Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/98C6FBC6C5C311EEA015C872775412E6.roa
File: 98C6FBC6C5C311EEA015C872775412E6.roa (raw, json)
Hash identifier: jH92ppNw0jK7Lj9YT8CI4UMNhhtmL5iyP2pHH1+gc94=
Subject key identifier: F8:27:9D:85:1B:5B:28:E1:EC:70:19:A3:F2:70:08:2B:14:69:26:F6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 86FC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/98C6FBC6C5C311EEA015C872775412E6.roa
Signing time: Wed 07 Feb 2024 14:17:17 +0000
ROA not before: Wed 07 Feb 2024 14:17:13 +0000
ROA not after: Wed 31 Jul 2024 14:17:13 +0000
asID: 62387
IP address blocks: 154.214.228.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34556 (0x86fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 7 14:17:13 2024 GMT
Not After : Jul 31 14:17:13 2024 GMT
Subject: CN=65c390ed-236e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:ac:5e:b2:9a:9f:74:d6:73:4e:f5:f5:c3:63:
89:ff:95:b8:db:4c:22:1a:db:2e:a1:50:76:f8:f7:
c7:a9:fa:91:f1:41:8c:5b:c0:0e:70:6d:7a:0b:02:
95:63:9b:08:e0:f4:dc:10:d3:a6:dd:09:d5:14:fe:
fa:12:d5:27:91:a4:82:4b:e5:29:98:c9:00:a9:5b:
1a:81:6e:d0:bf:92:1e:3d:40:1f:d7:be:b8:bb:2c:
b5:03:1e:10:6d:72:20:3c:c6:a6:92:5d:8a:7a:55:
8c:a0:85:47:51:b8:76:38:e9:b9:0d:ae:bf:d3:1c:
c7:67:43:48:39:aa:f2:53:22:3d:2f:5c:ed:e6:db:
ec:84:da:11:b3:16:16:5c:6e:39:f7:e8:6c:d0:90:
dd:11:b6:56:0b:26:00:69:d8:43:29:6b:2e:a8:78:
d3:fe:be:05:31:e1:17:a8:41:da:97:e7:e0:d5:a6:
ea:e6:18:c0:8b:74:e0:ca:a7:2d:07:d7:c8:39:85:
9e:9d:2c:74:34:06:39:bb:0c:4e:df:36:8c:65:8b:
ad:78:dd:9b:02:5b:fb:f2:b6:cd:8b:4f:72:ca:32:
f3:df:65:a8:b1:0d:8f:ab:e1:84:56:d5:ef:35:2b:
73:b4:85:68:b5:44:6b:81:bb:a2:d4:fb:65:70:5a:
96:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:27:9D:85:1B:5B:28:E1:EC:70:19:A3:F2:70:08:2B:14:69:26:F6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/98C6FBC6C5C311EEA015C872775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.228.0/23
Signature Algorithm: sha256WithRSAEncryption
d5:2e:45:ba:26:57:f3:fc:f6:d1:73:92:aa:0f:32:92:2b:0d:
46:1d:15:4d:3a:17:8c:f0:9b:dc:4f:6a:45:b3:7c:8f:c7:f4:
5a:ee:98:15:08:d1:5c:86:fd:98:85:56:a6:ad:bd:f8:5f:76:
5f:9b:e8:d6:f6:03:31:7e:a7:58:c1:ad:1f:3b:05:e2:c1:bd:
2f:0e:00:35:70:04:b0:ac:44:8c:2f:7d:49:6f:60:eb:e6:27:
9a:90:81:76:43:76:3c:ba:8d:74:c5:2e:9c:28:6c:82:2f:2c:
7f:85:8e:31:9a:fe:34:fa:8a:22:f3:27:a4:0a:87:d6:3e:5d:
8d:ac:bc:06:5b:a6:da:d8:fc:29:8a:f8:e8:ea:af:9c:e9:2e:
54:70:cf:be:41:8c:2a:be:d5:34:91:00:bc:3a:c4:bc:20:0a:
d5:74:9b:b1:05:e6:97:c5:d8:a3:5a:5c:5d:ed:f4:34:02:0d:
b3:a0:39:a1:40:af:a6:46:17:0c:e2:4f:24:46:58:0b:fc:86:
d7:ba:dd:55:e9:57:19:b7:12:ea:3b:5e:b6:fc:f5:dd:20:32:
85:c2:50:d7:6c:4c:ee:2f:e9:36:a0:51:79:b7:f1:81:e8:60:
52:01:d1:01:38:f3:3f:26:74:2d:09:c8:10:ce:3f:3b:3a:db:
e6:8d:6e:7f
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAIb8MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMjA3MTQxNzEzWhcNMjQwNzMxMTQxNzEzWjAYMRYw
FAYDVQQDEw02NWMzOTBlZC0yMzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA26xespqfdNZzTvX1w2OJ/5W420wiGtsuoVB2+PfHqfqR8UGMW8AOcG16
CwKVY5sI4PTcENOm3QnVFP76EtUnkaSCS+UpmMkAqVsagW7Qv5IePUAf1764uyy1
Ax4QbXIgPMamkl2KelWMoIVHUbh2OOm5Da6/0xzHZ0NIOaryUyI9L1zt5tvshNoR
sxYWXG459+hs0JDdEbZWCyYAadhDKWsuqHjT/r4FMeEXqEHal+fg1abq5hjAi3Tg
yqctB9fIOYWenSx0NAY5uwxO3zaMZYuteN2bAlv78rbNi09yyjLz32WosQ2Pq+GE
VtXvNStztIVotURrgbui1PtlcFqWUwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPgn
nYUbWyjh7HAZo/JwCCsUaSb2MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85OEM2RkJDNkM1QzMxMUVFQTAxNUM4NzI3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmtbkMA0GCSqGSIb3DQEB
CwUAA4IBAQDVLkW6Jlfz/PbRc5KqDzKSKw1GHRVNOheM8JvcT2pFs3yPx/Ra7pgV
CNFchv2YhVamrb34X3Zfm+jW9gMxfqdYwa0fOwXiwb0vDgA1cASwrESML31Jb2Dr
5ieakIF2Q3Y8uo10xS6cKGyCLyx/hY4xmv40+ooi8yekCofWPl2NrLwGW6ba2Pwp
ivjo6q+c6S5UcM++QYwqvtU0kQC8OsS8IArVdJuxBeaXxdijWlxd7fQ0Ag2zoDmh
QK+mRhcM4k8kRlgL/IbXut1V6VcZtxLqO162/PXdIDKFwlDXbEzuL+k2oFF5t/GB
6GBSAdEBOPM/JnQtCcgQzj87OtvmjW5/
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:16 2024 by rpki-client on console-ams.rpki-client.org