKwlCevUlXCb5Z12VrQw6M73+RDNbeF/Uby9Hpwbeg4hpxaHZm3U2R90J
L0LJ4b/gmnq7bLiuzuJKoN1HIdBkV6fQnnwu2uN6b93/qqMp+mXn7obB5+e3Fvr2
+URJQS2Bry2zZQ3ggS5dL66xUM+LUu6RVSJaD03WApl+gN7LMIk7vAW4aZa6v/Lk
ddMIDwrdKuAeco3VLa2WQc5BtRNf2wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFD96
pp0IM78jRoYwM5naXLgMwBSgMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yQTM1QjQ5Q0UyOEIxMUVFQkMzRjUzQUY3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtbeMA0GCSqGSIb3DQEB
CwUAA4IBAQB3deE8JJjofe90Ik3UO8u6Fd5jjsW0pu59DB38/foLzercAP1jiuks
OkZ8mAccmbBstkC4KyYqOaqhSbyn4ePFo58SQuCr1/H76vJ7iwQt4c2BUbD4UY+Y
S67b2C/g2bLLwAlMvtBtLImoWzqsWA/WUzfTGZKe7mz382tr2y/WrnQ8OLoqadfA
gK0w6FQJhdDuS8wi4ws3gcYl3NO/ttJJAqmsYD/6p86yfi6a8/4LGkHHhuG6jCz4
6CNj80GBybYhmzJ5oUXXf1zNL9SHtq+qaJU+W5pmBCEW/JKrw0te8ziKyNjly3vL
ZNcD3i2pdyfsUeHXuAwZYEpB8KJHRa9S
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:18 2024 by rpki-client on console-fra.rpki-client.org