Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66D3E39AF39B11ED9EDD9F684AD9E6FC.roa
File: 66D3E39AF39B11ED9EDD9F684AD9E6FC.roa (raw, json)
Hash identifier: 5HrTU7+JkcYids+g3W4E1OJsv57SG7ch0DGOqyVYbUc=
Subject key identifier: 45:58:73:F6:85:BC:3E:16:3F:D0:D8:69:AA:8D:C1:DC:43:F9:41:67
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2455
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66D3E39AF39B11ED9EDD9F684AD9E6FC.roa
Signing time: Tue 16 May 2023 03:40:29 +0000
ROA not before: Tue 16 May 2023 03:40:23 +0000
ROA not after: Mon 20 May 2024 03:40:23 +0000
asID: 55355
IP address blocks: 154.89.4.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9301 (0x2455)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 16 03:40:23 2023 GMT
Not After : May 20 03:40:23 2024 GMT
Subject: CN=6462fb2d-dbac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f9:f3:b9:64:06:35:5e:8d:b0:35:5a:f2:20:
b6:0e:a7:d5:82:25:49:8a:cc:d4:5b:c1:65:db:ed:
46:3d:d2:49:a8:ed:04:2e:a3:72:2a:24:15:3a:a0:
08:85:02:a6:db:71:95:dc:63:3a:52:db:cd:74:32:
5b:6f:cb:74:80:5e:89:61:70:0a:d4:bc:38:ab:ac:
76:1a:12:6c:bf:c9:83:79:99:59:17:29:56:5e:b9:
64:38:9c:95:45:b7:c7:3e:b5:b8:a7:b6:fb:2e:ec:
40:14:c1:ce:70:72:3c:18:8c:c4:04:f5:d1:b0:ed:
1d:a3:54:0f:27:f0:aa:cc:8d:c6:31:1b:63:eb:1c:
50:95:ea:35:00:b3:e9:c0:41:f4:c9:d2:e2:9c:07:
7f:47:f1:76:65:ea:e3:5d:6f:b7:8e:df:10:d9:8c:
ca:a1:10:59:5b:37:0e:62:42:aa:f7:93:ad:a1:2b:
f2:06:9f:0b:dd:6a:e8:c0:07:46:99:d2:e8:f7:f9:
f6:ea:d5:7d:d8:ae:fa:4a:ca:65:7d:04:8f:de:ee:
5c:dc:23:e8:92:e8:6f:98:19:b8:f1:19:ca:98:a8:
21:ec:14:fa:14:0a:75:8c:b8:a3:31:c2:a7:bd:09:
b6:f5:6d:76:9d:c0:ec:38:4f:23:f9:6a:49:b9:00:
f7:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:58:73:F6:85:BC:3E:16:3F:D0:D8:69:AA:8D:C1:DC:43:F9:41:67
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66D3E39AF39B11ED9EDD9F684AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.4.0/24
Signature Algorithm: sha256WithRSAEncryption
15:d7:73:f1:94:91:f3:64:df:3c:e5:9c:e8:77:40:0f:32:92:
8b:5b:ce:a2:f6:70:fa:6e:dd:72:d4:5b:0f:66:c5:c9:51:30:
e2:aa:b9:f4:21:b7:f3:7a:e6:e4:b5:26:a5:d8:1f:90:f0:aa:
21:65:80:cc:ee:ea:9e:0f:08:f9:f5:fd:c6:27:be:6a:bd:91:
00:e6:a5:b7:15:88:60:0d:87:b9:66:45:e8:6b:96:90:a9:1c:
42:a2:c8:92:60:25:f4:37:f5:0f:f8:5e:d4:1b:68:dd:b3:85:
5e:fc:21:ec:b2:3f:c9:e8:7f:4c:bf:e2:98:86:e8:b3:f7:a7:
45:ff:41:86:fa:c7:5b:9e:a4:2d:fc:f6:40:38:a6:d8:47:c5:
67:b6:e3:f9:74:e6:d8:6d:38:81:c6:80:fe:12:ec:ca:3b:cb:
3e:1f:59:b6:0c:fa:3e:83:b7:22:3b:82:dc:03:d0:94:ca:71:
96:17:51:d1:23:74:a7:12:b8:d6:04:a3:d3:0e:af:6a:86:6b:
9b:46:71:40:14:65:b2:07:66:70:9f:8b:68:10:39:e8:ad:d8:
84:cf:2a:ab:64:46:97:07:cf:58:3d:55:85:13:bb:a6:ff:cf:
2e:fa:dd:20:07:81:34:16:17:05:0b:9c:e2:33:c6:1c:75:0e:
8d:92:ee:5c
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICJFUwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA1MTYwMzQwMjNaFw0yNDA1MjAwMzQwMjNaMBgxFjAU
BgNVBAMTDTY0NjJmYjJkLWRiYWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDT+fO5ZAY1Xo2wNVryILYOp9WCJUmKzNRbwWXb7UY90kmo7QQuo3IqJBU6
oAiFAqbbcZXcYzpS2810Mltvy3SAXolhcArUvDirrHYaEmy/yYN5mVkXKVZeuWQ4
nJVFt8c+tbintvsu7EAUwc5wcjwYjMQE9dGw7R2jVA8n8KrMjcYxG2PrHFCV6jUA
s+nAQfTJ0uKcB39H8XZl6uNdb7eO3xDZjMqhEFlbNw5iQqr3k62hK/IGnwvdaujA
B0aZ0uj3+fbq1X3YrvpKymV9BI/e7lzcI+iS6G+YGbjxGcqYqCHsFPoUCnWMuKMx
wqe9Cbb1bXadwOw4TyP5akm5APfFAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQURVhz
9oW8PhY/0Nhpqo3B3EP5QWcwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzY2RDNFMzlBRjM5QjExRUQ5RUREOUY2ODRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaWQQwDQYJKoZIhvcNAQEL
BQADggEBABXXc/GUkfNk3zzlnOh3QA8ykotbzqL2cPpu3XLUWw9mxclRMOKqufQh
t/N65uS1JqXYH5DwqiFlgMzu6p4PCPn1/cYnvmq9kQDmpbcViGANh7lmRehrlpCp
HEKiyJJgJfQ39Q/4XtQbaN2zhV78IeyyP8nof0y/4piG6LP3p0X/QYb6x1uepC38
9kA4pthHxWe24/l05thtOIHGgP4S7Mo7yz4fWbYM+j6DtyI7gtwD0JTKcZYXUdEj
dKcSuNYEo9MOr2qGa5tGcUAUZbIHZnCfi2gQOeit2ITPKqtkRpcHz1g9VYUTu6b/
zy763SAHgTQWFwULnOIzxhx1Do2S7lw=
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:11 2024 by rpki-client on console-ams.rpki-client.org