Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6590F0E2231611ECBEA56C43D8A014CE.roa
File: 6590F0E2231611ECBEA56C43D8A014CE.roa (raw, json)
Hash identifier: AeSkC+HaliLzxIBrmg/y/UZNSZZCV7xaymYSPnbJtSY=
Subject key identifier: B0:75:49:33:11:53:0F:3C:4B:E7:88:5B:90:CA:18:65:22:E1:B7:0B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0C6D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6590F0E2231611ECBEA56C43D8A014CE.roa
Signing time: Sat 02 Oct 2021 00:19:24 +0000
ROA not before: Sat 02 Oct 2021 00:00:19 +0000
ROA not after: Mon 02 Nov 2026 00:00:19 +0000
asID: 131267
IP address blocks: 154.222.4.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3181 (0xc6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 2 00:00:19 2021 GMT
Not After : Nov 2 00:00:19 2026 GMT
Subject: CN=6157a58c-a48e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d1:c1:70:8f:f1:50:47:c7:c1:ba:22:34:c7:
90:cb:0b:ef:39:d8:22:98:67:dd:3f:a9:ee:f2:03:
fc:79:73:09:c3:75:be:57:4a:29:34:29:35:4f:07:
e5:c4:f0:b7:93:2a:87:7c:46:1e:91:dc:5c:33:a1:
5d:5f:d2:38:fd:2e:66:b2:72:db:ff:36:0e:df:54:
3c:22:d6:e9:09:36:63:a3:7c:8e:f1:38:79:31:11:
b4:ac:16:57:21:18:ce:2a:52:04:7a:00:8b:fa:68:
c2:a7:35:13:53:6d:1b:36:84:ae:fb:9a:54:56:0d:
27:a8:ce:bf:50:0e:5d:13:93:f2:b1:29:8e:61:4d:
31:0e:2a:a2:46:b4:00:0e:a1:18:af:e3:ca:23:04:
35:b9:0b:c2:53:07:00:dc:88:5e:d6:47:e2:ac:20:
ce:1b:00:5a:bd:21:da:53:68:33:86:92:48:c3:23:
4c:20:80:d0:22:74:a4:e3:36:3b:6b:7f:da:29:eb:
37:34:fe:fd:69:04:2f:c6:74:a1:21:3f:80:3d:50:
fa:7e:32:ee:b2:7b:40:89:c9:c1:89:44:9f:d4:c4:
98:db:f6:e2:a8:26:17:ad:30:66:1e:db:07:f7:3b:
0e:a5:46:0f:bc:47:2a:b1:97:94:e0:0f:28:25:16:
7b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:75:49:33:11:53:0F:3C:4B:E7:88:5B:90:CA:18:65:22:E1:B7:0B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6590F0E2231611ECBEA56C43D8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.4.0/22
Signature Algorithm: sha256WithRSAEncryption
28:c1:9b:5d:24:4d:13:dd:3c:8b:ec:6a:14:2f:b2:24:3e:20:
3a:fa:c9:70:d6:5e:a9:53:9f:2b:c1:06:32:4b:ef:9f:29:3f:
21:f8:ba:1f:8d:f5:28:13:58:35:d2:dc:23:4b:61:4f:39:09:
13:f4:10:7a:ea:e2:0e:36:96:a2:30:44:95:28:53:a0:18:7b:
c7:d2:8c:06:ed:46:bd:b3:45:d7:34:ef:b2:6b:bd:19:05:41:
88:1c:c5:04:7b:07:de:37:46:0a:ed:6c:01:56:f4:a8:2f:02:
ea:d4:28:29:6d:39:cb:13:f9:12:16:31:82:01:ab:b2:7b:5f:
68:f5:51:d2:de:24:09:41:94:06:18:30:ed:d7:24:a7:81:06:
6a:19:8b:9f:25:c6:00:3d:90:8e:d0:be:61:b7:29:18:2a:b6:
7f:0c:59:52:e5:e7:d7:31:ac:1c:b5:39:0e:33:d8:89:0c:08:
ec:5a:17:53:69:94:f0:7e:fd:94:dd:f5:12:6a:53:b0:1b:4a:
47:23:63:08:c0:48:7e:06:05:f2:20:79:58:8b:55:23:59:17:
e6:93:38:e8:a9:aa:e7:e9:37:8f:5f:09:47:81:94:e4:4b:b4:
93:39:e0:c1:28:d4:fc:c9:99:c4:8e:99:25:14:4c:af:4c:93:
78:5a:9b:4c
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICDG0wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMTEwMDIwMDAwMTlaFw0yNjExMDIwMDAwMTlaMBgxFjAU
BgNVBAMMDTYxNTdhNThjLWE0OGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDP0cFwj/FQR8fBuiI0x5DLC+852CKYZ90/qe7yA/x5cwnDdb5XSik0KTVP
B+XE8LeTKod8Rh6R3FwzoV1f0jj9Lmayctv/Ng7fVDwi1ukJNmOjfI7xOHkxEbSs
FlchGM4qUgR6AIv6aMKnNRNTbRs2hK77mlRWDSeozr9QDl0Tk/KxKY5hTTEOKqJG
tAAOoRiv48ojBDW5C8JTBwDciF7WR+KsIM4bAFq9IdpTaDOGkkjDI0wggNAidKTj
Njtrf9op6zc0/v1pBC/GdKEhP4A9UPp+Mu6ye0CJycGJRJ/UxJjb9uKoJhetMGYe
2wf3Ow6lRg+8Ryqxl5TgDyglFntzAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUsHVJ
MxFTDzxL54hbkMoYZSLhtwswHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzY1OTBGMEUyMjMxNjExRUNCRUE1NkM0M0Q4QTAxNENFLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKa3gQwDQYJKoZIhvcNAQEL
BQADggEBACjBm10kTRPdPIvsahQvsiQ+IDr6yXDWXqlTnyvBBjJL758pPyH4uh+N
9SgTWDXS3CNLYU85CRP0EHrq4g42lqIwRJUoU6AYe8fSjAbtRr2zRdc077JrvRkF
QYgcxQR7B943RgrtbAFW9KgvAurUKCltOcsT+RIWMYIBq7J7X2j1UdLeJAlBlAYY
MO3XJKeBBmoZi58lxgA9kI7QvmG3KRgqtn8MWVLl59cxrBy1OQ4z2IkMCOxaF1Np
lPB+/ZTd9RJqU7AbSkcjYwjASH4GBfIgeViLVSNZF+aTOOipqufpN49fCUeBlORL
tJM54MEo1PzJmcSOmSUUTK9Mk3ham0w=
-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:33 2024 by rpki-client on console-fra.rpki-client.org