Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57BB4C6AC5C111EE932E116F775412E6.roa
File: 57BB4C6AC5C111EE932E116F775412E6.roa (raw, json)
Hash identifier: xwF3RMtXscJG+kHldDSx3q9ZAzdSa8q4XnGRghn/T2I=
Subject key identifier: A9:1F:93:CE:2A:8F:DC:98:A9:9B:85:9E:F5:7F:22:D9:2F:70:16:A5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 86E6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57BB4C6AC5C111EE932E116F775412E6.roa
Signing time: Wed 07 Feb 2024 14:01:09 +0000
ROA not before: Wed 07 Feb 2024 14:01:05 +0000
ROA not after: Wed 31 Jul 2024 14:01:05 +0000
asID: 53356
IP address blocks: 154.214.224.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34534 (0x86e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 7 14:01:05 2024 GMT
Not After : Jul 31 14:01:05 2024 GMT
Subject: CN=65c38d25-32eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:1b:fe:af:0a:58:3c:d9:96:45:03:dc:31:73:
44:54:35:77:c4:a9:f2:f6:2d:74:6b:3c:48:34:03:
d3:9d:e5:0c:b2:4c:a4:7f:de:6f:a5:6b:9d:ac:8a:
ae:cf:bc:7b:9d:89:74:96:d7:01:42:b9:a6:0b:81:
09:00:c6:df:86:48:03:c5:d1:21:b9:be:c5:d6:ee:
f5:68:9c:c3:b9:f3:fb:86:aa:fd:d0:30:fb:34:95:
fe:fb:d0:a4:21:65:e9:3e:f9:16:f7:4c:20:83:fd:
56:87:b2:72:88:5e:8a:68:69:54:f1:3f:84:bd:e5:
74:c5:93:04:8f:5d:0a:84:98:51:ed:de:d8:b7:cc:
00:2d:2d:9d:92:d8:5f:63:15:00:98:12:33:71:65:
d0:ed:17:2e:34:80:cf:c8:fe:7c:38:d3:0a:00:27:
e8:90:6b:42:0e:0e:a3:20:86:bb:69:2d:5c:97:ec:
92:e4:6e:a4:e9:58:e3:9b:7c:bd:2c:73:1e:1d:7a:
04:11:05:ed:45:ea:4d:90:13:ce:f7:76:53:3f:1f:
97:6c:0e:b3:08:b0:5c:18:cf:63:27:29:49:1a:88:
b7:87:eb:26:a7:37:be:45:57:34:f0:0f:0c:93:b0:
fe:9d:2e:7c:10:d6:e9:b0:25:56:6e:28:b8:a8:0a:
93:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:1F:93:CE:2A:8F:DC:98:A9:9B:85:9E:F5:7F:22:D9:2F:70:16:A5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57BB4C6AC5C111EE932E116F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.224.0/22
Signature Algorithm: sha256WithRSAEncryption
c8:f7:de:3c:86:b2:01:f0:83:7e:60:fb:60:cf:69:24:4a:f2:
c6:c7:86:ab:53:8c:d7:f4:25:4b:2e:51:20:92:51:82:59:8e:
28:9a:82:74:2e:aa:4f:70:8e:3c:ab:1c:d4:21:be:5b:24:4a:
77:2f:fb:01:93:af:b8:3f:fa:09:75:5a:b8:a7:02:1d:c8:b4:
24:68:74:72:33:13:e9:35:d9:ee:a0:59:21:da:eb:d8:40:1f:
76:1c:5f:7e:30:d7:d6:a0:a8:2b:99:a0:5d:5a:21:29:e0:87:
b2:3a:fe:6d:21:e6:d1:83:43:a2:e2:5b:5c:be:86:a0:0e:9b:
6e:6d:25:22:15:c4:27:47:56:8d:37:52:0a:fe:aa:06:9a:cc:
d0:52:e3:eb:8a:21:60:b8:99:d1:80:27:5a:df:0e:23:2b:67:
cd:81:70:2b:eb:b2:92:5d:c0:e2:ee:1b:b2:06:a6:0a:2a:e7:
db:0d:e5:a6:60:aa:90:00:49:9b:6c:51:58:1d:3a:ee:5f:d7:
76:06:49:f5:b6:62:1a:cd:79:c9:9c:d7:9c:60:e8:34:ec:8a:
0c:46:dd:c4:82:ed:53:da:6f:df:60:05:c5:b8:80:ec:89:a0:
2e:99:9f:bd:4b:c4:46:2c:14:92:b3:b0:d1:ca:e9:cc:0c:66:
0b:eb:d6:ee
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAIbmMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMjA3MTQwMTA1WhcNMjQwNzMxMTQwMTA1WjAYMRYw
FAYDVQQDEw02NWMzOGQyNS0zMmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA/Rv+rwpYPNmWRQPcMXNEVDV3xKny9i10azxINAPTneUMskykf95vpWud
rIquz7x7nYl0ltcBQrmmC4EJAMbfhkgDxdEhub7F1u71aJzDufP7hqr90DD7NJX+
+9CkIWXpPvkW90wgg/1Wh7JyiF6KaGlU8T+EveV0xZMEj10KhJhR7d7Yt8wALS2d
kthfYxUAmBIzcWXQ7RcuNIDPyP58ONMKACfokGtCDg6jIIa7aS1cl+yS5G6k6Vjj
m3y9LHMeHXoEEQXtRepNkBPO93ZTPx+XbA6zCLBcGM9jJylJGoi3h+smpze+RVc0
8A8Mk7D+nS58ENbpsCVWbii4qAqTiwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFKkf
k84qj9yYqZuFnvV/ItkvcBalMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81N0JCNEM2QUM1QzExMUVFOTMyRTExNkY3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmtbgMA0GCSqGSIb3DQEB
CwUAA4IBAQDI9948hrIB8IN+YPtgz2kkSvLGx4arU4zX9CVLLlEgklGCWY4omoJ0
LqpPcI48qxzUIb5bJEp3L/sBk6+4P/oJdVq4pwIdyLQkaHRyMxPpNdnuoFkh2uvY
QB92HF9+MNfWoKgrmaBdWiEp4IeyOv5tIebRg0Oi4ltcvoagDptubSUiFcQnR1aN
N1IK/qoGmszQUuPriiFguJnRgCda3w4jK2fNgXAr67KSXcDi7huyBqYKKufbDeWm
YKqQAEmbbFFYHTruX9d2Bkn1tmIazXnJnNecYOg07IoMRt3Egu1T2m/fYAXFuIDs
iaAumZ+9S8RGLBSSs7DRyunMDGYL69bu
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:24 2024 by rpki-client on console-fra.rpki-client.org