Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/526212B8E76711EE9E9C67C2775412E6.roa
File: 526212B8E76711EE9E9C67C2775412E6.roa (raw, json)
Hash identifier: Edolrr7aCMsWI0wqvEVFT4/myCYNgTCKpA6Q1ZTJeRo=
Subject key identifier: 30:9C:7A:A5:86:D0:A4:2C:C7:4F:8F:66:37:5D:46:3C:BE:17:A8:22
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A521
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/526212B8E76711EE9E9C67C2775412E6.roa
Signing time: Thu 21 Mar 2024 09:42:25 +0000
ROA not before: Thu 21 Mar 2024 09:42:21 +0000
ROA not after: Tue 23 Apr 2024 09:42:21 +0000
asID: 44559
IP address blocks: 154.208.184.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42273 (0xa521)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 09:42:21 2024 GMT
Not After : Apr 23 09:42:21 2024 GMT
Subject: CN=65fc0100-3cac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:1a:87:4f:04:b0:09:db:0e:d1:ad:44:67:79:
cc:52:c9:39:69:f5:d3:af:4f:4b:c7:54:e9:f2:6f:
5a:06:7f:83:20:5a:eb:d1:5e:35:f7:c5:fd:73:a3:
dd:15:48:4e:64:f5:d6:cf:43:8d:cf:0f:45:2b:44:
cb:f6:a9:7c:d7:49:51:08:53:16:18:4c:2e:25:eb:
3b:14:e3:c5:c2:0d:47:c0:7c:c0:99:da:8d:7b:0d:
44:0e:d6:dd:2c:ce:66:f2:ee:99:42:d4:cd:10:51:
08:74:6f:99:f6:9b:79:bd:86:bd:9e:8f:d3:ca:d1:
99:80:41:c5:d1:14:8d:c6:c8:1e:37:5c:ef:8f:1f:
d8:ee:82:84:3a:a5:b7:73:84:76:24:73:05:23:e8:
8b:42:6d:8b:0f:8b:eb:e6:ce:71:97:17:78:29:07:
b3:aa:56:61:30:74:93:54:bc:9a:4c:a3:8b:7d:eb:
35:ee:ed:55:25:72:da:31:b9:d1:cc:33:45:af:0a:
92:ab:73:21:26:e3:95:74:8c:b1:e0:dc:92:66:79:
0c:f7:65:5b:1f:ea:a6:c5:d5:ef:7f:04:90:10:34:
3a:83:5c:f0:c6:3c:2b:e6:cc:bf:80:86:c2:48:d0:
ba:87:6b:df:ae:36:9b:85:b8:9d:88:79:4f:04:7a:
7a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:9C:7A:A5:86:D0:A4:2C:C7:4F:8F:66:37:5D:46:3C:BE:17:A8:22
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/526212B8E76711EE9E9C67C2775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.184.0/24
Signature Algorithm: sha256WithRSAEncryption
56:10:c5:ec:d9:e4:72:91:c1:8d:5c:d6:ee:da:6e:ed:cb:be:
62:85:9d:f3:d0:90:d6:13:1a:f9:d3:8f:06:0b:47:e5:4c:4e:
1d:ee:f4:5f:18:05:81:36:03:24:99:f9:27:93:9a:89:01:e2:
79:ac:70:ee:bb:88:60:2c:62:39:de:ec:2c:f2:20:2f:61:93:
aa:6f:c9:89:a0:9b:72:b3:ba:61:4e:1d:ab:e0:71:bf:6b:85:
74:e7:42:ed:b2:36:35:fa:f5:7a:cd:e9:37:75:98:9d:f7:6f:
e9:51:a5:97:52:88:e2:98:c6:b1:23:24:9e:b7:79:13:03:1e:
e1:dc:3c:a3:6e:45:1c:7d:59:8f:3c:6f:99:05:2c:23:a7:7a:
cb:b5:74:30:d3:d5:c3:76:2d:97:5d:d7:16:aa:83:44:b7:33:
c7:21:64:9a:75:03:5d:c8:ba:cf:c9:39:94:8e:17:c7:31:6e:
c2:a1:e6:c5:60:b2:6f:f3:7a:0a:50:55:a7:3c:d0:c7:59:8f:
8a:ce:b8:ca:39:91:8f:93:79:62:1c:a8:10:f4:5d:f6:a7:1a:
2e:15:32:f9:c8:fd:79:bd:ff:ac:73:17:3e:ee:85:68:01:98:
d6:76:6b:0b:10:9d:b6:c3:fa:bf:a5:c1:ae:01:2d:34:25:b7:
97:1f:bb:2c
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKUhMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMDk0MjIxWhcNMjQwNDIzMDk0MjIxWjAYMRYw
FAYDVQQDEw02NWZjMDEwMC0zY2FjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1BqHTwSwCdsO0a1EZ3nMUsk5afXTr09Lx1Tp8m9aBn+DIFrr0V4198X9
c6PdFUhOZPXWz0ONzw9FK0TL9ql810lRCFMWGEwuJes7FOPFwg1HwHzAmdqNew1E
DtbdLM5m8u6ZQtTNEFEIdG+Z9pt5vYa9no/TytGZgEHF0RSNxsgeN1zvjx/Y7oKE
OqW3c4R2JHMFI+iLQm2LD4vr5s5xlxd4KQezqlZhMHSTVLyaTKOLfes17u1VJXLa
MbnRzDNFrwqSq3MhJuOVdIyx4NySZnkM92VbH+qmxdXvfwSQEDQ6g1zwxjwr5sy/
gIbCSNC6h2vfrjabhbidiHlPBHp66wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDCc
eqWG0KQsx0+PZjddRjy+F6giMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81MjYyMTJCOEU3NjcxMUVFOUU5QzY3QzI3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtC4MA0GCSqGSIb3DQEB
CwUAA4IBAQBWEMXs2eRykcGNXNbu2m7ty75ihZ3z0JDWExr5048GC0flTE4d7vRf
GAWBNgMkmfknk5qJAeJ5rHDuu4hgLGI53uws8iAvYZOqb8mJoJtys7phTh2r4HG/
a4V050LtsjY1+vV6zek3dZid92/pUaWXUojimMaxIySet3kTAx7h3DyjbkUcfVmP
PG+ZBSwjp3rLtXQw09XDdi2XXdcWqoNEtzPHIWSadQNdyLrPyTmUjhfHMW7CoebF
YLJv83oKUFWnPNDHWY+KzrjKOZGPk3liHKgQ9F32pxouFTL5yP15vf+scxc+7oVo
AZjWdmsLEJ22w/q/pcGuAS00JbeXH7ss
-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:19 2024 by rpki-client on console-ams.rpki-client.org