Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3D8F413CF7C311EEAFBC3A40017001B1.roa
File: 3D8F413CF7C311EEAFBC3A40017001B1.roa (raw, json)
Hash identifier: i4RRXhA+ktEAxPt3tlUJIR8yn9V+47BRwZSOSeSxXhw=
Subject key identifier: E8:3A:BD:D5:A1:C1:AA:A9:70:66:29:BA:7E:64:0C:E4:84:84:9D:95
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB43
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3D8F413CF7C311EEAFBC3A40017001B1.roa
Signing time: Thu 11 Apr 2024 05:20:42 +0000
ROA not before: Thu 11 Apr 2024 05:20:39 +0000
ROA not after: Sun 19 May 2024 05:20:39 +0000
asID: 138915
IP address blocks: 154.90.34.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43843 (0xab43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 11 05:20:39 2024 GMT
Not After : May 19 05:20:39 2024 GMT
Subject: CN=6617732a-0525
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:28:7b:2b:8b:57:36:7c:df:06:ab:74:c1:48:
23:86:1a:a4:1b:be:bd:a3:66:01:b6:54:b6:f0:fe:
41:c5:bf:ac:0b:71:35:3f:de:9d:ea:5c:84:0b:26:
7a:42:d2:62:ac:49:63:1e:d3:88:ef:9d:73:3f:b5:
f2:af:ac:6b:48:44:a7:cd:ff:72:ef:26:eb:a3:13:
31:5e:7a:24:87:50:6d:30:76:25:ae:6c:00:8b:b2:
53:84:d9:43:46:89:e0:77:86:2f:18:4c:63:e3:b5:
8b:79:a0:0c:bd:86:c7:18:6d:7a:a9:7d:17:06:5c:
b6:23:3a:1d:0a:3c:ca:80:47:fc:06:95:f0:9c:75:
65:53:c8:78:ee:27:47:d9:92:1e:ec:1a:22:ed:13:
c0:96:30:99:ed:d6:71:8c:13:81:56:7d:9f:75:60:
43:ca:8b:1e:6c:da:4c:68:3c:ec:b2:02:fb:d3:fa:
23:64:1d:45:68:78:0a:cd:f3:84:53:2f:7b:69:dc:
b0:1b:da:5b:94:09:da:56:c7:fa:31:3f:3c:76:31:
59:97:79:d0:b7:9e:f9:3a:fc:d0:1a:36:c2:40:32:
84:a4:38:a0:4f:36:e8:00:c6:ae:ad:7e:27:94:0b:
f8:1f:f8:86:1d:eb:9c:92:87:48:a7:b5:17:28:ab:
40:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:3A:BD:D5:A1:C1:AA:A9:70:66:29:BA:7E:64:0C:E4:84:84:9D:95
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3D8F413CF7C311EEAFBC3A40017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.34.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:ea:5c:c6:64:90:f7:a1:f9:f5:d0:a1:19:58:00:b4:d7:75:
6b:90:3d:9e:a1:b1:00:4d:4f:17:66:ce:70:9c:8c:c3:f9:79:
97:d8:af:c5:03:d2:64:5c:14:9c:6b:49:88:7d:72:60:64:f7:
ce:a7:82:0c:3f:da:99:35:f8:74:f0:15:25:97:bd:73:a9:96:
7c:5e:03:03:be:37:b0:ab:2d:5b:55:f9:b2:9d:2c:ba:92:a1:
bd:c2:e9:03:60:fc:9c:27:04:b9:aa:09:eb:94:9a:22:e7:0d:
65:ae:eb:cc:a7:38:5c:a9:b5:2c:6c:14:1e:9e:dd:49:15:f4:
d7:54:fd:54:5f:eb:aa:9e:7e:ad:99:ee:92:c7:4d:5a:fa:9f:
38:0a:19:a4:f0:35:5b:b7:d6:55:b3:54:72:3b:5b:d5:00:97:
17:e4:70:07:08:82:8f:a0:e5:7b:4c:7b:99:ec:d4:7d:0b:e0:
37:45:88:b2:86:31:25:e0:2d:66:c6:e5:40:ae:58:12:c1:2f:
4b:25:9e:92:81:0a:28:eb:0c:19:fc:a5:9b:01:29:d0:ca:13:
c4:3b:77:b2:70:cd:ae:90:df:a3:a0:65:c7:7d:3f:86:d3:47:
44:de:64:a2:2f:33:b3:aa:85:fe:48:b4:81:de:6c:ab:5e:34:
f2:e6:84:e8
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKtDMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDExMDUyMDM5WhcNMjQwNTE5MDUyMDM5WjAYMRYw
FAYDVQQDEw02NjE3NzMyYS0wNTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArCh7K4tXNnzfBqt0wUgjhhqkG769o2YBtlS28P5Bxb+sC3E1P96d6lyE
CyZ6QtJirEljHtOI751zP7Xyr6xrSESnzf9y7ybroxMxXnokh1BtMHYlrmwAi7JT
hNlDRongd4YvGExj47WLeaAMvYbHGG16qX0XBly2IzodCjzKgEf8BpXwnHVlU8h4
7idH2ZIe7Boi7RPAljCZ7dZxjBOBVn2fdWBDyosebNpMaDzssgL70/ojZB1FaHgK
zfOEUy97adywG9pblAnaVsf6MT88djFZl3nQt575OvzQGjbCQDKEpDigTzboAMau
rX4nlAv4H/iGHeuckodIp7UXKKtAJwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOg6
vdWhwaqpcGYpun5kDOSEhJ2VMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zRDhGNDEzQ0Y3QzMxMUVFQUZCQzNBNDAwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmloiMA0GCSqGSIb3DQEB
CwUAA4IBAQBN6lzGZJD3ofn10KEZWAC013VrkD2eobEATU8XZs5wnIzD+XmX2K/F
A9JkXBSca0mIfXJgZPfOp4IMP9qZNfh08BUll71zqZZ8XgMDvjewqy1bVfmynSy6
kqG9wukDYPycJwS5qgnrlJoi5w1lruvMpzhcqbUsbBQent1JFfTXVP1UX+uqnn6t
me6Sx01a+p84Chmk8DVbt9ZVs1RyO1vVAJcX5HAHCIKPoOV7THuZ7NR9C+A3RYiy
hjEl4C1mxuVArlgSwS9LJZ6SgQoo6wwZ/KWbASnQyhPEO3eycM2ukN+joGXHfT+G
00dE3mSiLzOzqoX+SLSB3myrXjTy5oTo
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:06 2024 by rpki-client on console-ams.rpki-client.org