Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8A5D309EF47D11EEB8FB7EAC775412E6.roa
File: 8A5D309EF47D11EEB8FB7EAC775412E6.roa (raw, json)
Hash identifier: ZXQtAP2WFMxHJzqusmVPDrWLhTeA0SZgYmLYl4TPnD4=
Subject key identifier: 72:57:AA:F0:FC:C9:79:A7:5B:1C:9B:C0:52:6C:D1:C7:B1:C4:C9:75
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A98E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8A5D309EF47D11EEB8FB7EAC775412E6.roa
Signing time: Sun 07 Apr 2024 01:24:12 +0000
ROA not before: Sun 07 Apr 2024 01:24:09 +0000
ROA not after: Mon 13 May 2024 01:24:09 +0000
asID: 138915
IP address blocks: 154.206.88.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43406 (0xa98e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 01:24:09 2024 GMT
Not After : May 13 01:24:09 2024 GMT
Subject: CN=6611f5bc-d3ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:dc:22:66:91:80:1f:90:76:31:1f:33:0e:33:
c1:d8:43:7f:e7:66:67:17:ec:f7:bf:c7:ee:62:a1:
50:06:e3:3a:03:d8:ee:d4:fe:fc:27:f9:19:8b:a8:
44:17:04:53:27:6d:df:5b:a1:6f:0e:1b:8b:5d:52:
73:20:1b:74:19:59:6d:ee:72:e6:98:14:16:8e:96:
25:15:8f:5b:c7:4b:c0:ec:2c:d8:5e:a6:eb:7e:3d:
6f:55:f1:e3:f3:3c:67:07:b8:0c:c8:da:d2:b0:f8:
2a:e9:aa:65:62:fa:0c:23:a5:15:80:31:47:c8:9c:
c2:45:65:bd:5f:32:19:96:ad:d5:69:dc:f5:e3:5d:
7c:b0:56:3b:77:7f:3a:ee:69:ab:28:18:54:3d:ee:
66:6b:de:95:20:46:c9:dd:c5:7c:89:71:39:1c:7d:
87:b0:66:c1:2f:66:08:f4:d5:75:41:de:1f:0d:b4:
22:07:4e:59:33:bd:a7:71:f6:23:af:15:69:bb:03:
9d:17:e5:a8:7a:77:28:eb:a2:51:d2:ea:19:de:01:
d9:71:7e:58:f1:6c:1b:7e:9d:48:7d:07:63:22:07:
16:f3:75:72:12:67:c9:13:19:f5:88:e9:cb:39:fa:
92:31:80:1f:eb:6d:25:7f:bb:aa:ce:19:d2:ac:5b:
2b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:57:AA:F0:FC:C9:79:A7:5B:1C:9B:C0:52:6C:D1:C7:B1:C4:C9:75
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8A5D309EF47D11EEB8FB7EAC775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.88.0/23
Signature Algorithm: sha256WithRSAEncryption
29:a7:05:ef:3a:26:04:d8:35:fe:84:45:e5:c6:f5:27:c8:00:
12:87:94:06:38:57:7a:4a:59:a0:db:e0:db:73:60:91:e4:20:
c7:f6:07:c8:44:5b:a7:60:77:ef:39:6e:8b:66:4c:2e:bb:0a:
77:39:05:fa:e4:b2:18:34:7b:c6:e4:54:2c:a6:40:26:e4:31:
32:b4:ac:56:1e:0b:c2:0e:43:86:18:0e:e2:2f:61:23:c5:c8:
5d:8d:33:44:f2:bc:57:38:f5:ea:ab:db:e8:1b:06:e9:94:76:
88:86:25:8a:61:0e:1e:8b:36:af:de:09:91:36:db:b7:4d:4c:
84:18:ee:97:7a:37:86:22:15:72:40:89:b4:26:d0:3c:92:e0:
c8:24:1b:c5:02:d5:5a:92:78:54:15:ce:ad:ff:da:95:c2:7f:
95:c2:16:d1:0c:87:da:ec:ff:b1:10:d3:66:1e:a3:8a:8c:a4:
91:cb:40:e5:d9:c0:5e:a4:a4:a7:6a:95:eb:7e:14:0a:7d:f0:
24:d9:8a:2f:b7:06:84:b3:7b:ea:f7:db:7d:66:6c:81:3a:6b:
22:32:14:43:12:c6:a5:0e:13:e3:05:cc:49:20:a0:e1:ed:27:
e1:9e:d1:ed:d7:af:cc:1f:ad:75:24:8d:4b:0e:73:b2:1e:27:
c4:32:e9:91
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKmOMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDA3MDEyNDA5WhcNMjQwNTEzMDEyNDA5WjAYMRYw
FAYDVQQDEw02NjExZjViYy1kM2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAstwiZpGAH5B2MR8zDjPB2EN/52ZnF+z3v8fuYqFQBuM6A9ju1P78J/kZ
i6hEFwRTJ23fW6FvDhuLXVJzIBt0GVlt7nLmmBQWjpYlFY9bx0vA7CzYXqbrfj1v
VfHj8zxnB7gMyNrSsPgq6aplYvoMI6UVgDFHyJzCRWW9XzIZlq3Vadz14118sFY7
d3867mmrKBhUPe5ma96VIEbJ3cV8iXE5HH2HsGbBL2YI9NV1Qd4fDbQiB05ZM72n
cfYjrxVpuwOdF+Woenco66JR0uoZ3gHZcX5Y8Wwbfp1IfQdjIgcW83VyEmfJExn1
iOnLOfqSMYAf620lf7uqzhnSrFsrMQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHJX
qvD8yXmnWxybwFJs0cexxMl1MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84QTVEMzA5RUY0N0QxMUVFQjhGQjdFQUM3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBms5YMA0GCSqGSIb3DQEB
CwUAA4IBAQAppwXvOiYE2DX+hEXlxvUnyAASh5QGOFd6Slmg2+Dbc2CR5CDH9gfI
RFunYHfvOW6LZkwuuwp3OQX65LIYNHvG5FQspkAm5DEytKxWHgvCDkOGGA7iL2Ej
xchdjTNE8rxXOPXqq9voGwbplHaIhiWKYQ4eizav3gmRNtu3TUyEGO6XejeGIhVy
QIm0JtA8kuDIJBvFAtVaknhUFc6t/9qVwn+VwhbRDIfa7P+xENNmHqOKjKSRy0Dl
2cBepKSnapXrfhQKffAk2YovtwaEs3vq99t9ZmyBOmsiMhRDEsalDhPjBcxJIKDh
7SfhntHt16/MH611JI1LDnOyHifEMumR
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:14 2024 by rpki-client on console-ams.rpki-client.org