Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/61A43534E75411EEA34932AF775412E6.roa
File: 61A43534E75411EEA34932AF775412E6.roa (raw, json)
Hash identifier: XXZyb+aKZY1YzX3ThE54/rWIvq2G8vz5YZ/Morc5pQc=
Subject key identifier: B8:90:16:E0:45:E6:D8:7C:34:34:16:EA:13:5A:89:BA:F0:3F:6C:94
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A491
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/61A43534E75411EEA34932AF775412E6.roa
Signing time: Thu 21 Mar 2024 07:26:50 +0000
ROA not before: Thu 21 Mar 2024 07:26:46 +0000
ROA not after: Tue 23 Apr 2024 07:26:46 +0000
asID: 44559
IP address blocks: 154.218.48.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42129 (0xa491)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 07:26:46 2024 GMT
Not After : Apr 23 07:26:46 2024 GMT
Subject: CN=65fbe13a-7682
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:1b:c6:2e:65:41:ea:ed:4b:e1:ad:44:82:85:
22:88:ac:a0:51:4f:ef:e4:93:52:99:c7:7f:01:69:
25:3e:c6:64:f5:50:59:1f:72:cd:8c:ee:e4:e0:c5:
b0:f5:8b:ba:ba:3e:63:9a:81:a6:4c:9e:85:a4:3c:
15:9c:7c:64:03:25:5c:c6:9f:60:58:8c:3f:7d:8d:
29:27:9d:3a:57:33:44:35:1d:71:19:90:79:3e:a2:
61:d1:92:ff:99:00:70:61:02:71:ab:bb:4f:0a:0d:
63:da:d8:25:f4:29:ef:ed:a7:25:2b:9a:d9:62:c9:
b8:4f:1a:6b:4d:d3:5b:c6:b6:db:7a:ab:f2:3d:66:
fb:23:8a:a9:77:a0:df:20:8b:92:f2:15:9e:05:28:
60:f0:ef:76:a9:0b:5e:d2:2d:0a:46:07:7d:b0:31:
cc:1d:f3:85:58:75:95:73:d1:65:f0:3f:3a:4b:5d:
ce:f6:30:66:07:03:65:22:92:a5:3d:b9:aa:5c:1a:
f1:20:5f:dc:1c:57:04:44:61:b5:61:55:29:1e:a6:
4e:18:1d:59:ce:b8:e4:ce:80:16:e1:22:fc:ea:f7:
5b:c3:e7:90:dc:97:3f:49:fd:32:cc:a8:aa:15:81:
4d:3c:f5:c7:f3:ac:ad:fb:b8:37:d5:79:11:f7:c7:
b8:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:90:16:E0:45:E6:D8:7C:34:34:16:EA:13:5A:89:BA:F0:3F:6C:94
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/61A43534E75411EEA34932AF775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.48.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:33:64:11:49:43:29:ae:16:bd:e4:c6:36:95:e9:f8:63:0c:
c8:c6:51:c7:eb:ff:87:34:71:bd:b4:b4:44:05:76:55:f0:13:
3b:58:2d:2f:aa:73:aa:85:0f:36:b3:25:ca:4a:d9:c6:4c:94:
7f:15:cb:fb:24:0d:73:9a:9f:45:40:19:18:ad:36:28:e9:a7:
32:dc:c2:42:74:a7:6b:d9:40:fd:a5:a9:20:4d:2d:60:17:e5:
f6:de:8d:61:e2:2c:35:64:1d:0f:09:0c:5d:ee:ee:54:df:a1:
b8:a1:4a:56:b0:dc:ca:9e:ed:bc:49:02:f8:c1:fe:c4:eb:7a:
93:fe:b2:d2:8e:68:31:c1:b8:2c:16:d9:a7:f4:a3:a2:e2:ea:
ce:31:4f:f3:ef:cd:51:80:33:da:bd:76:d4:8d:89:6a:bf:ea:
6d:df:af:1e:24:ba:37:47:e3:a2:c9:b4:92:21:cf:29:25:18:
b1:6b:d3:82:75:ba:84:dc:8d:9c:ba:81:9a:76:65:87:73:95:
14:0d:7b:07:c2:96:b4:87:e9:27:c2:7d:b2:12:c3:3f:28:d3:
7a:e8:4e:aa:41:d0:8b:fa:b8:9d:99:45:e6:0f:18:d6:26:40:
cd:88:c5:ad:4e:ec:8f:ad:78:0b:6c:04:33:9f:f8:53:20:1b:
54:f6:3c:56
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKSRMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMDcyNjQ2WhcNMjQwNDIzMDcyNjQ2WjAYMRYw
FAYDVQQDEw02NWZiZTEzYS03NjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqhvGLmVB6u1L4a1EgoUiiKygUU/v5JNSmcd/AWklPsZk9VBZH3LNjO7k
4MWw9Yu6uj5jmoGmTJ6FpDwVnHxkAyVcxp9gWIw/fY0pJ506VzNENR1xGZB5PqJh
0ZL/mQBwYQJxq7tPCg1j2tgl9Cnv7aclK5rZYsm4TxprTdNbxrbbeqvyPWb7I4qp
d6DfIIuS8hWeBShg8O92qQte0i0KRgd9sDHMHfOFWHWVc9Fl8D86S13O9jBmBwNl
IpKlPbmqXBrxIF/cHFcERGG1YVUpHqZOGB1ZzrjkzoAW4SL86vdbw+eQ3Jc/Sf0y
zKiqFYFNPPXH86yt+7g31XkR98e4iwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFLiQ
FuBF5th8NDQW6hNaibrwP2yUMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82MUE0MzUzNEU3NTQxMUVFQTM0OTMyQUY3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtowMA0GCSqGSIb3DQEB
CwUAA4IBAQB6M2QRSUMprha95MY2len4YwzIxlHH6/+HNHG9tLREBXZV8BM7WC0v
qnOqhQ82syXKStnGTJR/Fcv7JA1zmp9FQBkYrTYo6acy3MJCdKdr2UD9pakgTS1g
F+X23o1h4iw1ZB0PCQxd7u5U36G4oUpWsNzKnu28SQL4wf7E63qT/rLSjmgxwbgs
Ftmn9KOi4urOMU/z781RgDPavXbUjYlqv+pt368eJLo3R+OiybSSIc8pJRixa9OC
dbqE3I2cuoGadmWHc5UUDXsHwpa0h+knwn2yEsM/KNN66E6qQdCL+ridmUXmDxjW
JkDNiMWtTuyPrXgLbAQzn/hTIBtU9jxW
-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:19 2024 by rpki-client on console-fra.rpki-client.org