Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57AD35A2ECAA11EE96A1A979775412E6.roa
File: 57AD35A2ECAA11EE96A1A979775412E6.roa (raw, json)
Hash identifier: swrOfc3jnrYzqmYi6X4k82SfC93oPh+cUzDqZldqGzo=
Subject key identifier: DD:63:FD:1C:57:3D:F6:E8:B5:FF:F6:2F:B3:07:E3:AD:9F:31:42:39
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A6CC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57AD35A2ECAA11EE96A1A979775412E6.roa
Signing time: Thu 28 Mar 2024 02:24:46 +0000
ROA not before: Thu 28 Mar 2024 02:24:42 +0000
ROA not after: Sat 22 Feb 2025 02:24:42 +0000
asID: 45669
IP address blocks: 154.81.248.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42700 (0xa6cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 28 02:24:42 2024 GMT
Not After : Feb 22 02:24:42 2025 GMT
Subject: CN=6604d4ed-7910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:5a:8a:1a:a0:17:72:50:c1:1c:03:71:07:e4:
33:71:0f:84:56:31:15:99:26:c2:70:a4:79:16:97:
4e:f5:68:5f:51:0d:f0:65:e0:5d:00:d8:d1:25:a5:
3a:11:21:fe:d0:b5:4b:fd:60:4c:d9:49:19:41:c2:
54:4f:03:8d:b2:93:35:f9:ae:6a:e1:82:29:db:ee:
e7:37:62:4a:c2:0b:eb:92:d3:06:4e:70:93:33:a9:
e0:7e:db:c0:98:5f:60:e3:44:89:ff:25:03:d1:c6:
98:9b:71:5b:c6:09:5b:bb:5a:78:e3:98:22:b7:5e:
46:c9:8d:1b:5b:e1:c9:86:f5:8a:65:04:1c:76:96:
3c:08:03:e9:51:c3:2b:63:fc:e4:f9:b3:5f:39:48:
7f:6c:f6:ef:ca:0f:83:6f:3f:42:75:9f:f3:ff:00:
0f:d3:6d:2d:af:e0:09:4d:81:19:37:27:9a:88:6e:
fc:e2:ca:83:b7:b0:25:c9:79:6d:65:fa:1d:fd:3f:
a3:34:47:41:00:86:20:dd:90:83:0c:5c:ee:88:8e:
fe:02:ca:36:91:31:8f:9c:25:e9:80:a9:c1:cf:77:
70:14:f8:8c:73:11:2d:45:96:1b:dc:0d:65:80:36:
0f:13:fb:bf:d7:29:28:15:b1:69:0b:42:88:ea:f2:
72:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:63:FD:1C:57:3D:F6:E8:B5:FF:F6:2F:B3:07:E3:AD:9F:31:42:39
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57AD35A2ECAA11EE96A1A979775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.248.0/21
Signature Algorithm: sha256WithRSAEncryption
85:fc:f9:fd:22:4c:4e:82:a8:78:ad:6c:ed:7a:46:8d:da:8c:
f2:fd:43:a7:4e:ae:cd:19:67:36:55:3f:02:6b:6c:b4:46:ed:
69:bf:b2:fe:96:ee:d8:aa:b0:80:5b:30:03:0a:87:f8:84:49:
56:e6:cd:9b:e9:2c:94:6b:23:bb:1f:67:94:0a:2d:ee:33:7a:
fb:54:02:16:7f:4f:04:8e:0f:98:e4:b0:d6:7c:20:e7:8b:43:
7e:e1:4a:bb:de:44:91:28:34:00:a7:46:b6:d6:d6:dd:18:41:
60:63:84:00:dd:7f:f4:60:81:ff:92:b1:6c:a3:af:95:3b:99:
8d:ac:89:4f:78:78:39:f5:0b:d8:a5:a3:96:2d:8f:00:9e:26:
bf:78:1d:53:88:8f:d5:7d:70:d1:e8:2b:db:a9:fc:a1:2b:19:
32:30:c7:7a:f4:fe:13:62:fc:ef:61:57:ea:0a:f2:67:a3:9b:
62:96:0f:bb:0f:c6:af:00:09:79:2e:1b:02:41:e5:90:99:dc:
e8:0b:5b:74:da:1a:bd:cb:ae:f4:48:61:f2:88:f7:f2:2f:11:
0e:ee:82:e6:36:06:ce:b9:c6:36:a9:45:4d:47:41:ad:50:b8:
56:4c:b9:d9:a4:2d:a6:9f:99:73:4e:3d:d2:f5:19:cc:ea:0c:
c6:c1:f5:d3
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKbMMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzI4MDIyNDQyWhcNMjUwMjIyMDIyNDQyWjAYMRYw
FAYDVQQDEw02NjA0ZDRlZC03OTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA11qKGqAXclDBHANxB+QzcQ+EVjEVmSbCcKR5FpdO9WhfUQ3wZeBdANjR
JaU6ESH+0LVL/WBM2UkZQcJUTwONspM1+a5q4YIp2+7nN2JKwgvrktMGTnCTM6ng
ftvAmF9g40SJ/yUD0caYm3Fbxglbu1p445git15GyY0bW+HJhvWKZQQcdpY8CAPp
UcMrY/zk+bNfOUh/bPbvyg+Dbz9CdZ/z/wAP020tr+AJTYEZNyeaiG784sqDt7Al
yXltZfod/T+jNEdBAIYg3ZCDDFzuiI7+Aso2kTGPnCXpgKnBz3dwFPiMcxEtRZYb
3A1lgDYPE/u/1ykoFbFpC0KI6vJyRQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFN1j
/RxXPfbotf/2L7MH462fMUI5MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81N0FEMzVBMkVDQUExMUVFOTZBMUE5Nzk3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDmlH4MA0GCSqGSIb3DQEB
CwUAA4IBAQCF/Pn9IkxOgqh4rWztekaN2ozy/UOnTq7NGWc2VT8Ca2y0Ru1pv7L+
lu7YqrCAWzADCof4hElW5s2b6SyUayO7H2eUCi3uM3r7VAIWf08Ejg+Y5LDWfCDn
i0N+4Uq73kSRKDQAp0a21tbdGEFgY4QA3X/0YIH/krFso6+VO5mNrIlPeHg59QvY
paOWLY8Ania/eB1TiI/VfXDR6CvbqfyhKxkyMMd69P4TYvzvYVfqCvJno5tilg+7
D8avAAl5LhsCQeWQmdzoC1t02hq9y670SGHyiPfyLxEO7oLmNgbOucY2qUVNR0Gt
ULhWTLnZpC2mn5lzTj3S9RnM6gzGwfXT
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:09 2024 by rpki-client on console-ams.rpki-client.org