Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/83E881B6F01111EEB5AE9692775412E6.roa
File: 83E881B6F01111EEB5AE9692775412E6.roa (raw, json)
Hash identifier: W1nSRAj9UIi8zRwo0ytNpTOs/6IuoJMcD9Yd4YFh4Y8=
Subject key identifier: 8E:6E:44:6B:32:AB:42:4E:7F:91:17:E6:19:FB:EA:92:63:4A:96:82
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A88E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/83E881B6F01111EEB5AE9692775412E6.roa
Signing time: Mon 01 Apr 2024 10:20:51 +0000
ROA not before: Mon 01 Apr 2024 10:20:48 +0000
ROA not after: Sat 11 May 2024 10:20:48 +0000
asID: 63139
IP address blocks: 154.203.160.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43150 (0xa88e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 10:20:48 2024 GMT
Not After : May 11 10:20:48 2024 GMT
Subject: CN=660a8a83-21cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:95:6e:86:a6:17:62:e5:39:48:0b:7c:a1:2b:
94:a7:c0:90:42:ed:c0:45:11:cd:ce:96:12:95:9c:
a4:c3:df:1b:ef:72:15:4b:d9:c8:3b:68:60:2a:e9:
0c:df:f8:ec:03:b5:9e:34:f5:a1:86:03:41:5f:8a:
ae:8f:08:2f:31:89:b8:ca:61:36:19:a9:e3:0f:5e:
e9:a8:6b:74:60:2b:7a:7c:23:4d:b2:cb:62:76:e5:
ba:4f:1f:2c:0c:46:9d:bc:5f:c1:3e:ca:ad:ef:1c:
18:b3:b7:35:5e:52:9c:cc:7f:4a:52:e2:a5:72:72:
71:02:15:31:87:e7:9e:b8:9c:57:81:99:b9:90:62:
fd:cb:9e:8c:0a:8a:5b:f2:44:45:7a:8a:62:5c:ff:
73:e8:0e:87:9a:34:4b:fb:ab:f0:7b:5f:80:08:80:
0e:01:a9:6b:32:cf:30:f5:06:63:b3:87:d4:f2:21:
4c:96:c4:08:72:d5:09:49:4f:47:42:72:11:71:78:
49:41:58:19:35:97:7f:e9:57:29:6e:d9:9e:9a:81:
7a:4e:e8:c4:77:61:89:6d:47:85:71:91:fd:61:88:
c0:c6:2b:1b:0a:eb:f7:df:bf:e3:29:c4:ac:43:9a:
a4:49:1c:a2:ac:76:85:b8:b7:60:f1:d9:b7:95:6a:
f1:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:6E:44:6B:32:AB:42:4E:7F:91:17:E6:19:FB:EA:92:63:4A:96:82
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/83E881B6F01111EEB5AE9692775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.160.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:27:d3:86:f0:0d:db:20:69:d8:e8:32:13:86:55:d0:10:db:
0d:48:e9:30:8e:ec:5f:1c:45:2c:c4:7c:5f:d7:20:2f:eb:e1:
79:04:bf:92:8e:9f:26:60:22:ab:75:2c:11:93:df:e2:c9:8b:
60:8e:31:10:08:51:5d:ac:91:2b:8d:cb:97:38:62:86:b9:4a:
74:68:06:b8:e7:53:b6:97:57:2d:ba:ae:c8:23:0e:0f:cf:49:
38:25:26:c8:08:0b:30:81:f0:f6:d6:dc:3f:00:d9:3c:0e:4b:
c0:2f:ed:d6:bf:34:dd:3f:47:a6:18:8e:b3:03:ee:2b:0c:aa:
0e:19:37:cd:b2:01:2d:1d:a2:2c:75:82:2f:b4:13:24:27:01:
ef:4c:7a:0b:da:9b:e8:92:80:72:92:4d:74:d0:e3:18:3c:bb:
53:49:e3:08:f1:d3:c2:f8:ba:31:a0:72:df:65:21:7c:25:6b:
31:e1:f5:e0:04:52:a5:56:40:f4:4f:39:4d:28:80:72:54:09:
c3:a6:cd:4f:fc:54:be:f6:f9:82:3e:ad:a1:39:35:a2:02:90:
6d:93:1e:d5:17:9a:ad:7b:c5:ce:90:22:5d:33:12:3c:80:1f:
b7:87:05:05:cb:99:87:f8:f2:ea:a6:3a:ac:bd:4f:16:a5:4c:
aa:a6:4c:76
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKiOMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDAxMTAyMDQ4WhcNMjQwNTExMTAyMDQ4WjAYMRYw
FAYDVQQDEw02NjBhOGE4My0yMWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEApJVuhqYXYuU5SAt8oSuUp8CQQu3ARRHNzpYSlZykw98b73IVS9nIO2hg
KukM3/jsA7WeNPWhhgNBX4qujwgvMYm4ymE2GanjD17pqGt0YCt6fCNNsstiduW6
Tx8sDEadvF/BPsqt7xwYs7c1XlKczH9KUuKlcnJxAhUxh+eeuJxXgZm5kGL9y56M
Copb8kRFeopiXP9z6A6HmjRL+6vwe1+ACIAOAalrMs8w9QZjs4fU8iFMlsQIctUJ
SU9HQnIRcXhJQVgZNZd/6VcpbtmemoF6TujEd2GJbUeFcZH9YYjAxisbCuv337/j
KcSsQ5qkSRyirHaFuLdg8dm3lWrxMQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFI5u
RGsyq0JOf5EX5hn76pJjSpaCMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84M0U4ODFCNkYwMTExMUVFQjVBRTk2OTI3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsugMA0GCSqGSIb3DQEB
CwUAA4IBAQCsJ9OG8A3bIGnY6DIThlXQENsNSOkwjuxfHEUsxHxf1yAv6+F5BL+S
jp8mYCKrdSwRk9/iyYtgjjEQCFFdrJErjcuXOGKGuUp0aAa451O2l1ctuq7IIw4P
z0k4JSbICAswgfD21tw/ANk8DkvAL+3WvzTdP0emGI6zA+4rDKoOGTfNsgEtHaIs
dYIvtBMkJwHvTHoL2pvokoBykk100OMYPLtTSeMI8dPC+LoxoHLfZSF8JWsx4fXg
BFKlVkD0TzlNKIByVAnDps1P/FS+9vmCPq2hOTWiApBtkx7VF5qte8XOkCJdMxI8
gB+3hwUFy5mH+PLqpjqsvU8WpUyqpkx2
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:30 2024 by rpki-client on console-fra.rpki-client.org