Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63C97B9AEFF511EE9E1AA3B7775412E6.roa
File: 63C97B9AEFF511EE9E1AA3B7775412E6.roa (raw, json)
Hash identifier: Ct+ZuwJCGE6vtCg8OL3GOrAVSL22qIeTgRgQrgf0il4=
Subject key identifier: 35:5F:D4:3E:4E:A8:B7:3F:D7:75:80:72:B4:24:B9:E3:21:FE:D7:81
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A7F4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63C97B9AEFF511EE9E1AA3B7775412E6.roa
Signing time: Mon 01 Apr 2024 06:59:32 +0000
ROA not before: Mon 01 Apr 2024 06:59:28 +0000
ROA not after: Tue 07 May 2024 06:59:28 +0000
asID: 63139
IP address blocks: 154.223.36.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42996 (0xa7f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 06:59:28 2024 GMT
Not After : May 7 06:59:28 2024 GMT
Subject: CN=660a5b53-b605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a9:85:39:43:47:b3:71:ca:00:35:f7:3f:1a:
38:4b:dd:49:9b:e8:9d:6b:44:c7:ac:83:20:e9:da:
f5:2b:4e:d9:04:3c:f8:14:7b:f1:d9:a0:75:22:60:
5b:13:32:dd:ef:8f:d7:be:b8:9d:7c:b2:4d:3b:df:
e2:7a:65:e1:57:c4:24:a5:18:c9:cd:fa:1e:9b:63:
ef:0e:b4:ed:d0:d3:22:fd:fc:78:00:1c:85:df:23:
64:39:8a:06:6c:52:aa:7d:81:6e:7a:3a:bd:16:f8:
91:d0:e9:a3:8a:9d:37:ff:b0:a3:52:e9:9a:ec:a0:
54:18:e5:e7:be:9f:4e:ce:55:fd:4c:b0:87:e8:80:
90:b5:7b:21:9d:3f:9a:fc:d0:fd:b7:e7:11:d4:f9:
0a:f8:af:f5:27:cb:a8:ec:86:ec:ee:fd:f7:ac:c9:
75:8e:39:62:36:0b:b6:1d:10:7f:ee:d5:56:12:a7:
66:78:14:d1:7f:25:51:84:72:28:ac:3b:02:b2:85:
cf:8e:93:b0:c4:d6:8e:d3:07:c7:c1:ea:9e:ae:b4:
c0:e2:85:96:85:8d:19:d3:b7:07:31:40:6d:20:1d:
cc:6f:e6:ba:41:e2:6c:ae:c7:2a:9a:f2:e3:3a:6c:
58:1a:ba:fa:8c:b9:0f:2c:95:21:d4:d0:82:ab:a3:
1b:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:5F:D4:3E:4E:A8:B7:3F:D7:75:80:72:B4:24:B9:E3:21:FE:D7:81
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63C97B9AEFF511EE9E1AA3B7775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.36.0/24
Signature Algorithm: sha256WithRSAEncryption
80:0d:85:f4:26:01:ec:a7:26:39:3d:d9:e6:bb:68:21:3d:16:
52:af:65:d9:be:85:b2:9b:81:ab:04:1f:57:ad:c0:a0:56:04:
11:ea:ec:fb:00:bb:69:7f:c3:b6:b8:cd:0d:44:13:3b:22:69:
aa:6c:e0:cc:a6:6d:ea:77:bf:1c:b7:0f:d4:4e:44:f7:6d:85:
51:e6:47:77:79:15:6b:54:24:a1:26:46:1b:8d:50:ee:93:45:
09:97:17:3d:d6:7f:9b:9b:bc:a0:98:ec:5c:9b:c0:c2:b8:9f:
ad:30:79:23:97:99:59:79:c8:28:06:30:00:3a:9d:4b:51:0b:
ee:fb:b1:1f:ce:47:88:41:4d:da:49:5d:26:07:f6:3a:13:86:
f8:5b:ec:4e:57:dd:12:c1:a2:d0:61:89:99:b8:bd:43:85:3a:
d9:66:e0:aa:30:6d:42:33:36:c0:4e:53:09:0f:a2:b0:a5:79:
43:24:a4:91:c4:05:04:7a:12:aa:5c:e7:d9:ec:ab:1d:f6:fa:
a5:26:69:0b:bd:be:f8:74:b2:27:e8:da:0c:8c:a5:d0:14:7f:
46:42:92:d8:bf:15:b0:14:63:d9:d0:3e:cb:5f:8e:5e:49:59:
e6:b2:97:3a:5d:8d:a7:ab:83:65:a6:60:88:60:ec:f3:89:64:
e8:32:d7:7c
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKf0MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDAxMDY1OTI4WhcNMjQwNTA3MDY1OTI4WjAYMRYw
FAYDVQQDEw02NjBhNWI1My1iNjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0qmFOUNHs3HKADX3Pxo4S91Jm+ida0THrIMg6dr1K07ZBDz4FHvx2aB1
ImBbEzLd74/XvridfLJNO9/iemXhV8QkpRjJzfoem2PvDrTt0NMi/fx4AByF3yNk
OYoGbFKqfYFuejq9FviR0Omjip03/7CjUuma7KBUGOXnvp9OzlX9TLCH6ICQtXsh
nT+a/ND9t+cR1PkK+K/1J8uo7Ibs7v33rMl1jjliNgu2HRB/7tVWEqdmeBTRfyVR
hHIorDsCsoXPjpOwxNaO0wfHweqerrTA4oWWhY0Z07cHMUBtIB3Mb+a6QeJsrscq
mvLjOmxYGrr6jLkPLJUh1NCCq6MbgQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDVf
1D5OqLc/13WAcrQkueMh/teBMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82M0M5N0I5QUVGRjUxMUVFOUUxQUEzQjc3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt8kMA0GCSqGSIb3DQEB
CwUAA4IBAQCADYX0JgHspyY5Pdnmu2ghPRZSr2XZvoWym4GrBB9XrcCgVgQR6uz7
ALtpf8O2uM0NRBM7ImmqbODMpm3qd78ctw/UTkT3bYVR5kd3eRVrVCShJkYbjVDu
k0UJlxc91n+bm7ygmOxcm8DCuJ+tMHkjl5lZecgoBjAAOp1LUQvu+7EfzkeIQU3a
SV0mB/Y6E4b4W+xOV90SwaLQYYmZuL1DhTrZZuCqMG1CMzbATlMJD6KwpXlDJKSR
xAUEehKqXOfZ7Ksd9vqlJmkLvb74dLIn6NoMjKXQFH9GQpLYvxWwFGPZ0D7LX45e
SVnmspc6XY2nq4NlpmCIYOzziWToMtd8
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:26 2024 by rpki-client on console-fra.rpki-client.org