Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3878ABD4F0BB11EEAB9CF0C5775412E6.roa
File: 3878ABD4F0BB11EEAB9CF0C5775412E6.roa (raw, json)
Hash identifier: fKFbWTgYQteT0lxS/bEY0cevNOn5xA/TYtwkTqI2KWs=
Subject key identifier: F5:B5:E9:80:4A:A3:15:42:09:C7:58:F2:D4:DC:08:09:F1:0B:23:67
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A8B1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3878ABD4F0BB11EEAB9CF0C5775412E6.roa
Signing time: Tue 02 Apr 2024 06:35:39 +0000
ROA not before: Tue 02 Apr 2024 06:35:36 +0000
ROA not after: Mon 30 Sep 2024 06:35:36 +0000
asID: 211392
IP address blocks: 154.84.20.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43185 (0xa8b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 2 06:35:36 2024 GMT
Not After : Sep 30 06:35:36 2024 GMT
Subject: CN=660ba73b-5cef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ac:35:12:ca:d6:84:37:17:d8:b2:08:9f:16:
2c:b9:11:cd:ca:cf:e8:db:56:06:bb:b7:0d:14:a7:
7c:ce:c7:35:fd:fe:1c:d7:39:6e:98:32:8c:92:42:
d5:5e:43:9b:0c:28:95:2d:34:d7:d2:b6:56:b4:29:
32:cb:9d:1d:f6:36:c0:70:8e:2e:99:ae:fd:45:67:
03:a4:e3:52:01:36:53:67:46:4e:79:dd:68:e0:ea:
37:13:61:66:74:15:5e:73:1f:c3:05:96:f9:16:e4:
72:98:12:12:60:6f:de:42:12:33:47:22:ef:9f:cb:
85:04:4b:43:6b:ff:1c:5f:26:51:0a:42:e6:df:b6:
22:d1:3e:c1:9e:b6:f7:65:8b:45:cf:44:78:4e:9e:
72:54:05:aa:ac:a8:9c:15:d3:7b:2e:97:51:c5:1c:
d9:e0:47:5f:fb:70:54:fa:71:40:1d:97:ed:ea:9e:
28:cf:61:6f:69:50:35:49:e3:e4:44:de:1d:86:fd:
56:23:be:06:94:5a:ca:50:06:dd:85:77:9e:5b:ce:
79:a4:e1:b2:5b:6f:ee:af:bb:6c:a7:09:aa:05:46:
43:3a:5f:cb:45:1a:30:e3:8c:3c:d1:b0:bd:c7:ce:
f5:01:a2:ec:7e:28:cb:d5:31:a3:97:c4:dc:a1:f6:
62:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:B5:E9:80:4A:A3:15:42:09:C7:58:F2:D4:DC:08:09:F1:0B:23:67
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3878ABD4F0BB11EEAB9CF0C5775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.20.0/23
Signature Algorithm: sha256WithRSAEncryption
40:48:25:25:41:61:b6:d6:60:0c:a5:35:77:e5:95:9b:bd:97:
08:66:95:8f:87:fc:3b:f0:3b:d5:5b:92:15:c3:b5:9c:3e:b2:
33:20:6a:7d:32:21:79:a3:8c:89:8d:56:64:20:e2:8c:16:5e:
82:d1:7d:b6:0c:46:43:eb:85:b0:fc:d8:02:94:b1:4a:8d:9d:
d7:62:21:4a:cc:ca:63:7f:e5:4b:74:ae:0e:79:6b:3a:08:a1:
30:fa:84:07:7d:71:2d:6f:c1:40:a1:50:3f:a9:d8:f1:0e:71:
a5:af:c2:ba:0c:19:a2:7a:a4:2a:9c:53:82:77:42:bd:5d:c4:
c5:12:f3:67:2c:97:e5:d3:2c:36:75:65:e7:82:67:f9:a9:87:
58:83:71:65:fe:2d:33:30:ec:fe:5d:f3:7f:a7:da:13:ca:ec:
ef:12:ba:3b:d2:5a:36:6a:b9:85:a8:44:a8:22:8c:1e:2d:f5:
b9:f1:6f:d5:f9:12:88:5e:4d:ce:a5:ef:68:3f:7b:97:2d:d2:
1a:f0:3b:8d:88:b0:33:1e:6f:ea:b4:fe:2e:73:fe:a6:e8:ea:
00:d1:87:cf:34:ce:93:16:9c:44:85:6f:f2:87:29:00:d6:5a:
66:08:7e:46:d7:71:a2:8d:b2:cc:8d:40:e4:d9:87:c0:db:7d:
e8:b9:63:2f
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKixMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDAyMDYzNTM2WhcNMjQwOTMwMDYzNTM2WjAYMRYw
FAYDVQQDEw02NjBiYTczYi01Y2VmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAmKw1EsrWhDcX2LIInxYsuRHNys/o21YGu7cNFKd8zsc1/f4c1zlumDKM
kkLVXkObDCiVLTTX0rZWtCkyy50d9jbAcI4uma79RWcDpONSATZTZ0ZOed1o4Oo3
E2FmdBVecx/DBZb5FuRymBISYG/eQhIzRyLvn8uFBEtDa/8cXyZRCkLm37Yi0T7B
nrb3ZYtFz0R4Tp5yVAWqrKicFdN7LpdRxRzZ4Edf+3BU+nFAHZft6p4oz2FvaVA1
SePkRN4dhv1WI74GlFrKUAbdhXeeW855pOGyW2/ur7tspwmqBUZDOl/LRRow44w8
0bC9x871AaLsfijL1TGjl8TcofZiYwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPW1
6YBKoxVCCcdY8tTcCAnxCyNnMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zODc4QUJENEYwQkIxMUVFQUI5Q0YwQzU3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmlQUMA0GCSqGSIb3DQEB
CwUAA4IBAQBASCUlQWG21mAMpTV35ZWbvZcIZpWPh/w78DvVW5IVw7WcPrIzIGp9
MiF5o4yJjVZkIOKMFl6C0X22DEZD64Ww/NgClLFKjZ3XYiFKzMpjf+VLdK4OeWs6
CKEw+oQHfXEtb8FAoVA/qdjxDnGlr8K6DBmieqQqnFOCd0K9XcTFEvNnLJfl0yw2
dWXngmf5qYdYg3Fl/i0zMOz+XfN/p9oTyuzvEro70lo2armFqESoIoweLfW58W/V
+RKIXk3Ope9oP3uXLdIa8DuNiLAzHm/qtP4uc/6m6OoA0YfPNM6TFpxEhW/yhykA
1lpmCH5G13GijbLMjUDk2YfA233ouWMv
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:20 2024 by rpki-client on console-fra.rpki-client.org