Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5A896C1CF49011EEAB9A964E775412E6.roa
File: 5A896C1CF49011EEAB9A964E775412E6.roa (raw, json)
Hash identifier: A5g0aa/V9xGHilJaoEpJqrZySQRib9YUoYwiGjOkBGw=
Subject key identifier: 92:3A:E7:44:A4:8F:67:55:A2:6B:28:07:FE:21:21:C5:F3:61:AD:2D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A9B0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5A896C1CF49011EEAB9A964E775412E6.roa
Signing time: Sun 07 Apr 2024 03:38:53 +0000
ROA not before: Sun 07 Apr 2024 03:38:49 +0000
ROA not after: Mon 13 May 2024 03:38:49 +0000
asID: 138915
IP address blocks: 154.206.96.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43440 (0xa9b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 03:38:49 2024 GMT
Not After : May 13 03:38:49 2024 GMT
Subject: CN=6612154d-7846
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:07:8e:52:b3:4d:43:77:49:e6:39:cf:fe:e5:
d7:ee:09:81:6c:09:c0:bc:41:84:df:18:bc:48:5c:
ef:15:c0:41:6b:2a:be:f3:15:5e:d2:35:13:20:6d:
df:dd:d0:7d:00:1d:7d:d1:32:f4:a4:80:6f:e4:54:
7c:17:e6:19:fe:f7:2d:ec:9b:0b:e5:bf:cc:da:34:
e6:75:7b:56:93:34:b7:70:ca:22:27:4e:6b:1c:1e:
dc:b5:fb:b5:2f:fd:28:f3:74:b5:90:47:a5:e0:2c:
f4:87:a5:1a:45:df:f2:f9:0f:ab:4c:8f:20:a4:98:
5c:90:8a:b1:58:dc:b8:4f:0b:46:96:54:96:51:b2:
22:d8:7e:74:ed:95:b2:4e:39:96:d3:f6:4a:8f:15:
40:6e:0a:71:db:b8:48:9c:39:7d:72:d3:3d:b8:1d:
73:b4:fb:a1:cf:bc:33:33:07:f3:68:bc:12:82:e9:
d0:55:19:42:6b:5d:1b:33:4c:59:78:3c:5b:da:e9:
02:f9:90:fe:28:59:78:cb:37:f3:2f:af:fb:48:7e:
85:88:d4:79:a2:f6:36:70:3d:b0:21:6b:f5:df:7f:
dd:6b:7c:e2:37:f3:a1:4c:b8:77:c1:c1:db:46:60:
7e:45:58:97:d5:03:6e:22:ee:97:61:07:8e:1a:17:
e6:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:3A:E7:44:A4:8F:67:55:A2:6B:28:07:FE:21:21:C5:F3:61:AD:2D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5A896C1CF49011EEAB9A964E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.96.0/23
Signature Algorithm: sha256WithRSAEncryption
a7:dc:36:22:ed:84:a2:4a:b1:32:71:55:69:7f:a5:cb:85:f6:
4c:4d:95:54:3e:5d:73:f3:b1:4a:a0:74:78:b0:51:15:03:cf:
63:00:b5:c5:f3:64:dd:a5:ee:de:7d:ec:a0:10:bb:36:3a:ab:
9c:74:12:d9:a5:1b:89:16:36:28:dc:58:07:1a:87:49:23:48:
d5:0b:ed:61:d1:34:6f:8a:4e:8b:15:0e:4e:40:30:8a:05:40:
33:4b:91:8e:49:7a:87:16:a7:d6:90:2e:aa:93:36:a6:32:33:
d8:b1:c0:02:6d:f7:7a:f7:37:f1:06:36:1d:75:93:2e:75:0f:
ee:14:63:44:6f:c5:81:5c:15:f7:c5:09:17:b0:d8:85:2e:ae:
01:9b:b8:ea:14:ee:8b:55:09:08:2c:d3:e7:f1:06:7b:d5:a9:
75:ed:ac:8a:f9:3b:e9:81:9b:0b:6f:7f:64:07:4b:31:d1:d0:
5e:fe:75:bc:65:28:8f:fa:cc:3c:cd:df:07:85:31:d0:96:8e:
4a:b7:4c:4f:bb:5d:e6:9f:39:47:0e:31:ad:bf:3e:f7:f1:1c:
e2:61:81:a5:9a:88:b0:cb:2c:88:43:59:6d:2b:93:56:b3:f5:
71:67:0f:12:dd:d6:8a:54:f4:06:08:f2:82:35:9b:d9:78:11:
c1:1b:12:de
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKmwMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDA3MDMzODQ5WhcNMjQwNTEzMDMzODQ5WjAYMRYw
FAYDVQQDEw02NjEyMTU0ZC03ODQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvAeOUrNNQ3dJ5jnP/uXX7gmBbAnAvEGE3xi8SFzvFcBBayq+8xVe0jUT
IG3f3dB9AB190TL0pIBv5FR8F+YZ/vct7JsL5b/M2jTmdXtWkzS3cMoiJ05rHB7c
tfu1L/0o83S1kEel4Cz0h6UaRd/y+Q+rTI8gpJhckIqxWNy4TwtGllSWUbIi2H50
7ZWyTjmW0/ZKjxVAbgpx27hInDl9ctM9uB1ztPuhz7wzMwfzaLwSgunQVRlCa10b
M0xZeDxb2ukC+ZD+KFl4yzfzL6/7SH6FiNR5ovY2cD2wIWv133/da3ziN/OhTLh3
wcHbRmB+RViX1QNuIu6XYQeOGhfmPwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJI6
50Skj2dVomsoB/4hIcXzYa0tMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81QTg5NkMxQ0Y0OTAxMUVFQUI5QTk2NEU3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBms5gMA0GCSqGSIb3DQEB
CwUAA4IBAQCn3DYi7YSiSrEycVVpf6XLhfZMTZVUPl1z87FKoHR4sFEVA89jALXF
82Tdpe7efeygELs2OqucdBLZpRuJFjYo3FgHGodJI0jVC+1h0TRvik6LFQ5OQDCK
BUAzS5GOSXqHFqfWkC6qkzamMjPYscACbfd69zfxBjYddZMudQ/uFGNEb8WBXBX3
xQkXsNiFLq4Bm7jqFO6LVQkILNPn8QZ71al17ayK+TvpgZsLb39kB0sx0dBe/nW8
ZSiP+sw8zd8HhTHQlo5Kt0xPu13mnzlHDjGtvz738RziYYGlmoiwyyyIQ1ltK5NW
s/VxZw8S3daKVPQGCPKCNZvZeBHBGxLe
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:25 2024 by rpki-client on console-fra.rpki-client.org