Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/85F84BF6E75311EE813F85A9775412E6.roa
File: 85F84BF6E75311EE813F85A9775412E6.roa (raw, json)
Hash identifier: f97etEZKscld9mWuaLATOi3GJAixgC/EXoiWVN7tuko=
Subject key identifier: AC:F2:6C:DF:08:53:5F:1D:32:EF:37:23:08:A0:FB:EC:08:F0:C5:DC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A489
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/85F84BF6E75311EE813F85A9775412E6.roa
Signing time: Thu 21 Mar 2024 07:20:41 +0000
ROA not before: Thu 21 Mar 2024 07:20:38 +0000
ROA not after: Tue 23 Apr 2024 07:20:38 +0000
asID: 44559
IP address blocks: 154.218.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42121 (0xa489)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 07:20:38 2024 GMT
Not After : Apr 23 07:20:38 2024 GMT
Subject: CN=65fbdfc9-6098
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b8:4d:11:2e:ff:0e:f2:82:a3:64:10:a0:99:
2b:29:3c:09:9c:b3:c6:2f:7e:71:d8:5d:4a:d0:4f:
44:57:41:38:3e:74:de:29:17:0d:b6:d4:8a:9b:5c:
2a:60:3b:82:57:f1:1d:81:99:f7:2c:da:f3:2c:ee:
7b:a0:0a:2e:8a:a4:8a:9e:f6:c1:32:56:18:57:59:
cc:a6:83:bc:d5:ed:78:71:e5:72:ce:2b:aa:b3:1a:
57:14:0b:30:e5:c6:d9:05:e8:03:d6:bb:a5:5c:ae:
94:4e:98:d5:60:bc:2d:34:77:64:63:b7:fc:e2:82:
01:67:e7:c2:50:98:28:ef:e3:4c:77:d9:e1:9e:64:
90:13:fb:f0:70:1b:24:e9:f9:57:c2:82:96:b2:5d:
7c:e2:b9:bb:73:4d:95:f3:18:3a:d9:a2:63:ed:5f:
d4:2a:0a:c1:20:db:18:ac:ce:46:22:04:23:7a:19:
60:b9:00:3f:22:2b:8d:0d:dc:75:76:3a:fb:9c:cc:
32:57:fe:b4:3d:e5:91:ff:70:5c:f6:b4:15:80:da:
ea:16:ce:46:fd:c6:17:3e:3c:73:da:6d:db:ea:dd:
1a:8c:45:8a:e7:7a:fb:7e:8e:85:63:39:ac:75:02:
71:a8:e2:71:64:20:78:73:52:fe:67:4d:e0:7b:cf:
5e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:F2:6C:DF:08:53:5F:1D:32:EF:37:23:08:A0:FB:EC:08:F0:C5:DC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/85F84BF6E75311EE813F85A9775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.52.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:ea:9b:38:d9:a4:09:bc:6f:06:ad:fb:9d:6f:2a:66:1a:bb:
c5:65:9e:d3:71:ac:fe:a2:e7:2e:cb:3a:a2:54:f9:0e:bf:a1:
1f:c0:d2:b3:d3:df:0d:ee:e5:01:d8:12:08:58:25:2c:b3:35:
f6:ce:ab:23:73:55:1a:af:12:28:70:29:50:e9:b4:6c:e0:08:
dd:7a:1c:88:b2:ab:bb:72:7c:70:cd:f6:0c:3c:83:79:5e:86:
71:88:01:7c:37:80:f7:b8:de:cd:0d:0b:14:75:bf:f4:d2:d4:
2a:ca:31:be:78:4f:e1:29:c3:22:47:bf:b6:e4:9d:5a:56:1d:
64:3a:ca:a8:c7:23:29:b9:e1:7a:8e:91:81:55:5a:67:c3:81:
cc:12:db:df:54:93:a1:69:4a:32:68:39:98:4f:51:04:16:b8:
0b:d6:63:77:d1:af:a0:be:a5:38:d2:17:a2:91:59:ea:70:7a:
16:63:82:13:38:09:29:b3:2d:e6:1f:b5:ed:5c:62:a8:90:1a:
91:41:b8:cd:81:50:d8:d5:40:d5:18:e0:b9:b5:b2:86:19:e6:
75:bf:0f:0e:da:84:73:7a:20:ab:78:46:72:59:a1:c7:f4:34:
2b:ca:48:8f:0d:58:1d:92:3c:4d:f2:0d:d7:4e:6f:ec:b7:85:
1e:3e:13:86
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKSJMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMDcyMDM4WhcNMjQwNDIzMDcyMDM4WjAYMRYw
FAYDVQQDEw02NWZiZGZjOS02MDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqLhNES7/DvKCo2QQoJkrKTwJnLPGL35x2F1K0E9EV0E4PnTeKRcNttSK
m1wqYDuCV/EdgZn3LNrzLO57oAouiqSKnvbBMlYYV1nMpoO81e14ceVyziuqsxpX
FAsw5cbZBegD1rulXK6UTpjVYLwtNHdkY7f84oIBZ+fCUJgo7+NMd9nhnmSQE/vw
cBsk6flXwoKWsl184rm7c02V8xg62aJj7V/UKgrBINsYrM5GIgQjehlguQA/IiuN
Ddx1djr7nMwyV/60PeWR/3Bc9rQVgNrqFs5G/cYXPjxz2m3b6t0ajEWK53r7fo6F
YzmsdQJxqOJxZCB4c1L+Z03ge89eUwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFKzy
bN8IU18dMu83Iwig++wI8MXcMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84NUY4NEJGNkU3NTMxMUVFODEzRjg1QTk3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmto0MA0GCSqGSIb3DQEB
CwUAA4IBAQCr6ps42aQJvG8GrfudbypmGrvFZZ7Tcaz+oucuyzqiVPkOv6EfwNKz
098N7uUB2BIIWCUsszX2zqsjc1UarxIocClQ6bRs4AjdehyIsqu7cnxwzfYMPIN5
XoZxiAF8N4D3uN7NDQsUdb/00tQqyjG+eE/hKcMiR7+25J1aVh1kOsqoxyMpueF6
jpGBVVpnw4HMEtvfVJOhaUoyaDmYT1EEFrgL1mN30a+gvqU40heikVnqcHoWY4IT
OAkpsy3mH7XtXGKokBqRQbjNgVDY1UDVGOC5tbKGGeZ1vw8O2oRzeiCreEZyWaHH
9DQrykiPDVgdkjxN8g3XTm/st4UePhOG
-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:24 2024 by rpki-client on console-ams.rpki-client.org