Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F06E7AAE74611EE898D91C3775412E6.roa
File: 8F06E7AAE74611EE898D91C3775412E6.roa (raw, json)
Hash identifier: vyWMV40WfEI+d2PD9FTPsd/2b8ItaRFL/JQdzkxWXcE=
Subject key identifier: 55:51:61:FE:C6:C7:B1:64:D8:88:10:CF:51:C3:C9:BB:9B:E9:B4:C7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A40B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F06E7AAE74611EE898D91C3775412E6.roa
Signing time: Thu 21 Mar 2024 05:47:53 +0000
ROA not before: Thu 21 Mar 2024 05:47:49 +0000
ROA not after: Tue 23 Apr 2024 05:47:49 +0000
asID: 44559
IP address blocks: 154.220.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41995 (0xa40b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 05:47:49 2024 GMT
Not After : Apr 23 05:47:49 2024 GMT
Subject: CN=65fbca09-728c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8b:cb:25:de:4d:9e:b2:13:e4:a5:c9:2d:91:
ec:86:56:1b:1d:a6:62:9a:d5:86:ce:40:4c:64:da:
f4:38:2b:ef:e0:4d:f8:eb:83:00:4a:dc:d8:a8:6b:
83:22:2c:87:9e:93:99:fc:7b:6e:ad:6a:eb:a2:79:
02:e1:94:71:a4:41:b8:b1:b2:9d:53:27:2f:38:e8:
81:60:cd:88:1e:d4:24:70:a6:ed:f7:1b:38:46:e7:
12:09:c5:56:26:44:76:5c:0f:18:41:ff:3d:1f:8f:
9c:1a:8c:ce:96:ec:f1:9d:b9:d4:90:27:16:f3:fa:
90:e3:6f:13:8c:2f:ae:6b:18:19:48:af:13:0e:b1:
00:43:6f:16:a5:a0:b3:9e:f8:76:9b:21:33:cb:a1:
cb:c0:65:26:64:4c:c8:19:25:df:2c:c7:1c:5f:c7:
29:12:68:43:45:0b:4b:de:8a:0c:b0:14:aa:17:5e:
78:0f:45:04:2c:21:f2:c2:97:b1:bb:d8:92:86:15:
cd:f9:75:40:a5:18:65:a3:04:75:75:22:ef:4c:a6:
33:8a:f2:f8:8b:c2:15:4c:ca:a2:f8:de:f3:a3:a8:
1b:30:f2:57:71:27:34:15:b9:ff:76:26:9c:4c:02:
ba:be:d6:b7:c6:2c:26:da:1e:f5:28:ef:4c:4d:68:
56:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:51:61:FE:C6:C7:B1:64:D8:88:10:CF:51:C3:C9:BB:9B:E9:B4:C7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F06E7AAE74611EE898D91C3775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.179.0/24
Signature Algorithm: sha256WithRSAEncryption
52:5c:d3:3c:e0:31:dc:cc:4b:23:ec:33:59:f5:99:bf:b5:cf:
92:0f:ff:af:0e:71:90:e5:4b:33:2f:7b:0a:0b:06:45:d0:ed:
2e:98:1d:ab:38:6d:a4:77:22:0f:ba:c7:12:3e:f7:8a:3a:4d:
e1:0e:2b:55:2a:3f:c3:40:24:c6:b2:57:68:eb:11:9c:af:47:
6d:ac:91:f0:26:61:9a:22:44:40:c8:da:ce:c9:3d:c5:4a:6b:
f5:67:8b:29:df:0b:ec:3a:29:0f:87:58:87:08:c6:28:c5:a3:
41:6b:81:3c:df:9b:30:d9:ee:2f:db:45:27:ce:4f:37:5b:74:
11:82:c1:22:d1:7d:82:0c:fc:a2:0b:ee:81:fe:ff:4c:ce:16:
41:32:06:5b:dc:ff:a5:9c:f4:ac:c0:4f:7d:d0:ea:1b:c9:fd:
32:bf:e5:b3:e1:9d:79:f0:af:5b:c9:7f:2f:7a:58:6f:24:45:
da:a3:40:c5:3b:23:e5:63:23:91:32:5c:5f:30:33:6c:c9:cb:
7b:c7:e7:fd:cd:aa:f4:40:08:03:67:60:62:ca:d3:86:46:51:
92:c7:0e:1d:6d:57:ba:79:93:61:1d:7f:96:77:d0:39:d0:0b:
92:81:97:e2:13:78:65:f1:d9:f5:83:cf:4e:3c:55:78:8b:5a:
02:76:e8:29
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKQLMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMDU0NzQ5WhcNMjQwNDIzMDU0NzQ5WjAYMRYw
FAYDVQQDEw02NWZiY2EwOS03MjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvYvLJd5NnrIT5KXJLZHshlYbHaZimtWGzkBMZNr0OCvv4E3464MAStzY
qGuDIiyHnpOZ/HturWrronkC4ZRxpEG4sbKdUycvOOiBYM2IHtQkcKbt9xs4RucS
CcVWJkR2XA8YQf89H4+cGozOluzxnbnUkCcW8/qQ428TjC+uaxgZSK8TDrEAQ28W
paCznvh2myEzy6HLwGUmZEzIGSXfLMccX8cpEmhDRQtL3ooMsBSqF154D0UELCHy
wpexu9iShhXN+XVApRhlowR1dSLvTKYzivL4i8IVTMqi+N7zo6gbMPJXcSc0Fbn/
diacTAK6vta3xiwm2h71KO9MTWhWLwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFVR
Yf7Gx7Fk2IgQz1HDybub6bTHMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84RjA2RTdBQUU3NDYxMUVFODk4RDkxQzM3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtyzMA0GCSqGSIb3DQEB
CwUAA4IBAQBSXNM84DHczEsj7DNZ9Zm/tc+SD/+vDnGQ5UszL3sKCwZF0O0umB2r
OG2kdyIPuscSPveKOk3hDitVKj/DQCTGsldo6xGcr0dtrJHwJmGaIkRAyNrOyT3F
Smv1Z4sp3wvsOikPh1iHCMYoxaNBa4E835sw2e4v20Unzk83W3QRgsEi0X2CDPyi
C+6B/v9MzhZBMgZb3P+lnPSswE990Oobyf0yv+Wz4Z158K9byX8velhvJEXao0DF
OyPlYyORMlxfMDNsyct7x+f9zar0QAgDZ2BiytOGRlGSxw4dbVe6eZNhHX+Wd9A5
0AuSgZfiE3hl8dn1g89OPFV4i1oCdugp
-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:24 2024 by rpki-client on console-ams.rpki-client.org