Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/522C6FF0E75D11EEBBCB5D76775412E6.roa
File: 522C6FF0E75D11EEBBCB5D76775412E6.roa (raw, json)
Hash identifier: c/kBlJX61AcecCJQip0zed/jxuHSG9s5jdprrurVTIQ=
Subject key identifier: CF:4E:51:4F:BD:DB:B1:47:91:50:B7:51:70:B7:6B:11:1F:03:50:02
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A4E7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/522C6FF0E75D11EEBBCB5D76775412E6.roa
Signing time: Thu 21 Mar 2024 08:30:49 +0000
ROA not before: Thu 21 Mar 2024 08:30:46 +0000
ROA not after: Tue 23 Apr 2024 08:30:46 +0000
asID: 44559
IP address blocks: 154.211.37.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42215 (0xa4e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 08:30:46 2024 GMT
Not After : Apr 23 08:30:46 2024 GMT
Subject: CN=65fbf039-f3ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:52:da:b5:fa:08:78:bf:47:7d:20:4d:f3:17:
e3:3a:7a:02:94:5e:19:64:e9:3e:7f:9d:a1:ee:71:
09:5e:14:a7:cb:7e:09:b0:86:f4:dc:26:3a:38:00:
7b:6e:b9:ea:96:3d:b3:9f:82:c3:0c:10:96:e3:2e:
09:13:65:47:d7:71:73:26:89:28:30:55:72:49:13:
6e:9c:40:dd:4b:b7:ca:51:c7:59:b5:0f:6c:b8:6e:
24:fa:78:6b:14:b9:f5:01:09:ad:f9:27:42:d2:08:
73:9e:cd:82:a5:78:a5:17:f4:35:b4:80:33:80:3c:
8b:d2:79:0e:04:e6:e3:e0:8d:9b:62:11:82:65:8e:
3b:09:9a:18:30:e4:90:2a:e3:83:48:d8:c7:5c:68:
2a:a5:74:54:05:c0:d9:dc:9d:f8:0e:56:6e:00:59:
ca:96:9f:d8:ed:5a:48:c0:f0:89:64:39:9e:cc:fa:
44:97:e0:75:9b:5c:d9:00:71:d8:1b:c0:14:4f:fd:
91:5a:cc:ac:63:f2:24:0d:03:e5:9d:84:2e:a9:c4:
fd:35:10:a7:a8:bd:d0:70:6e:c5:d7:aa:1c:16:ac:
b8:86:5e:dd:01:4d:e4:92:e6:e0:3e:17:cc:fc:0d:
af:8e:93:41:e6:32:2c:6c:79:56:fc:29:7e:a4:b1:
64:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:4E:51:4F:BD:DB:B1:47:91:50:B7:51:70:B7:6B:11:1F:03:50:02
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/522C6FF0E75D11EEBBCB5D76775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.37.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:37:4e:77:89:7a:c1:ff:43:76:d3:04:03:a5:5e:b4:da:de:
16:0c:86:6c:3c:bd:2e:9d:9e:94:82:7d:f2:67:83:af:a7:12:
7e:da:c8:d4:e1:5d:80:ff:0d:87:dc:a6:5b:4f:5c:d4:7b:11:
42:ba:52:5b:67:81:48:a8:62:d2:18:66:2e:94:d9:e1:e6:e9:
63:44:1e:62:6c:49:ad:be:31:87:a9:19:69:5a:70:69:81:70:
70:e2:c4:76:34:74:68:a2:44:27:da:f6:e1:94:b7:3d:8e:ad:
2e:71:85:61:49:a8:f3:fc:87:28:bd:30:5a:92:ce:05:50:e0:
2d:72:54:d6:df:a5:a5:e2:0c:65:e1:58:0d:d7:04:10:e5:ac:
c4:f5:f6:7c:f4:fb:a7:bf:c1:a9:c9:0f:fa:12:be:b8:f0:71:
62:bb:00:09:70:22:c8:f0:32:c1:f9:90:f2:dc:15:34:49:41:
4a:8a:9f:65:16:2e:30:5a:2d:b2:e0:bb:d0:08:d2:bd:b5:f4:
cb:c6:1f:17:6a:8a:7a:b8:9f:72:aa:c0:95:46:3d:35:19:a3:
09:e1:6e:a4:5c:33:8d:bd:97:f1:cb:23:ac:a9:66:7c:3b:3c:
cb:e0:62:7a:c3:01:28:36:75:4e:b0:76:27:dd:fa:26:cb:fc:
e5:ed:ef:03
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKTnMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMDgzMDQ2WhcNMjQwNDIzMDgzMDQ2WjAYMRYw
FAYDVQQDEw02NWZiZjAzOS1mM2VmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyFLatfoIeL9HfSBN8xfjOnoClF4ZZOk+f52h7nEJXhSny34JsIb03CY6
OAB7brnqlj2zn4LDDBCW4y4JE2VH13FzJokoMFVySRNunEDdS7fKUcdZtQ9suG4k
+nhrFLn1AQmt+SdC0ghzns2CpXilF/Q1tIAzgDyL0nkOBObj4I2bYhGCZY47CZoY
MOSQKuODSNjHXGgqpXRUBcDZ3J34DlZuAFnKlp/Y7VpIwPCJZDmezPpEl+B1m1zZ
AHHYG8AUT/2RWsysY/IkDQPlnYQuqcT9NRCnqL3QcG7F16ocFqy4hl7dAU3kkubg
PhfM/A2vjpNB5jIsbHlW/Cl+pLFk+wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFM9O
UU+927FHkVC3UXC3axEfA1ACMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81MjJDNkZGMEU3NUQxMUVFQkJDQjVENzY3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtMlMA0GCSqGSIb3DQEB
CwUAA4IBAQCzN053iXrB/0N20wQDpV602t4WDIZsPL0unZ6Ugn3yZ4OvpxJ+2sjU
4V2A/w2H3KZbT1zUexFCulJbZ4FIqGLSGGYulNnh5uljRB5ibEmtvjGHqRlpWnBp
gXBw4sR2NHRookQn2vbhlLc9jq0ucYVhSajz/IcovTBaks4FUOAtclTW36Wl4gxl
4VgN1wQQ5azE9fZ89Punv8GpyQ/6Er648HFiuwAJcCLI8DLB+ZDy3BU0SUFKip9l
Fi4wWi2y4LvQCNK9tfTLxh8Xaop6uJ9yqsCVRj01GaMJ4W6kXDONvZfxyyOsqWZ8
OzzL4GJ6wwEoNnVOsHYn3fomy/zl7e8D
-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:19 2024 by rpki-client on console-ams.rpki-client.org