Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72D8C32482B911EEB2587D2D4AD9E6FC.roa
File: 72D8C32482B911EEB2587D2D4AD9E6FC.roa (raw, json)
Hash identifier: yMdulgpH9EbOG12EzR5FiAkNQno7PQvEDP+Uf6QGous=
Subject key identifier: 63:40:58:EC:07:53:6E:65:4D:10:C5:F4:2B:78:A6:70:2D:38:B0:1D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4FD2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72D8C32482B911EEB2587D2D4AD9E6FC.roa
Signing time: Tue 14 Nov 2023 06:45:50 +0000
ROA not before: Tue 14 Nov 2023 06:45:47 +0000
ROA not after: Tue 12 Nov 2024 06:45:47 +0000
asID: 397630
IP address blocks: 154.202.120.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20434 (0x4fd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 06:45:47 2023 GMT
Not After : Nov 12 06:45:47 2024 GMT
Subject: CN=6553179e-7d02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f1:5c:f0:01:d0:87:65:b9:bc:a3:af:af:28:
91:1b:13:d6:b9:6b:86:6b:81:d5:06:02:2c:a7:bb:
ba:e9:12:47:a1:ed:ce:91:a7:1f:7d:99:e3:08:70:
c8:5d:bf:d6:eb:8b:32:ba:3c:c0:d7:85:27:b1:56:
f3:a4:0a:35:b9:60:0e:75:88:a0:d8:54:b4:1d:0e:
60:11:ba:15:e4:f9:ba:8f:48:e2:60:f3:83:98:f0:
36:68:c6:f8:b9:8b:1b:1a:ed:dc:b0:94:45:1f:fb:
89:f8:2a:3b:4e:97:fa:ac:16:6a:3a:d4:bb:9c:96:
05:a4:fd:08:84:da:ed:00:a2:f3:e7:24:1f:66:a6:
b6:cf:d4:a6:be:c6:0e:da:44:4b:03:76:67:33:41:
32:29:63:ab:64:66:ca:62:fb:49:96:b3:0e:90:66:
4b:a0:0a:ae:ce:a9:8c:d2:1e:7f:d6:71:09:b3:d3:
29:2e:23:18:e2:5e:81:60:22:92:d8:cb:ec:25:fe:
09:f9:b6:b1:70:ad:a3:fa:c5:e5:c0:1b:e2:c9:a0:
99:13:40:d9:26:3e:8d:cb:0f:bd:97:38:e5:b6:84:
47:a9:6d:a4:5e:9a:da:f0:44:8b:c0:ec:4c:18:1f:
99:0a:eb:ac:71:b9:bd:41:7d:de:07:40:e1:2d:8e:
b6:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:40:58:EC:07:53:6E:65:4D:10:C5:F4:2B:78:A6:70:2D:38:B0:1D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72D8C32482B911EEB2587D2D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.120.0/24
Signature Algorithm: sha256WithRSAEncryption
78:7b:14:42:dc:76:54:79:45:a2:92:9d:a8:0c:ae:4f:ec:09:
35:9b:43:cb:15:32:99:df:06:cd:71:59:10:6d:02:4b:56:c2:
d9:e8:f3:37:00:08:f8:63:dd:05:9a:8d:31:42:92:9d:46:10:
dd:96:e2:67:a6:51:45:ed:c4:20:c0:8e:a7:d9:c8:53:5f:6f:
b8:18:d9:35:84:5a:a0:5c:73:75:1a:c8:85:1b:b9:21:79:ea:
e4:6c:a0:7b:1c:4d:24:e5:e3:88:fc:27:0f:f0:03:ce:40:50:
82:63:3b:34:b5:44:18:fb:69:97:2a:c5:14:1e:16:c9:ff:bf:
d0:9a:3e:4d:65:ff:9d:42:a6:f2:be:fa:0d:3e:06:cc:df:7e:
97:47:79:64:fa:1b:a8:0b:34:b4:15:19:90:34:2c:4d:8e:aa:
95:b0:19:e6:b0:ca:33:06:a3:1f:a2:84:cc:b1:14:7d:71:72:
53:39:66:c2:c0:68:30:64:89:ca:97:b2:e1:2b:b1:8f:14:7d:
2e:59:2b:6a:8c:6b:e2:07:80:57:47:8c:3e:3e:ff:09:15:2c:
d8:04:23:d0:71:8f:7e:e9:48:1c:dd:fb:51:5f:fd:10:80:75:
6c:be:03:0a:93:09:be:df:4d:c8:d5:1c:57:9c:c2:f4:ca:1d:
aa:af:42:58
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICT9IwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzExMTQwNjQ1NDdaFw0yNDExMTIwNjQ1NDdaMBgxFjAU
BgNVBAMTDTY1NTMxNzllLTdkMDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC68VzwAdCHZbm8o6+vKJEbE9a5a4ZrgdUGAiynu7rpEkeh7c6Rpx99meMI
cMhdv9brizK6PMDXhSexVvOkCjW5YA51iKDYVLQdDmARuhXk+bqPSOJg84OY8DZo
xvi5ixsa7dywlEUf+4n4KjtOl/qsFmo61LuclgWk/QiE2u0AovPnJB9mprbP1Ka+
xg7aREsDdmczQTIpY6tkZspi+0mWsw6QZkugCq7OqYzSHn/WcQmz0ykuIxjiXoFg
IpLYy+wl/gn5trFwraP6xeXAG+LJoJkTQNkmPo3LD72XOOW2hEepbaRemtrwRIvA
7EwYH5kK66xxub1Bfd4HQOEtjrbXAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUY0BY
7AdTbmVNEMX0K3imcC04sB0wHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzcyRDhDMzI0ODJCOTExRUVCMjU4N0QyRDRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACayngwDQYJKoZIhvcNAQEL
BQADggEBAHh7FELcdlR5RaKSnagMrk/sCTWbQ8sVMpnfBs1xWRBtAktWwtno8zcA
CPhj3QWajTFCkp1GEN2W4memUUXtxCDAjqfZyFNfb7gY2TWEWqBcc3UayIUbuSF5
6uRsoHscTSTl44j8Jw/wA85AUIJjOzS1RBj7aZcqxRQeFsn/v9CaPk1l/51CpvK+
+g0+BszffpdHeWT6G6gLNLQVGZA0LE2OqpWwGeawyjMGox+ihMyxFH1xclM5ZsLA
aDBkicqXsuErsY8UfS5ZK2qMa+IHgFdHjD4+/wkVLNgEI9Bxj37pSBzd+1Ff/RCA
dWy+AwqTCb7fTcjVHFecwvTKHaqvQlg=
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:12 2024 by rpki-client on console-ams.rpki-client.org