Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8DAC30B4E28B11EE908ADDB1775412E6.roa
File: 8DAC30B4E28B11EE908ADDB1775412E6.roa (raw, json)
Hash identifier: A7KxVUYLgmwKNgsnAXEq725VozCrvMFH4Iz6JGjYfos=
Subject key identifier: D4:CC:9A:11:D1:2E:83:D1:1E:AE:40:9C:2C:18:FB:2C:C0:6C:23:56
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A183
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8DAC30B4E28B11EE908ADDB1775412E6.roa
Signing time: Fri 15 Mar 2024 05:19:10 +0000
ROA not before: Fri 15 Mar 2024 05:19:07 +0000
ROA not after: Fri 20 Sep 2024 05:19:07 +0000
asID: 47890
IP address blocks: 154.214.196.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41347 (0xa183)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 15 05:19:07 2024 GMT
Not After : Sep 20 05:19:07 2024 GMT
Subject: CN=65f3da4e-04b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:2b:e0:8c:67:86:4b:1d:7f:97:2c:1c:b3:a7:
2a:56:cb:57:dc:12:8a:e5:7c:fa:47:87:31:e0:03:
e2:a7:4d:12:cc:39:00:73:6b:70:fd:10:fd:7e:88:
3d:6d:37:d0:8d:84:fc:8d:82:2b:80:c9:1f:a4:b1:
af:0d:74:70:39:20:d2:59:47:da:63:7b:9a:39:c0:
f6:82:b8:67:bc:f6:57:e4:0c:f3:30:5e:78:9f:b8:
9b:b8:25:5f:a0:f7:c2:02:15:03:17:39:67:58:3e:
9c:8a:f4:f6:15:e5:75:8b:35:72:52:63:08:7a:85:
51:e8:8e:8f:e4:a9:bb:db:b3:ea:9d:ae:92:00:72:
38:cd:5a:62:4d:26:f6:df:e2:9f:4c:c1:7b:96:70:
f5:28:20:07:ac:13:92:fd:4c:dc:67:9a:e6:fa:81:
57:1c:64:bc:5f:d0:99:b0:e1:4a:6f:51:f2:f2:bf:
4f:c6:c0:56:88:60:ac:b1:17:8a:94:1d:2c:7c:a5:
82:16:84:42:44:c9:e7:6f:25:41:4c:7a:ab:f4:26:
6c:74:a3:b7:9e:10:06:02:09:86:95:7d:94:c8:5d:
98:2d:87:0b:4d:fb:01:00:ee:dc:e5:90:7b:4b:79:
7b:fa:20:f0:ae:31:08:b0:d7:82:ec:0f:a0:b6:d2:
59:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:CC:9A:11:D1:2E:83:D1:1E:AE:40:9C:2C:18:FB:2C:C0:6C:23:56
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8DAC30B4E28B11EE908ADDB1775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.196.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:76:3c:2c:a5:77:ae:2b:bf:4a:e9:34:e2:15:e0:b4:69:2f:
04:27:ff:38:e9:79:12:ee:3e:e3:2e:da:3f:8f:36:cd:09:df:
28:3e:a8:d6:c8:e5:6d:ab:ce:71:4b:e0:36:40:59:ea:45:00:
93:40:b4:73:fe:a7:1d:83:fc:a1:77:15:18:f6:22:6b:63:e4:
4f:93:89:4f:df:de:96:45:f6:08:b0:39:1b:a8:e8:99:8c:3f:
b1:13:9a:34:5d:08:6b:8e:79:3a:67:d3:f7:a3:c8:aa:ef:e4:
30:1c:93:f6:46:9d:57:be:7b:b7:e8:03:e0:35:99:72:64:92:
50:0f:99:02:26:68:fd:b8:f6:cd:81:fe:f2:67:6f:e6:2e:dd:
97:aa:a4:8e:08:01:ee:4a:49:2a:96:a9:60:3e:32:56:9d:59:
d4:2c:8b:36:76:df:6c:fd:50:92:40:81:7c:aa:8b:94:f1:b7:
d3:6c:2c:46:9c:9d:c8:eb:aa:38:12:68:55:88:0a:3e:78:c5:
e7:67:20:7f:1a:b8:ee:7f:4d:0d:6f:24:b9:bf:d0:a3:eb:1e:
6a:cd:af:71:ab:46:31:f1:74:94:25:bf:a9:52:5f:cf:de:8e:
43:a6:ed:5b:66:a0:51:df:cf:87:1c:2b:df:9d:09:de:7e:0c:
15:e3:bc:84
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKGDMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzE1MDUxOTA3WhcNMjQwOTIwMDUxOTA3WjAYMRYw
FAYDVQQDEw02NWYzZGE0ZS0wNGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtyvgjGeGSx1/lywcs6cqVstX3BKK5Xz6R4cx4APip00SzDkAc2tw/RD9
fog9bTfQjYT8jYIrgMkfpLGvDXRwOSDSWUfaY3uaOcD2grhnvPZX5AzzMF54n7ib
uCVfoPfCAhUDFzlnWD6civT2FeV1izVyUmMIeoVR6I6P5Km727Pqna6SAHI4zVpi
TSb23+KfTMF7lnD1KCAHrBOS/UzcZ5rm+oFXHGS8X9CZsOFKb1Hy8r9PxsBWiGCs
sReKlB0sfKWCFoRCRMnnbyVBTHqr9CZsdKO3nhAGAgmGlX2UyF2YLYcLTfsBAO7c
5ZB7S3l7+iDwrjEIsNeC7A+gttJZQwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFNTM
mhHRLoPRHq5AnCwY+yzAbCNWMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84REFDMzBCNEUyOEIxMUVFOTA4QUREQjE3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtbEMA0GCSqGSIb3DQEB
CwUAA4IBAQBKdjwspXeuK79K6TTiFeC0aS8EJ/846XkS7j7jLto/jzbNCd8oPqjW
yOVtq85xS+A2QFnqRQCTQLRz/qcdg/yhdxUY9iJrY+RPk4lP396WRfYIsDkbqOiZ
jD+xE5o0XQhrjnk6Z9P3o8iq7+QwHJP2Rp1Xvnu36APgNZlyZJJQD5kCJmj9uPbN
gf7yZ2/mLt2XqqSOCAHuSkkqlqlgPjJWnVnULIs2dt9s/VCSQIF8qouU8bfTbCxG
nJ3I66o4EmhViAo+eMXnZyB/Grjuf00NbyS5v9Cj6x5qza9xq0Yx8XSUJb+pUl/P
3o5Dpu1bZqBR38+HHCvfnQnefgwV47yE
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:15 2024 by rpki-client on console-ams.rpki-client.org