Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/383608B4EF0911EEAC749583775412E6.roa
File: 383608B4EF0911EEAC749583775412E6.roa (raw, json)
Hash identifier: o9swn+hELq3Im/i4B0JWjXeDnEbjslY5y72H2bn9H18=
Subject key identifier: 05:CC:59:B5:BB:22:1A:25:B8:9C:8E:C7:63:7D:AE:E1:87:D4:C3:34
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A775
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/383608B4EF0911EEAC749583775412E6.roa
Signing time: Sun 31 Mar 2024 02:48:57 +0000
ROA not before: Sun 31 Mar 2024 02:48:54 +0000
ROA not after: Mon 31 Mar 2025 02:48:54 +0000
asID: 132839
IP address blocks: 154.203.80.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42869 (0xa775)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 31 02:48:54 2024 GMT
Not After : Mar 31 02:48:54 2025 GMT
Subject: CN=6608cf19-4dc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:10:72:f9:ef:e2:32:c9:0c:00:b0:6e:63:e9:
a1:8d:5c:41:a8:22:d0:7f:fd:7b:0a:2f:88:2c:b8:
6d:00:2b:10:39:ee:17:74:74:a7:a2:1d:54:4f:60:
9d:24:44:e8:13:3c:ac:c4:c2:43:4c:44:16:04:86:
32:2c:de:b4:f5:95:5d:d4:ec:57:7a:c7:b5:57:44:
16:9d:ab:34:fa:cd:3f:67:31:56:31:d2:62:c1:40:
1e:a1:d4:6c:c7:4a:db:28:94:94:98:72:5a:d1:1b:
54:1e:65:6d:a7:97:a0:f9:d5:16:51:f0:d2:5e:7d:
4a:36:c0:69:c8:43:a3:76:bf:f4:8e:64:39:55:75:
95:26:97:2a:2d:d3:3d:c0:3b:4f:91:c0:16:e8:d5:
cd:7d:45:ee:24:ad:b1:a5:39:bf:03:73:1f:9c:a2:
a4:c9:1b:45:e8:78:a8:ab:46:cd:a8:0c:57:ab:44:
5e:30:19:1e:b5:ce:b7:6d:8c:ca:ae:0f:d8:17:00:
9a:af:5d:f0:28:98:11:1c:bc:cf:70:fa:96:c9:3b:
66:a9:56:4d:dc:c7:f6:37:e5:c8:fa:58:af:49:10:
df:bd:4c:6a:73:71:0d:e2:71:62:c7:cb:8d:81:81:
22:d0:57:a8:ab:e2:9c:9f:62:70:bf:1e:3d:df:2f:
19:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:CC:59:B5:BB:22:1A:25:B8:9C:8E:C7:63:7D:AE:E1:87:D4:C3:34
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/383608B4EF0911EEAC749583775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.80.0/21
Signature Algorithm: sha256WithRSAEncryption
38:15:06:95:e1:a6:3c:ff:78:f5:09:07:a3:2f:aa:c0:46:32:
6b:22:c8:a1:7f:ca:e0:ad:5d:65:a9:a7:d6:4b:89:45:3e:82:
90:4a:cf:b7:06:e6:7a:18:28:9c:b8:80:71:e9:c3:05:7b:e4:
c4:17:04:46:b9:0d:07:57:f5:74:a0:6f:84:ed:48:91:7f:95:
ed:b9:31:4b:7a:a9:d0:c4:d6:89:c7:49:fb:a9:96:42:5b:6d:
a0:5d:11:f3:16:50:1f:dc:57:f5:77:ef:c6:e0:4f:cf:a2:ba:
ee:2d:b3:a1:90:fa:0f:f4:37:90:45:04:ef:1f:71:92:3f:bf:
63:17:2f:0a:30:55:0c:38:28:0f:33:a7:70:03:36:21:2b:0a:
0e:97:21:23:26:a0:a8:1e:9f:62:f6:17:05:ea:b3:af:76:6a:
90:25:89:c6:a9:02:33:7f:94:e3:0e:2a:6c:ce:52:ca:9b:6f:
1b:dc:b8:d2:f1:cf:6f:f5:a8:0a:21:50:14:c6:39:ad:42:7b:
07:eb:1f:30:ba:7a:21:e9:4d:4d:78:49:dc:48:8b:31:af:0a:
f2:15:36:f2:fa:27:7e:2f:05:8f:29:19:c6:67:c8:9d:bb:b8:
34:7a:11:e3:ae:3c:e5:6b:3a:c3:08:a5:cb:6a:c7:c0:85:2c:
ac:be:37:c0
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKd1MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzMxMDI0ODU0WhcNMjUwMzMxMDI0ODU0WjAYMRYw
FAYDVQQDEw02NjA4Y2YxOS00ZGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA5RBy+e/iMskMALBuY+mhjVxBqCLQf/17Ci+ILLhtACsQOe4XdHSnoh1U
T2CdJEToEzysxMJDTEQWBIYyLN609ZVd1OxXese1V0QWnas0+s0/ZzFWMdJiwUAe
odRsx0rbKJSUmHJa0RtUHmVtp5eg+dUWUfDSXn1KNsBpyEOjdr/0jmQ5VXWVJpcq
LdM9wDtPkcAW6NXNfUXuJK2xpTm/A3MfnKKkyRtF6Hioq0bNqAxXq0ReMBketc63
bYzKrg/YFwCar13wKJgRHLzPcPqWyTtmqVZN3Mf2N+XI+livSRDfvUxqc3EN4nFi
x8uNgYEi0Feoq+Kcn2Jwvx493y8Z8QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFAXM
WbW7IholuJyOx2N9ruGH1MM0MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zODM2MDhCNEVGMDkxMUVFQUM3NDk1ODM3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDmstQMA0GCSqGSIb3DQEB
CwUAA4IBAQA4FQaV4aY8/3j1CQejL6rARjJrIsihf8rgrV1lqafWS4lFPoKQSs+3
BuZ6GCicuIBx6cMFe+TEFwRGuQ0HV/V0oG+E7UiRf5XtuTFLeqnQxNaJx0n7qZZC
W22gXRHzFlAf3Ff1d+/G4E/PorruLbOhkPoP9DeQRQTvH3GSP79jFy8KMFUMOCgP
M6dwAzYhKwoOlyEjJqCoHp9i9hcF6rOvdmqQJYnGqQIzf5TjDipszlLKm28b3LjS
8c9v9agKIVAUxjmtQnsH6x8wunoh6U1NeEncSIsxrwryFTby+id+LwWPKRnGZ8id
u7g0ehHjrjzlazrDCKXLasfAhSysvjfA
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:03 2024 by rpki-client on console-fra.rpki-client.org