Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65C68B94FB8711ED9A8B40824AD9E6FC.roa
File: 65C68B94FB8711ED9A8B40824AD9E6FC.roa (raw, json)
Hash identifier: /CElzdatV+nu7F6+fW1hiMEOF662Y9D7X/pnCnXyzjc=
Subject key identifier: 89:4C:A6:9C:92:59:F0:78:69:03:50:BA:DE:5F:EE:54:CA:34:14:9C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 27FE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65C68B94FB8711ED9A8B40824AD9E6FC.roa
Signing time: Fri 26 May 2023 05:37:26 +0000
ROA not before: Fri 26 May 2023 05:37:23 +0000
ROA not after: Sun 30 Jun 2024 05:37:23 +0000
asID: 984
IP address blocks: 154.92.128.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10238 (0x27fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 26 05:37:23 2023 GMT
Not After : Jun 30 05:37:23 2024 GMT
Subject: CN=64704596-3518
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2c:ae:7f:47:c5:ab:6c:42:3f:c6:5d:7e:af:
ba:c4:2d:b5:05:68:69:00:a3:a2:e2:27:89:39:42:
24:03:12:b3:2c:00:cc:cf:46:21:a1:13:a8:a7:b3:
0b:fc:a5:ad:9f:3f:62:93:5b:60:fc:b1:e4:f2:34:
cf:1d:e1:61:7e:f3:64:e9:d9:34:88:be:13:40:09:
d4:ba:03:1a:cd:ae:e1:a6:89:f5:1c:75:c4:10:89:
fd:77:af:9a:97:d8:30:a3:8d:a3:e7:88:99:e1:40:
d5:78:c9:48:a1:18:f2:a7:df:39:c9:c3:03:44:c3:
29:41:32:34:df:03:27:9b:b5:5e:6c:11:4d:24:2f:
ad:af:18:26:90:ad:08:7e:6a:0a:95:0a:10:b4:87:
be:2e:cf:1a:92:23:34:89:61:6b:a6:22:0a:b5:88:
5a:64:69:fd:eb:d3:81:47:76:62:92:f2:1b:2c:87:
ad:a1:67:47:ab:ef:f4:a9:41:b1:9c:01:99:81:f5:
da:21:36:56:01:55:67:5b:df:df:53:d4:06:e6:68:
c2:04:8d:2a:46:5a:ee:0c:2b:59:96:ab:5d:dd:4d:
e3:70:8e:e6:e6:1f:bf:b0:f0:85:2a:05:35:f1:df:
1b:19:2a:93:e9:39:10:82:f2:f2:85:9a:17:e8:c9:
24:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:4C:A6:9C:92:59:F0:78:69:03:50:BA:DE:5F:EE:54:CA:34:14:9C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65C68B94FB8711ED9A8B40824AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.128.0/17
Signature Algorithm: sha256WithRSAEncryption
2d:6f:57:8f:dc:50:76:ff:d4:32:7c:87:69:f7:27:32:3e:52:
95:0d:0e:f7:ee:04:53:e9:a9:6a:48:25:24:56:7a:67:53:3c:
21:ea:55:60:f2:da:eb:89:fa:8c:7d:2a:b1:f1:f3:76:a5:9c:
1f:39:f6:31:10:be:a1:77:f9:93:70:57:cf:5c:82:bb:15:ff:
35:5a:c6:4f:55:1c:64:17:bb:fb:8e:c5:ca:3e:8f:5f:de:49:
5e:ea:e7:e4:56:32:3d:84:13:60:00:2b:18:44:fd:60:0c:dd:
32:06:5f:73:dd:f8:32:f1:a5:c7:fc:32:bc:bb:05:bb:ee:f8:
fa:7a:74:40:2f:4c:c7:a7:b7:0e:46:31:6d:47:32:42:96:f7:
72:e4:a2:83:ce:d9:6e:d5:52:ad:1f:9a:de:72:a3:a3:ab:1d:
0d:98:af:d3:04:d9:35:5d:f7:0f:9f:86:b4:50:07:6f:f1:9f:
45:61:87:eb:b6:3a:52:68:cc:63:3f:11:32:5c:ce:f5:ac:a7:
da:30:26:73:d5:48:e6:ad:a3:d2:3a:be:45:da:ff:33:46:c6:
8e:de:dc:80:49:a5:c4:cb:ea:ce:50:81:22:9f:55:1b:e2:0e:
d8:6f:64:9d:08:a5:19:8f:20:8c:1d:f7:8f:8c:40:57:a6:85:
03:f0:e7:92
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICJ/4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA1MjYwNTM3MjNaFw0yNDA2MzAwNTM3MjNaMBgxFjAU
BgNVBAMTDTY0NzA0NTk2LTM1MTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQChLK5/R8WrbEI/xl1+r7rELbUFaGkAo6LiJ4k5QiQDErMsAMzPRiGhE6in
swv8pa2fP2KTW2D8seTyNM8d4WF+82Tp2TSIvhNACdS6AxrNruGmifUcdcQQif13
r5qX2DCjjaPniJnhQNV4yUihGPKn3znJwwNEwylBMjTfAyebtV5sEU0kL62vGCaQ
rQh+agqVChC0h74uzxqSIzSJYWumIgq1iFpkaf3r04FHdmKS8hssh62hZ0er7/Sp
QbGcAZmB9dohNlYBVWdb399T1AbmaMIEjSpGWu4MK1mWq13dTeNwjubmH7+w8IUq
BTXx3xsZKpPpORCC8vKFmhfoySThAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUiUym
nJJZ8HhpA1C63l/uVMo0FJwwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzY1QzY4Qjk0RkI4NzExRUQ5QThCNDA4MjRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAeaXIAwDQYJKoZIhvcNAQEL
BQADggEBAC1vV4/cUHb/1DJ8h2n3JzI+UpUNDvfuBFPpqWpIJSRWemdTPCHqVWDy
2uuJ+ox9KrHx83alnB859jEQvqF3+ZNwV89cgrsV/zVaxk9VHGQXu/uOxco+j1/e
SV7q5+RWMj2EE2AAKxhE/WAM3TIGX3Pd+DLxpcf8Mry7Bbvu+Pp6dEAvTMentw5G
MW1HMkKW93LkooPO2W7VUq0fmt5yo6OrHQ2Yr9ME2TVd9w+fhrRQB2/xn0Vhh+u2
OlJozGM/ETJczvWsp9owJnPVSOato9I6vkXa/zNGxo7e3IBJpcTL6s5QgSKfVRvi
DthvZJ0IpRmPIIwd94+MQFemhQPw55I=
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:26 2024 by rpki-client on console-fra.rpki-client.org