Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9AC58876F17311EE93F5586D775412E6.roa
File: 9AC58876F17311EE93F5586D775412E6.roa (raw, json)
Hash identifier: sl/RlVPz6KHjJXjT/Jd84AVAXqtUdWzrNtYrlWlx+QY=
Subject key identifier: 37:4F:09:32:79:75:E3:1E:69:53:DE:41:85:C7:CF:13:7E:DE:76:29
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A93A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9AC58876F17311EE93F5586D775412E6.roa
Signing time: Wed 03 Apr 2024 04:35:32 +0000
ROA not before: Wed 03 Apr 2024 04:35:28 +0000
ROA not after: Sat 04 May 2024 04:35:28 +0000
asID: 140869
IP address blocks: 154.81.37.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 04:35:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43322 (0xa93a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 3 04:35:28 2024 GMT
Not After : May 4 04:35:28 2024 GMT
Subject: CN=660cdc93-2086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:52:0d:06:36:a7:45:d0:8d:20:29:d4:b5:27:
44:54:b6:7f:39:da:19:5b:d9:c5:dd:d8:d8:dd:99:
87:47:5a:04:96:16:c2:86:1d:7b:10:8f:aa:23:7a:
bf:12:00:0e:19:e2:2a:bf:a2:3a:9f:2a:52:53:52:
5f:61:94:de:f2:d0:af:18:c3:12:95:9c:2c:1c:c8:
b1:2b:36:24:fd:a6:76:46:c6:42:a0:5d:b3:f3:80:
c0:4a:59:93:e1:76:f2:c8:05:56:f2:a0:1a:a5:cf:
d2:ef:73:62:eb:86:6c:0e:ad:5e:f7:34:61:ad:14:
43:46:28:96:27:3f:4e:43:52:11:22:1b:cd:76:ec:
08:82:fa:67:e8:70:84:fa:c8:bb:f0:0b:b1:b3:96:
74:fa:59:44:b0:8a:d6:c9:96:e7:14:20:ab:5f:f4:
a6:6f:c4:ab:42:32:0e:87:52:8a:33:28:4d:84:6f:
39:45:9d:0d:1b:23:be:a3:d6:12:e1:e9:63:83:49:
81:cf:64:d4:c7:bb:3d:5f:17:61:69:32:dd:75:77:
88:9b:d4:d7:80:d5:24:8a:ef:e1:24:88:77:7f:75:
67:ea:c0:89:05:f1:75:15:0c:af:3e:ff:24:33:88:
e8:b5:f5:eb:cc:01:a1:5a:ad:4f:d5:eb:c4:03:5f:
bb:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:4F:09:32:79:75:E3:1E:69:53:DE:41:85:C7:CF:13:7E:DE:76:29
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9AC58876F17311EE93F5586D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.37.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:81:59:c4:ff:3d:19:07:85:c4:cd:46:d4:ae:1a:c6:a7:d6:
93:a0:1e:63:5a:6b:17:43:d1:de:1f:c9:d8:8f:17:4d:bb:37:
43:06:1a:89:38:59:57:db:81:3a:da:71:44:81:bb:2d:1d:ea:
34:a4:77:ce:77:13:78:0c:32:de:45:8b:32:10:e5:cc:8a:77:
cd:c4:2b:bb:92:cb:e3:38:6c:09:3b:64:99:07:ae:90:bf:4d:
32:1c:8b:7e:1a:c4:5f:a7:a0:af:0b:62:25:a7:18:5c:31:64:
41:87:35:97:6d:60:36:58:8d:ab:75:6a:e9:32:f5:28:53:1d:
9c:6a:a0:bb:d4:de:fc:98:6f:74:44:7e:47:53:da:24:c0:3e:
eb:bf:23:48:6d:9e:ac:00:81:25:c1:bb:47:e3:50:b1:8d:a0:
cd:69:45:86:e1:c6:1a:b6:91:c0:16:56:ab:f8:60:01:6a:29:
fc:65:00:d3:f0:a0:78:b7:2e:20:ec:dd:07:e6:80:0b:20:f6:
2b:e8:4a:df:b5:e3:ca:49:79:00:9c:aa:16:ca:81:1f:82:a7:
a4:5e:98:33:2e:d4:ac:52:9d:ce:8b:bf:4b:a7:40:a8:8e:e4:
f5:0f:0f:5c:cb:74:66:7c:0c:1b:cb:28:06:d8:f9:73:b5:41:
b8:e6:c9:75
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKk6MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDAzMDQzNTI4WhcNMjQwNTA0MDQzNTI4WjAYMRYw
FAYDVQQDEw02NjBjZGM5My0yMDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0lINBjanRdCNICnUtSdEVLZ/OdoZW9nF3djY3ZmHR1oElhbChh17EI+q
I3q/EgAOGeIqv6I6nypSU1JfYZTe8tCvGMMSlZwsHMixKzYk/aZ2RsZCoF2z84DA
SlmT4XbyyAVW8qAapc/S73Ni64ZsDq1e9zRhrRRDRiiWJz9OQ1IRIhvNduwIgvpn
6HCE+si78Auxs5Z0+llEsIrWyZbnFCCrX/Smb8SrQjIOh1KKMyhNhG85RZ0NGyO+
o9YS4eljg0mBz2TUx7s9XxdhaTLddXeIm9TXgNUkiu/hJIh3f3Vn6sCJBfF1FQyv
Pv8kM4jotfXrzAGhWq1P1evEA1+7yQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDdP
CTJ5deMeaVPeQYXHzxN+3nYpMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85QUM1ODg3NkYxNzMxMUVFOTNGNTU4NkQ3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlElMA0GCSqGSIb3DQEB
CwUAA4IBAQCagVnE/z0ZB4XEzUbUrhrGp9aToB5jWmsXQ9HeH8nYjxdNuzdDBhqJ
OFlX24E62nFEgbstHeo0pHfOdxN4DDLeRYsyEOXMinfNxCu7ksvjOGwJO2SZB66Q
v00yHIt+GsRfp6CvC2IlpxhcMWRBhzWXbWA2WI2rdWrpMvUoUx2caqC71N78mG90
RH5HU9okwD7rvyNIbZ6sAIElwbtH41CxjaDNaUWG4cYatpHAFlar+GABain8ZQDT
8KB4ty4g7N0H5oALIPYr6ErftePKSXkAnKoWyoEfgqekXpgzLtSsUp3Oi79Lp0Co
juT1Dw9cy3RmfAwbyygG2PlztUG45sl1
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:33 2024 by rpki-client on console-fra.rpki-client.org