Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/756D24ECE77A11EEB7123D5A775412E6.roa
File: 756D24ECE77A11EEB7123D5A775412E6.roa (raw, json)
Hash identifier: +vRXnKukeYbCaaOoaBqxZUiB1KVF99sPa6qCkwDH+Ok=
Subject key identifier: 17:D0:5D:97:D8:12:FE:E9:03:79:0B:0F:87:E4:91:41:DC:AA:49:79
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A541
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/756D24ECE77A11EEB7123D5A775412E6.roa
Signing time: Thu 21 Mar 2024 11:59:24 +0000
ROA not before: Thu 21 Mar 2024 11:59:20 +0000
ROA not after: Tue 23 Apr 2024 11:59:20 +0000
asID: 44559
IP address blocks: 154.210.124.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42305 (0xa541)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 11:59:20 2024 GMT
Not After : Apr 23 11:59:20 2024 GMT
Subject: CN=65fc211c-7c02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:eb:46:9b:2e:4b:9a:43:0c:c1:cc:d9:c1:d8:
eb:fe:a2:77:32:5e:39:3b:ee:92:bb:78:d1:36:78:
db:1e:b6:7d:67:a4:83:16:df:58:a6:4d:ab:68:0c:
47:f8:0b:3e:55:38:87:9c:0d:b5:75:fd:b8:10:51:
67:02:33:f1:34:3c:07:e6:74:3d:26:d8:d5:14:84:
1b:72:7e:31:94:e3:50:bc:cd:d0:82:2c:0f:71:fd:
72:31:fe:00:2d:d5:7a:e8:d1:56:92:8e:bc:f3:c0:
92:26:c9:0f:e4:04:dc:d7:84:f9:b0:b8:bf:85:26:
7f:2f:fd:27:b3:00:bb:2e:54:9f:55:6c:c4:0f:c7:
7d:8a:a5:af:a0:3e:0f:f7:b5:53:3e:53:36:77:2c:
92:fa:5b:21:91:3f:08:05:be:cb:59:c7:3e:3f:ec:
24:94:ce:d0:7d:54:9f:a0:91:68:fc:a3:71:84:ab:
e1:d9:47:1d:bc:66:9d:3a:13:23:34:84:d9:aa:80:
7e:20:9a:c0:85:f3:2f:4a:9e:27:29:3a:23:0e:3e:
f5:6a:6d:18:31:4d:9f:6d:80:d7:6e:ce:d4:e2:05:
07:f8:b5:25:ef:2f:8f:80:08:94:83:d4:ba:1d:77:
a0:74:b4:1a:19:f6:6c:e6:e8:73:98:1d:a3:6a:61:
6d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:D0:5D:97:D8:12:FE:E9:03:79:0B:0F:87:E4:91:41:DC:AA:49:79
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/756D24ECE77A11EEB7123D5A775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.124.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:23:03:1f:ef:50:17:fa:2c:6e:bb:86:f7:88:18:ea:48:3e:
63:b0:ab:e2:79:90:39:84:33:72:8d:d7:19:6c:d9:eb:0e:8a:
ce:d1:b8:8a:1d:b5:95:fa:38:eb:a8:c4:2c:04:01:83:c0:88:
79:37:87:21:2f:02:ef:b8:a3:d0:da:fa:95:15:78:69:22:25:
c8:57:3e:e6:51:c1:95:8e:a5:de:52:1d:ee:9d:14:a0:01:54:
8f:c1:1d:0e:aa:99:e3:be:c6:4c:e4:e5:70:68:e3:6a:ef:f4:
6e:49:a0:47:89:2f:b3:20:2b:43:8f:fe:6f:f4:be:3d:db:cd:
c1:50:39:aa:01:f0:2a:8c:92:ea:69:14:2c:f1:04:d4:56:fb:
ef:2f:9b:1e:e5:a9:22:c4:a8:99:8e:75:2e:12:32:ed:99:fc:
6f:a9:c3:84:ac:80:69:38:1c:30:45:22:dc:11:11:7c:c7:5f:
33:ad:38:0a:18:26:9f:d2:2e:93:44:39:ba:a4:c5:a3:33:43:
04:32:f4:1d:c1:7e:64:37:7c:52:67:70:d0:df:1e:c7:ba:9d:
a4:30:71:24:23:e0:07:e5:1b:50:52:b7:d4:4a:47:75:f2:39:
2d:cd:22:2b:97:60:e2:b3:df:99:70:77:41:f8:41:e3:ca:9d:
a2:76:b4:37
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKVBMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMTE1OTIwWhcNMjQwNDIzMTE1OTIwWjAYMRYw
FAYDVQQDEw02NWZjMjExYy03YzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEApetGmy5LmkMMwczZwdjr/qJ3Ml45O+6Su3jRNnjbHrZ9Z6SDFt9Ypk2r
aAxH+As+VTiHnA21df24EFFnAjPxNDwH5nQ9JtjVFIQbcn4xlONQvM3QgiwPcf1y
Mf4ALdV66NFWko6888CSJskP5ATc14T5sLi/hSZ/L/0nswC7LlSfVWzED8d9iqWv
oD4P97VTPlM2dyyS+lshkT8IBb7LWcc+P+wklM7QfVSfoJFo/KNxhKvh2UcdvGad
OhMjNITZqoB+IJrAhfMvSp4nKTojDj71am0YMU2fbYDXbs7U4gUH+LUl7y+PgAiU
g9S6HXegdLQaGfZs5uhzmB2jamFtiwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFBfQ
XZfYEv7pA3kLD4fkkUHcqkl5MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83NTZEMjRFQ0U3N0ExMUVFQjcxMjNENUE3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtJ8MA0GCSqGSIb3DQEB
CwUAA4IBAQBOIwMf71AX+ixuu4b3iBjqSD5jsKvieZA5hDNyjdcZbNnrDorO0biK
HbWV+jjrqMQsBAGDwIh5N4chLwLvuKPQ2vqVFXhpIiXIVz7mUcGVjqXeUh3unRSg
AVSPwR0OqpnjvsZM5OVwaONq7/RuSaBHiS+zICtDj/5v9L49283BUDmqAfAqjJLq
aRQs8QTUVvvvL5se5akixKiZjnUuEjLtmfxvqcOErIBpOBwwRSLcERF8x18zrTgK
GCaf0i6TRDm6pMWjM0MEMvQdwX5kN3xSZ3DQ3x7Hup2kMHEkI+AH5RtQUrfUSkd1
8jktzSIrl2Dis9+ZcHdB+EHjyp2idrQ3
-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:21 2024 by rpki-client on console-fra.rpki-client.org