Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/34C3ABF0F00D11EE8D102372775412E6.roa
File: 34C3ABF0F00D11EE8D102372775412E6.roa (raw, json)
Hash identifier: ALG6kikdYjM6EaTYLJAbOmxpEMnPhI0Mvat8W2Lo8Qc=
Subject key identifier: 65:80:14:37:FD:94:33:68:0B:9E:56:BE:BC:85:AA:1B:C0:A5:5B:8B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A85C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/34C3ABF0F00D11EE8D102372775412E6.roa
Signing time: Mon 01 Apr 2024 09:50:01 +0000
ROA not before: Mon 01 Apr 2024 09:49:57 +0000
ROA not after: Sat 11 May 2024 09:49:57 +0000
asID: 63139
IP address blocks: 154.203.184.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43100 (0xa85c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 09:49:57 2024 GMT
Not After : May 11 09:49:57 2024 GMT
Subject: CN=660a8348-a30b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:08:8a:76:82:02:06:b5:a7:ed:d3:40:dd:bc:
69:77:7f:df:7b:4f:15:0a:98:8a:19:44:67:4e:46:
7d:27:a8:d5:bd:f1:f9:4a:eb:c4:4e:8d:d0:13:e9:
2a:33:73:20:6a:6c:cf:87:82:bd:dd:a2:b4:ea:74:
55:d9:3b:90:15:11:a9:c8:b2:3d:f8:b6:83:ee:0f:
b9:29:39:4d:1c:7d:28:7e:8c:8a:db:12:bb:fc:6e:
fb:4a:24:66:50:bc:24:01:5a:35:57:06:cb:96:f6:
8a:21:be:60:42:7f:f6:fe:71:bf:c5:9d:23:ca:d6:
0c:dd:c1:e9:35:ac:ae:f8:34:bb:d2:3e:b7:fb:8a:
f8:27:3b:e5:03:86:cd:f2:ce:3c:ec:57:fc:77:60:
51:56:d9:82:8c:93:25:3e:73:05:5f:e4:13:a0:f0:
0d:60:42:d0:7b:dd:3e:05:93:f7:4e:5e:13:a2:89:
b7:12:7e:a6:9e:46:1a:3c:2a:08:99:c6:47:33:7d:
fa:b5:48:bc:3e:bd:53:7c:41:57:d4:75:8b:21:77:
e5:6c:88:01:75:a6:76:3c:73:b8:bd:4d:c1:ca:88:
11:a6:42:1e:f6:47:d9:8d:cf:4a:9a:a7:44:7d:e9:
cc:2e:0f:7c:a0:d5:d2:f2:a4:0c:8c:43:a5:bb:40:
4b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:80:14:37:FD:94:33:68:0B:9E:56:BE:BC:85:AA:1B:C0:A5:5B:8B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/34C3ABF0F00D11EE8D102372775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.184.0/24
Signature Algorithm: sha256WithRSAEncryption
85:e4:96:84:6f:f6:35:5a:93:e6:97:ff:a2:55:62:7c:cd:c9:
a3:eb:b1:93:c9:89:0b:83:28:a8:d9:7b:5f:3a:0c:55:b0:07:
f1:be:67:c2:76:6f:fd:99:51:09:d7:92:e1:8c:d8:39:7f:e1:
64:a5:f6:59:e3:d5:dd:bb:15:37:44:86:45:2d:24:a8:9c:33:
49:cc:c2:b7:5c:9b:f6:d9:9f:a6:17:15:13:1a:e0:ff:09:21:
a1:86:d6:04:81:a6:6a:74:d0:df:03:fa:fe:e0:b8:d3:fa:f5:
16:29:a7:fa:d7:74:fe:20:07:b2:2f:fe:af:a6:80:5f:dd:5f:
79:55:47:35:29:56:aa:ce:c3:3e:18:ff:03:3f:95:5b:16:09:
bb:18:b9:0e:b3:61:37:e5:cb:ec:75:bf:20:3b:79:d9:68:77:
2c:52:b2:7f:5f:3a:f6:12:b3:3c:89:ff:22:97:8c:47:0e:a4:
26:56:23:a5:bd:d2:30:44:f6:01:a0:67:6f:34:01:28:27:a3:
bf:5a:19:15:74:f9:51:d2:66:d8:b9:0c:12:f4:21:26:27:d2:
d1:51:e4:5f:f4:33:73:a2:28:55:6e:df:93:38:de:04:8d:33:
3b:e5:bd:c8:4b:ea:63:53:bb:d9:6f:88:99:56:e2:c3:d4:ad:
2c:57:99:fe
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKhcMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDAxMDk0OTU3WhcNMjQwNTExMDk0OTU3WjAYMRYw
FAYDVQQDEw02NjBhODM0OC1hMzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuwiKdoICBrWn7dNA3bxpd3/fe08VCpiKGURnTkZ9J6jVvfH5SuvETo3Q
E+kqM3MgamzPh4K93aK06nRV2TuQFRGpyLI9+LaD7g+5KTlNHH0ofoyK2xK7/G77
SiRmULwkAVo1VwbLlvaKIb5gQn/2/nG/xZ0jytYM3cHpNayu+DS70j63+4r4Jzvl
A4bN8s487Ff8d2BRVtmCjJMlPnMFX+QToPANYELQe90+BZP3Tl4Toom3En6mnkYa
PCoImcZHM336tUi8Pr1TfEFX1HWLIXflbIgBdaZ2PHO4vU3ByogRpkIe9kfZjc9K
mqdEfenMLg98oNXS8qQMjEOlu0BLrwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGWA
FDf9lDNoC55WvryFqhvApVuLMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zNEMzQUJGMEYwMEQxMUVFOEQxMDIzNzI3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsu4MA0GCSqGSIb3DQEB
CwUAA4IBAQCF5JaEb/Y1WpPml/+iVWJ8zcmj67GTyYkLgyio2XtfOgxVsAfxvmfC
dm/9mVEJ15LhjNg5f+FkpfZZ49XduxU3RIZFLSSonDNJzMK3XJv22Z+mFxUTGuD/
CSGhhtYEgaZqdNDfA/r+4LjT+vUWKaf613T+IAeyL/6vpoBf3V95VUc1KVaqzsM+
GP8DP5VbFgm7GLkOs2E35cvsdb8gO3nZaHcsUrJ/Xzr2ErM8if8il4xHDqQmViOl
vdIwRPYBoGdvNAEoJ6O/WhkVdPlR0mbYuQwS9CEmJ9LRUeRf9DNzoihVbt+TON4E
jTM75b3IS+pjU7vZb4iZVuLD1K0sV5n+
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:20 2024 by rpki-client on console-fra.rpki-client.org