Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6ABB4674F47B11EEB9E2FC99775412E6.roa
File: 6ABB4674F47B11EEB9E2FC99775412E6.roa (raw, json)
Hash identifier: l4TWxZCNCOzJcm1W4vEjpFUaUoWvgaNo9xBb9I/1dSM=
Subject key identifier: 22:77:8C:B4:B7:D1:91:46:32:24:C3:5E:3D:29:A6:3E:71:E7:12:5E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A97A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6ABB4674F47B11EEB9E2FC99775412E6.roa
Signing time: Sun 07 Apr 2024 01:09:00 +0000
ROA not before: Sun 07 Apr 2024 01:08:57 +0000
ROA not after: Mon 07 Oct 2024 01:08:57 +0000
asID: 267834
IP address blocks: 154.198.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43386 (0xa97a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 01:08:57 2024 GMT
Not After : Oct 7 01:08:57 2024 GMT
Subject: CN=6611f22c-d631
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5c:b1:30:55:71:f1:f3:0c:be:ac:bc:34:9b:
3f:e8:56:2b:49:b3:08:18:f4:0d:41:9f:e4:d9:aa:
bb:b9:04:a0:d2:9c:da:1e:ce:2c:72:b6:33:59:d7:
33:4a:f6:84:32:69:c4:5f:f9:9b:f4:ce:94:a9:6c:
90:b1:39:71:52:db:b6:3e:31:2e:f7:f8:92:d7:de:
38:aa:62:75:a7:13:68:42:7d:48:53:a0:bf:6c:35:
22:9c:83:ef:6c:51:ec:7d:24:17:29:71:c2:ad:93:
31:43:5f:3a:3e:2d:00:7b:17:b3:c8:1d:7f:12:94:
8d:d2:88:b0:37:a6:00:b6:96:dd:25:1d:cb:98:58:
d2:3b:67:2a:52:03:e4:69:33:37:2e:f3:29:cf:77:
e2:74:93:3e:b9:94:ee:cd:6e:f8:47:a0:c4:83:82:
8a:af:25:a3:c3:fc:b6:a7:bc:cb:0f:c9:53:94:c6:
2e:ae:95:a5:22:f9:7e:58:2d:8e:b7:28:ec:fd:50:
73:ef:1a:27:53:0d:5b:5e:6d:e0:bb:ed:fc:ab:b8:
45:97:da:b5:96:3e:00:7e:6b:bf:99:e1:63:dc:6c:
ef:2c:e3:5c:6b:f5:f6:c8:78:02:32:cc:8e:40:6f:
48:b1:5d:f9:7e:0c:7a:94:df:f6:01:f8:1f:7d:20:
80:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:77:8C:B4:B7:D1:91:46:32:24:C3:5E:3D:29:A6:3E:71:E7:12:5E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6ABB4674F47B11EEB9E2FC99775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.62.0/24
Signature Algorithm: sha256WithRSAEncryption
34:7d:30:59:17:21:b2:aa:e6:dd:f0:8d:7b:f7:dd:12:60:82:
22:75:47:c9:63:0b:e7:bf:34:48:d8:ed:03:44:44:63:b2:43:
e5:f0:93:7f:09:b7:6f:e1:af:3d:64:c9:e4:e9:b1:f2:e3:85:
dd:44:25:36:e8:5a:57:98:92:93:b7:9c:c0:1c:7a:cb:88:0d:
58:ca:c9:c7:c3:9f:c8:14:a7:82:a1:b1:7c:69:e6:bb:b6:d8:
3a:f5:33:e8:cc:42:f4:66:a7:ed:92:cc:cb:4d:5b:81:d6:21:
ed:a5:7b:94:74:09:0e:d3:d4:e2:72:12:bb:67:ce:f5:5d:ba:
3d:06:5b:df:8e:c9:fe:ab:98:2c:88:23:30:65:42:56:e7:73:
f1:f9:2e:46:a0:95:cb:01:01:62:f9:b7:74:fc:2a:25:c8:58:
1c:70:52:f6:83:da:8e:59:1b:0f:01:ff:b1:b8:8e:68:48:9b:
00:fe:e8:a1:c6:73:19:4e:c4:14:c4:b6:bb:e0:8e:e8:02:e4:
f6:41:ed:56:db:3d:85:6e:d8:ca:7a:2e:80:ba:83:aa:fd:00:
0c:aa:cf:fc:24:e1:da:c3:14:84:0e:de:81:70:43:47:3a:01:
1a:4e:ca:7b:21:aa:15:9c:a8:a6:55:7d:b1:09:1e:df:8e:44:
d7:67:f2:82
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKl6MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDA3MDEwODU3WhcNMjQxMDA3MDEwODU3WjAYMRYw
FAYDVQQDEw02NjExZjIyYy1kNjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtFyxMFVx8fMMvqy8NJs/6FYrSbMIGPQNQZ/k2aq7uQSg0pzaHs4scrYz
WdczSvaEMmnEX/mb9M6UqWyQsTlxUtu2PjEu9/iS1944qmJ1pxNoQn1IU6C/bDUi
nIPvbFHsfSQXKXHCrZMxQ186Pi0AexezyB1/EpSN0oiwN6YAtpbdJR3LmFjSO2cq
UgPkaTM3LvMpz3fidJM+uZTuzW74R6DEg4KKryWjw/y2p7zLD8lTlMYurpWlIvl+
WC2Otyjs/VBz7xonUw1bXm3gu+38q7hFl9q1lj4Afmu/meFj3GzvLONca/X2yHgC
MsyOQG9IsV35fgx6lN/2AfgffSCAHQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCJ3
jLS30ZFGMiTDXj0ppj5x5xJeMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82QUJCNDY3NEY0N0IxMUVFQjlFMkZDOTk3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsY+MA0GCSqGSIb3DQEB
CwUAA4IBAQA0fTBZFyGyqubd8I17990SYIIidUfJYwvnvzRI2O0DRERjskPl8JN/
Cbdv4a89ZMnk6bHy44XdRCU26FpXmJKTt5zAHHrLiA1YysnHw5/IFKeCobF8aea7
ttg69TPozEL0ZqftkszLTVuB1iHtpXuUdAkO09TichK7Z871Xbo9Blvfjsn+q5gs
iCMwZUJW53Px+S5GoJXLAQFi+bd0/ColyFgccFL2g9qOWRsPAf+xuI5oSJsA/uih
xnMZTsQUxLa74I7oAuT2Qe1W2z2FbtjKei6AuoOq/QAMqs/8JOHawxSEDt6BcENH
OgEaTsp7IaoVnKimVX2xCR7fjkTXZ/KC
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:27 2024 by rpki-client on console-fra.rpki-client.org