Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/780E839AE73D11EE9660D87C775412E6.roa
File: 780E839AE73D11EE9660D87C775412E6.roa (raw, json)
Hash identifier: IekwGrZIj7LyIO387Z7WG0ZpqhxKT3r8qXlvXeINGQY=
Subject key identifier: 26:34:0C:A9:0A:83:6D:D9:64:0B:41:67:40:83:18:2B:88:E7:D0:94
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A3B2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/780E839AE73D11EE9660D87C775412E6.roa
Signing time: Thu 21 Mar 2024 04:42:49 +0000
ROA not before: Thu 21 Mar 2024 04:42:45 +0000
ROA not after: Tue 23 Apr 2024 04:42:45 +0000
asID: 44559
IP address blocks: 154.221.224.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41906 (0xa3b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 04:42:45 2024 GMT
Not After : Apr 23 04:42:45 2024 GMT
Subject: CN=65fbbac9-80c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:78:55:76:d7:f3:e0:de:39:e5:5c:8d:81:e9:
db:a0:ff:ad:d2:55:b1:06:5a:7c:95:bc:52:9d:73:
46:6e:78:ae:8b:93:39:f5:b7:a1:45:02:81:42:96:
ab:97:5b:5e:97:89:8f:e5:52:ff:74:e9:82:82:97:
90:fc:47:18:a1:90:7c:3d:97:d3:51:29:34:8a:fe:
a6:29:42:3c:72:39:b7:3b:82:b9:f9:cd:fe:34:ff:
76:b4:02:09:17:8f:e0:11:4e:31:bc:f7:97:e6:cf:
de:e0:46:3f:cc:d1:91:38:66:a7:64:5f:ac:38:5f:
54:55:d9:a3:3e:e1:77:b8:73:4e:20:11:bd:ea:dd:
1f:d6:8a:e3:c4:0d:21:a0:74:c9:c3:7a:e0:65:d9:
a5:4c:c5:b6:38:bf:9b:48:6e:90:8b:bc:a9:fe:95:
ca:ec:fa:c9:91:06:f5:ff:6e:1d:95:f8:39:f1:29:
60:60:3c:f5:1e:49:68:dc:70:30:27:0f:d3:29:e9:
3e:96:74:10:45:8a:af:fe:d9:a0:41:f1:3c:31:a6:
8f:d9:22:dc:ae:5b:22:48:6c:81:26:ec:0b:05:ba:
42:41:c8:3a:f9:70:ae:ba:44:9a:16:eb:4f:95:22:
f6:e4:a8:c6:33:d2:6a:ad:59:61:39:b8:88:d3:9f:
e8:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:34:0C:A9:0A:83:6D:D9:64:0B:41:67:40:83:18:2B:88:E7:D0:94
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/780E839AE73D11EE9660D87C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.224.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:7a:1e:f9:9d:91:e7:76:4e:21:74:83:6a:a4:9b:de:9c:29:
a2:94:fb:f7:1b:6c:46:d1:d7:a1:44:7e:3c:83:9b:e4:af:ee:
69:65:08:82:d8:e2:74:32:da:67:5f:c8:6c:8d:18:2e:e9:e2:
01:dc:10:96:c9:50:83:e6:7b:b7:ca:00:ba:11:27:3d:64:ab:
4b:16:18:d4:44:57:fc:cb:bd:07:4c:40:d2:72:56:b2:7d:c1:
ff:b4:9d:84:52:2b:16:c7:50:7e:b4:6f:a2:60:00:ba:7f:97:
59:d0:07:c8:5b:2a:7d:ca:1c:8c:0c:13:56:43:85:53:9c:e4:
a7:e1:cf:61:f5:78:7d:2b:4d:42:38:d3:71:c8:bf:37:b5:fc:
fd:5c:61:a8:01:f7:a1:cf:22:23:38:91:81:7b:9f:ee:f4:ef:
c6:0a:d3:18:b5:14:2b:05:50:59:31:e4:4b:41:b9:a8:49:57:
87:ee:2a:e9:56:27:ca:a6:84:0c:dc:4d:38:b4:de:1a:8c:95:
9b:f0:7d:03:6d:e3:7a:41:68:46:7c:1d:98:4d:2f:d4:fe:b6:
e2:6f:1d:bf:72:ad:74:51:d7:b2:4c:1e:45:c2:9c:74:ad:2a:
5e:cd:ae:04:64:a4:96:dd:ee:5b:fd:6d:62:df:8c:57:9c:0f:
46:61:70:e0
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKOyMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMDQ0MjQ1WhcNMjQwNDIzMDQ0MjQ1WjAYMRYw
FAYDVQQDEw02NWZiYmFjOS04MGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzHhVdtfz4N455VyNgenboP+t0lWxBlp8lbxSnXNGbniui5M59behRQKB
Qparl1tel4mP5VL/dOmCgpeQ/EcYoZB8PZfTUSk0iv6mKUI8cjm3O4K5+c3+NP92
tAIJF4/gEU4xvPeX5s/e4EY/zNGROGanZF+sOF9UVdmjPuF3uHNOIBG96t0f1orj
xA0hoHTJw3rgZdmlTMW2OL+bSG6Qi7yp/pXK7PrJkQb1/24dlfg58SlgYDz1Hklo
3HAwJw/TKek+lnQQRYqv/tmgQfE8MaaP2SLcrlsiSGyBJuwLBbpCQcg6+XCuukSa
FutPlSL25KjGM9JqrVlhObiI05/oNQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCY0
DKkKg23ZZAtBZ0CDGCuI59CUMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83ODBFODM5QUU3M0QxMUVFOTY2MEQ4N0M3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt3gMA0GCSqGSIb3DQEB
CwUAA4IBAQDWeh75nZHndk4hdINqpJvenCmilPv3G2xG0dehRH48g5vkr+5pZQiC
2OJ0MtpnX8hsjRgu6eIB3BCWyVCD5nu3ygC6ESc9ZKtLFhjURFf8y70HTEDSclay
fcH/tJ2EUisWx1B+tG+iYAC6f5dZ0AfIWyp9yhyMDBNWQ4VTnOSn4c9h9Xh9K01C
ONNxyL83tfz9XGGoAfehzyIjOJGBe5/u9O/GCtMYtRQrBVBZMeRLQbmoSVeH7irp
VifKpoQM3E04tN4ajJWb8H0DbeN6QWhGfB2YTS/U/rbibx2/cq10UdeyTB5Fwpx0
rSpeza4EZKSW3e5b/W1i34xXnA9GYXDg
-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:23 2024 by rpki-client on console-ams.rpki-client.org