Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6A3BA490E04511EE84A418AC775412E6.roa
File: 6A3BA490E04511EE84A418AC775412E6.roa (raw, json)
Hash identifier: c1bY8pOejwCqH6Jhxbr94fAt/GAqpCbuogsy4aZkCNc=
Subject key identifier: D4:DE:21:08:E4:1C:9A:9B:31:C1:3D:81:59:40:9D:BB:FA:F5:A5:30
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A0E2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6A3BA490E04511EE84A418AC775412E6.roa
Signing time: Tue 12 Mar 2024 07:52:03 +0000
ROA not before: Tue 12 Mar 2024 07:52:00 +0000
ROA not after: Thu 30 May 2024 07:52:00 +0000
asID: 328608
IP address blocks: 154.223.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 03 May 2024 00:04:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41186 (0xa0e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 12 07:52:00 2024 GMT
Not After : May 30 07:52:00 2024 GMT
Subject: CN=65f009a3-2762
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4b:88:2b:5a:ff:f3:68:1b:bb:85:56:36:23:
25:e1:6e:75:e0:3b:f7:dd:a6:9f:b8:20:9d:a7:f8:
0d:1e:5b:fd:85:35:5a:c5:2e:4c:cb:fa:8e:3e:5f:
19:09:4c:3f:ed:11:e4:54:e8:c5:52:c8:68:0b:47:
16:6c:9d:b9:cc:fb:e8:f2:ac:3d:62:3e:43:a1:fc:
80:df:fe:f9:8d:61:05:92:34:25:ab:24:1e:90:8a:
9d:78:0a:a3:ba:95:20:cd:ca:67:5d:35:ac:3f:34:
1d:c3:ed:e2:20:22:5a:05:ae:c8:44:22:d3:5f:5e:
2e:1c:56:ba:ab:f4:53:82:9d:a6:18:a9:09:90:39:
da:53:8a:99:91:ee:7e:53:d9:0e:a4:86:df:6b:ef:
67:1d:73:37:b4:33:6f:a8:82:a0:d9:f4:e2:bd:22:
d2:c0:5b:d7:0c:92:79:26:88:02:58:47:69:e7:fc:
30:3d:94:09:c6:f1:c1:78:8a:18:27:fa:8d:4d:88:
65:e0:74:33:4a:e5:01:25:fa:72:ef:ed:4b:33:e9:
79:80:d3:76:62:5c:5a:b3:2a:93:bf:02:6e:5e:4c:
07:e6:5f:83:2d:80:30:5d:73:87:d4:1b:06:15:d7:
63:4e:d6:f2:66:e9:1b:0a:ef:c4:e6:5c:6b:73:fb:
07:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:DE:21:08:E4:1C:9A:9B:31:C1:3D:81:59:40:9D:BB:FA:F5:A5:30
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6A3BA490E04511EE84A418AC775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.80.0/24
Signature Algorithm: sha256WithRSAEncryption
64:a9:a6:a8:59:8e:6f:ef:38:85:09:08:d2:28:26:c4:b9:77:
c1:42:5a:fc:ef:52:89:5f:42:f9:f8:25:3d:80:10:e2:13:b3:
79:04:01:e1:fa:3d:d0:9f:41:f9:35:fe:bf:0f:b6:a0:6b:89:
4e:11:00:68:6c:9e:d4:54:36:42:1c:d3:da:5e:21:29:9e:52:
b9:cc:bc:6e:32:0c:6a:08:24:b7:34:3b:7d:a7:10:7e:1e:bc:
cf:69:81:09:c5:b0:e4:db:26:ed:30:45:c3:2d:03:6a:1e:c4:
9c:bc:1f:cf:8c:ee:96:8f:bb:ab:ba:20:9a:ed:2a:9e:27:40:
bf:09:9d:f6:a2:7c:7f:a8:7e:05:8c:97:36:83:de:e0:13:06:
54:0a:ec:99:fa:46:d6:77:ba:f5:ca:39:45:7d:b6:9a:f8:d8:
c9:5f:e2:63:ed:71:e1:ef:cf:62:3a:e2:27:b7:da:cf:97:e1:
07:f3:02:8c:06:a5:95:17:3f:00:57:d3:d2:e9:ea:75:5c:62:
38:77:ed:a4:ae:44:ea:c2:4d:81:7d:c7:87:52:0f:9d:6f:e1:
c7:09:47:70:c2:2e:e8:90:d9:07:49:80:8c:07:a4:07:0e:d9:
2b:ae:ec:e8:b8:ea:52:bc:8f:31:30:a0:a9:53:fa:03:ea:65:
56:fa:8c:27
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKDiMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzEyMDc1MjAwWhcNMjQwNTMwMDc1MjAwWjAYMRYw
FAYDVQQDEw02NWYwMDlhMy0yNzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAnkuIK1r/82gbu4VWNiMl4W514Dv33aafuCCdp/gNHlv9hTVaxS5My/qO
Pl8ZCUw/7RHkVOjFUshoC0cWbJ25zPvo8qw9Yj5DofyA3/75jWEFkjQlqyQekIqd
eAqjupUgzcpnXTWsPzQdw+3iICJaBa7IRCLTX14uHFa6q/RTgp2mGKkJkDnaU4qZ
ke5+U9kOpIbfa+9nHXM3tDNvqIKg2fTivSLSwFvXDJJ5JogCWEdp5/wwPZQJxvHB
eIoYJ/qNTYhl4HQzSuUBJfpy7+1LM+l5gNN2YlxasyqTvwJuXkwH5l+DLYAwXXOH
1BsGFddjTtbyZukbCu/E5lxrc/sHeQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFNTe
IQjkHJqbMcE9gVlAnbv69aUwMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82QTNCQTQ5MEUwNDUxMUVFODRBNDE4QUM3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt9QMA0GCSqGSIb3DQEB
CwUAA4IBAQBkqaaoWY5v7ziFCQjSKCbEuXfBQlr871KJX0L5+CU9gBDiE7N5BAHh
+j3Qn0H5Nf6/D7aga4lOEQBobJ7UVDZCHNPaXiEpnlK5zLxuMgxqCCS3NDt9pxB+
HrzPaYEJxbDk2ybtMEXDLQNqHsScvB/PjO6Wj7uruiCa7SqeJ0C/CZ32onx/qH4F
jJc2g97gEwZUCuyZ+kbWd7r1yjlFfbaa+NjJX+Jj7XHh789iOuInt9rPl+EH8wKM
BqWVFz8AV9PS6ep1XGI4d+2krkTqwk2BfceHUg+db+HHCUdwwi7okNkHSYCMB6QH
DtkrruzouOpSvI8xMKCpU/oD6mVW+own
-----END CERTIFICATE-----
Generated at Wed May 1 13:24:57 2024 by rpki-client on console-ams.rpki-client.org