Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/917B1292958C11EE92ED1B41D25BE465.roa
File: 917B1292958C11EE92ED1B41D25BE465.roa (raw, json)
Hash identifier: nlbpQ9+5e5pzLzfWP+JQPfmCNewQYnLNHSvlGn67cpE=
Subject key identifier: 96:3A:A2:D0:EF:0F:64:6C:F7:9B:38:54:BF:C6:C6:B1:11:F0:39:4E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5F44
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/917B1292958C11EE92ED1B41D25BE465.roa
Signing time: Fri 08 Dec 2023 05:42:26 +0000
ROA not before: Fri 08 Dec 2023 05:42:23 +0000
ROA not after: Wed 11 Dec 2024 05:42:23 +0000
asID: 137962
IP address blocks: 154.216.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24388 (0x5f44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 8 05:42:23 2023 GMT
Not After : Dec 11 05:42:23 2024 GMT
Subject: CN=6572acc2-1ae6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:13:8a:dd:a9:17:dd:14:be:0e:50:c7:3a:57:
8a:36:af:5d:a4:f3:3c:5e:c8:b2:8c:77:48:50:81:
b8:66:35:4e:3e:42:4f:fe:20:e9:fc:c9:db:2f:55:
59:83:85:05:3c:9e:0c:2a:4a:a6:34:70:10:14:82:
a7:f0:45:bd:7b:36:85:19:28:64:7b:e7:30:75:25:
95:b4:59:70:02:9c:2a:50:63:c9:86:75:e6:ce:d1:
b9:a9:16:97:0f:e7:10:c7:b2:05:16:fc:e9:d5:93:
30:dd:20:24:02:d4:08:de:71:fa:36:72:0e:fd:c6:
c6:8e:fa:9e:64:ff:73:38:c7:cb:b6:70:77:fb:a5:
03:67:c7:4d:72:20:90:a7:63:77:9b:23:65:dd:62:
f5:78:cd:20:cb:0b:b1:45:9b:ef:3d:65:3d:b9:15:
f8:dd:08:08:61:49:50:36:6e:a3:63:20:c8:8b:f3:
80:9d:5e:74:e6:7f:bb:d6:8e:54:69:2f:05:6c:43:
9b:63:3e:be:70:72:43:fb:49:a1:45:3c:79:04:79:
ae:e4:8a:89:aa:2e:34:3f:c9:38:2e:76:56:47:fb:
26:57:bd:3e:d0:64:4e:63:0c:af:6b:a3:c5:f3:e8:
3e:c8:00:70:9b:c8:27:d8:4c:c4:e8:42:3d:cd:c1:
4e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:3A:A2:D0:EF:0F:64:6C:F7:9B:38:54:BF:C6:C6:B1:11:F0:39:4E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/917B1292958C11EE92ED1B41D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.0.0/24
Signature Algorithm: sha256WithRSAEncryption
15:5d:6e:24:b1:99:2d:49:f5:0e:e2:79:28:b8:29:33:75:b0:
29:5e:06:e6:98:28:e1:96:18:68:82:1c:42:87:7d:82:df:1e:
b2:55:aa:e4:2d:0e:15:2f:ad:0a:9d:78:a7:38:7c:e7:bd:61:
21:a4:fa:b7:5b:7c:4c:25:07:50:11:c8:91:70:22:b0:17:5b:
c1:22:cc:2f:44:4a:93:3d:c0:4e:0b:fd:a5:96:0c:f5:82:f0:
05:8f:59:26:34:83:c8:4d:91:4f:ca:2c:99:20:01:91:bd:96:
89:85:71:1a:b7:ea:d0:7c:ab:00:1d:28:c0:5b:bb:aa:16:59:
7b:13:e1:66:6e:b3:99:02:69:77:a1:75:fd:b7:ad:9d:f7:7c:
31:a2:02:8e:b6:9c:13:88:73:05:ca:16:e2:10:69:48:9e:28:
38:4a:eb:71:f5:cb:73:75:55:41:94:b4:d3:bf:61:09:ce:06:
f7:46:4a:38:2c:fc:31:4f:ad:b7:4b:1f:6a:e7:01:c1:9e:fc:
a1:df:68:1e:82:9a:61:35:6f:e4:91:ed:e9:cb:4b:90:7e:c5:
88:8c:0c:10:20:de:e7:d9:6a:8e:d2:6c:37:b6:11:3a:e7:d3:
97:5e:6c:57:c8:a8:1f:78:bb:23:61:39:13:a7:a7:4e:fb:31:
87:d0:2f:b0
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICX0QwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzEyMDgwNTQyMjNaFw0yNDEyMTEwNTQyMjNaMBgxFjAU
BgNVBAMTDTY1NzJhY2MyLTFhZTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDDE4rdqRfdFL4OUMc6V4o2r12k8zxeyLKMd0hQgbhmNU4+Qk/+IOn8ydsv
VVmDhQU8ngwqSqY0cBAUgqfwRb17NoUZKGR75zB1JZW0WXACnCpQY8mGdebO0bmp
FpcP5xDHsgUW/OnVkzDdICQC1Ajecfo2cg79xsaO+p5k/3M4x8u2cHf7pQNnx01y
IJCnY3ebI2XdYvV4zSDLC7FFm+89ZT25FfjdCAhhSVA2bqNjIMiL84CdXnTmf7vW
jlRpLwVsQ5tjPr5wckP7SaFFPHkEea7kiomqLjQ/yTgudlZH+yZXvT7QZE5jDK9r
o8Xz6D7IAHCbyCfYTMToQj3NwU5BAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUljqi
0O8PZGz3mzhUv8bGsRHwOU4wHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzkxN0IxMjkyOTU4QzExRUU5MkVEMUI0MUQyNUJFNDY1LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACa2AAwDQYJKoZIhvcNAQEL
BQADggEBABVdbiSxmS1J9Q7ieSi4KTN1sCleBuaYKOGWGGiCHEKHfYLfHrJVquQt
DhUvrQqdeKc4fOe9YSGk+rdbfEwlB1ARyJFwIrAXW8EizC9ESpM9wE4L/aWWDPWC
8AWPWSY0g8hNkU/KLJkgAZG9lomFcRq36tB8qwAdKMBbu6oWWXsT4WZus5kCaXeh
df23rZ33fDGiAo62nBOIcwXKFuIQaUieKDhK63H1y3N1VUGUtNO/YQnOBvdGSjgs
/DFPrbdLH2rnAcGe/KHfaB6CmmE1b+SR7enLS5B+xYiMDBAg3ufZao7SbDe2ETrn
05debFfIqB94uyNhOROnp077MYfQL7A=
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:15 2024 by rpki-client on console-ams.rpki-client.org