Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7AF54F08E78811EEBAEB5BC6775412E6.roa
File: 7AF54F08E78811EEBAEB5BC6775412E6.roa (raw, json)
Hash identifier: U+10At2yf9w3OblAvbMstccNmxZZphVjEM5nYl7B11s=
Subject key identifier: FB:8A:5D:56:4A:98:C9:69:B7:CC:63:E6:FD:B1:87:D9:C4:47:8C:4E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A5BD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7AF54F08E78811EEBAEB5BC6775412E6.roa
Signing time: Thu 21 Mar 2024 13:39:46 +0000
ROA not before: Thu 21 Mar 2024 13:39:43 +0000
ROA not after: Tue 12 Nov 2024 13:39:43 +0000
asID: 9465
IP address blocks: 154.212.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42429 (0xa5bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 13:39:43 2024 GMT
Not After : Nov 12 13:39:43 2024 GMT
Subject: CN=65fc38a2-a633
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e6:da:d4:ca:5e:34:f8:a2:66:e0:5b:e0:9e:
40:90:9b:70:f7:d8:a3:8c:8f:bd:36:10:cd:d5:74:
0e:26:72:ed:cf:0f:8c:bd:45:ae:7f:f9:5d:23:90:
39:cc:e3:b3:38:14:75:66:e3:f1:34:51:44:ff:4e:
e8:0c:7f:6a:ba:20:c8:f3:b6:7c:3e:ed:9b:c0:5c:
44:7a:e3:77:89:43:70:61:b2:0f:09:23:a3:46:d0:
20:59:45:44:ee:64:52:46:42:a3:6b:a9:23:63:b3:
77:34:95:6c:3c:d8:ea:db:15:2e:e7:0f:97:4d:fc:
00:7b:15:57:1b:3c:88:5b:5a:9c:0f:51:f3:70:1a:
c9:07:f2:28:b9:af:42:af:23:aa:ab:06:99:42:16:
fe:89:fe:88:39:c8:a0:db:31:9d:66:60:1a:d0:bd:
02:7c:1e:40:48:83:5a:66:57:ab:c1:7b:3f:ac:6b:
49:32:49:9f:ed:6c:59:33:1b:15:55:54:61:72:a5:
33:c4:a9:a0:90:8b:07:d5:e3:26:69:42:91:86:15:
93:c9:5f:f3:20:7f:70:b3:64:e7:61:db:b1:d0:08:
69:97:39:46:69:0a:b7:be:46:98:42:ee:f8:8b:16:
7b:aa:0a:67:28:41:9d:2c:61:04:40:f3:01:3a:f7:
90:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:8A:5D:56:4A:98:C9:69:B7:CC:63:E6:FD:B1:87:D9:C4:47:8C:4E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7AF54F08E78811EEBAEB5BC6775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.141.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:c2:13:c5:1a:2b:bf:d2:06:45:03:e4:61:e3:16:70:f4:21:
34:dd:78:e9:54:38:cf:f1:77:d3:49:ac:87:b0:b6:84:5e:0c:
6b:e1:a9:72:65:55:2e:34:70:fb:08:bb:6e:6d:ad:9a:c5:f8:
ca:9b:46:61:72:3a:ad:b3:30:a9:63:b5:1c:3f:d0:d9:13:23:
46:1a:9c:da:b7:b0:94:bf:32:50:86:7d:b8:25:e9:f8:60:9a:
57:3f:c0:c5:50:d0:0d:82:70:be:43:bb:d2:6b:e9:ca:d4:d7:
48:03:db:55:5e:93:1b:1f:72:fc:e1:5a:9e:18:ca:93:9b:ad:
e9:40:c2:e0:cb:66:3e:85:51:9c:48:20:c5:f4:c5:bb:15:81:
cc:3e:64:0b:50:df:90:5c:8e:8f:c2:f7:99:c2:ae:7d:de:f7:
65:d2:96:d4:b7:dc:65:64:69:ba:ac:e8:66:dc:3b:78:d1:2e:
c0:90:45:15:69:f3:27:e0:a5:fc:88:d9:f9:4f:d3:bb:b6:e1:
09:f2:3c:74:29:a4:b2:0b:ff:6c:fb:8f:3a:0d:18:87:d0:0a:
80:83:80:9e:a8:25:32:7a:0a:8e:f8:7a:db:59:ec:12:83:5a:
be:f9:e0:2a:8b:00:1b:b7:5f:5b:bb:ea:ea:22:6d:e4:22:06:
be:bd:b4:33
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKW9MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMTMzOTQzWhcNMjQxMTEyMTMzOTQzWjAYMRYw
FAYDVQQDEw02NWZjMzhhMi1hNjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAnuba1MpeNPiiZuBb4J5AkJtw99ijjI+9NhDN1XQOJnLtzw+MvUWuf/ld
I5A5zOOzOBR1ZuPxNFFE/07oDH9quiDI87Z8Pu2bwFxEeuN3iUNwYbIPCSOjRtAg
WUVE7mRSRkKja6kjY7N3NJVsPNjq2xUu5w+XTfwAexVXGzyIW1qcD1HzcBrJB/Io
ua9CryOqqwaZQhb+if6IOcig2zGdZmAa0L0CfB5ASINaZlerwXs/rGtJMkmf7WxZ
MxsVVVRhcqUzxKmgkIsH1eMmaUKRhhWTyV/zIH9ws2TnYdux0AhplzlGaQq3vkaY
Qu74ixZ7qgpnKEGdLGEEQPMBOveQewIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPuK
XVZKmMlpt8xj5v2xh9nER4xOMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83QUY1NEYwOEU3ODgxMUVFQkFFQjVCQzY3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtSNMA0GCSqGSIb3DQEB
CwUAA4IBAQB8whPFGiu/0gZFA+Rh4xZw9CE03XjpVDjP8XfTSayHsLaEXgxr4aly
ZVUuNHD7CLtuba2axfjKm0ZhcjqtszCpY7UcP9DZEyNGGpzat7CUvzJQhn24Jen4
YJpXP8DFUNANgnC+Q7vSa+nK1NdIA9tVXpMbH3L84VqeGMqTm63pQMLgy2Y+hVGc
SCDF9MW7FYHMPmQLUN+QXI6PwveZwq593vdl0pbUt9xlZGm6rOhm3Dt40S7AkEUV
afMn4KX8iNn5T9O7tuEJ8jx0KaSyC/9s+486DRiH0AqAg4CeqCUyegqO+HrbWewS
g1q++eAqiwAbt19bu+rqIm3kIga+vbQz
-----END CERTIFICATE-----
Generated at Fri May 3 01:29:58 2024 by rpki-client on console-fra.rpki-client.org