Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9EF62042F24811EE81C3C56F775412E6.roa
File: 9EF62042F24811EE81C3C56F775412E6.roa (raw, json)
Hash identifier: AxzSdZRXECBR40Mh6mWl1XzHJj8iWPEMbS8FfD7AXeA=
Subject key identifier: AA:4D:51:5C:54:B8:2A:A4:2C:EB:1B:38:22:B6:CE:96:7C:D0:7D:14
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A965
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9EF62042F24811EE81C3C56F775412E6.roa
Signing time: Thu 04 Apr 2024 06:00:21 +0000
ROA not before: Thu 04 Apr 2024 06:00:18 +0000
ROA not after: Mon 06 May 2024 06:00:18 +0000
asID: 14315
IP address blocks: 154.194.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43365 (0xa965)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 4 06:00:18 2024 GMT
Not After : May 6 06:00:18 2024 GMT
Subject: CN=660e41f5-8598
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b7:7a:b5:47:55:c6:c3:a2:6d:18:a4:01:8a:
14:d1:b4:f1:8f:02:9f:cc:61:7b:47:6a:cf:94:9a:
96:ad:4d:65:2b:4b:65:13:54:32:6a:80:a9:e7:72:
1e:1a:d0:5d:05:d4:f5:e6:a3:74:30:16:25:ec:91:
c1:41:12:e0:fc:ad:af:57:f2:e8:3b:12:48:b0:e6:
91:36:0d:38:c1:26:b8:62:0f:27:df:20:86:4e:cc:
b8:8d:65:72:c4:46:84:e3:7e:1c:9a:de:c5:19:e9:
5a:dc:83:f6:de:49:74:93:eb:2d:ef:ba:a7:e4:42:
64:da:ed:c2:46:3a:7c:fb:95:6f:44:a1:2a:cc:7d:
ee:dd:86:92:40:18:f4:92:14:47:9e:6a:00:fc:e2:
07:96:33:b5:54:c6:02:8e:a0:ca:59:b2:c6:10:f8:
e4:f9:9f:d9:17:9d:5e:c9:64:f0:e4:fe:bd:5b:72:
44:7f:53:a3:32:91:2e:27:4a:3e:e2:b5:0d:11:cb:
78:b8:18:9c:66:69:77:1f:7f:97:0c:fe:43:f9:61:
56:1b:2c:6c:59:71:29:1a:5f:b0:4a:28:3c:9c:c8:
eb:76:6e:f8:d2:46:ea:03:cc:e0:60:ed:a4:57:9e:
3b:03:1a:da:4d:12:b7:a1:5c:24:a1:a8:1f:ff:ab:
08:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:4D:51:5C:54:B8:2A:A4:2C:EB:1B:38:22:B6:CE:96:7C:D0:7D:14
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9EF62042F24811EE81C3C56F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.50.0/24
Signature Algorithm: sha256WithRSAEncryption
51:64:b1:79:9d:da:20:1b:bd:3d:bf:29:c7:78:84:96:9e:8d:
57:7d:d3:ba:94:32:33:22:f1:07:f7:81:7f:cc:6c:00:dc:28:
c4:ce:65:35:bf:a4:ad:9b:33:18:95:06:e6:c0:56:4c:db:39:
ae:ce:fc:3d:9b:5d:76:83:dd:90:68:0d:1f:6d:91:10:ff:08:
8e:8e:b8:1f:25:71:01:cd:f5:7c:65:96:c8:ba:e5:5f:f1:b6:
c0:39:df:05:6d:7d:4b:3b:fe:88:d6:27:c6:aa:14:3f:2c:dc:
62:31:4b:42:64:5d:6f:95:9f:db:46:2d:fd:5d:4b:85:55:f2:
ca:d7:d6:eb:e0:05:60:fc:9a:31:19:63:fc:35:84:47:90:49:
db:0b:d4:46:e3:f6:07:99:a4:19:39:7c:3c:7e:c9:c0:0a:78:
08:21:88:65:67:c0:7c:49:21:e3:bc:ff:6f:37:82:37:c5:99:
ee:8c:39:70:e5:66:93:ff:40:ce:cf:e9:88:89:42:a8:d0:62:
e6:47:78:11:2c:ab:ae:c3:a8:3a:34:58:88:17:6d:43:bf:a8:
90:a9:4a:2e:9a:d8:34:65:b2:10:2c:58:fa:5c:77:05:88:dd:
57:a7:a1:1d:ff:33:a3:b7:ae:d2:9c:42:d8:fb:a7:0c:37:0d:
81:77:4c:e4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKllMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDA0MDYwMDE4WhcNMjQwNTA2MDYwMDE4WjAYMRYw
FAYDVQQDEw02NjBlNDFmNS04NTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzbd6tUdVxsOibRikAYoU0bTxjwKfzGF7R2rPlJqWrU1lK0tlE1QyaoCp
53IeGtBdBdT15qN0MBYl7JHBQRLg/K2vV/LoOxJIsOaRNg04wSa4Yg8n3yCGTsy4
jWVyxEaE434cmt7FGela3IP23kl0k+st77qn5EJk2u3CRjp8+5VvRKEqzH3u3YaS
QBj0khRHnmoA/OIHljO1VMYCjqDKWbLGEPjk+Z/ZF51eyWTw5P69W3JEf1OjMpEu
J0o+4rUNEct4uBicZml3H3+XDP5D+WFWGyxsWXEpGl+wSig8nMjrdm740kbqA8zg
YO2kV547AxraTRK3oVwkoagf/6sIGwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFKpN
UVxUuCqkLOsbOCK2zpZ80H0UMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85RUY2MjA0MkYyNDgxMUVFODFDM0M1NkY3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsIyMA0GCSqGSIb3DQEB
CwUAA4IBAQBRZLF5ndogG709vynHeISWno1XfdO6lDIzIvEH94F/zGwA3CjEzmU1
v6StmzMYlQbmwFZM2zmuzvw9m112g92QaA0fbZEQ/wiOjrgfJXEBzfV8ZZbIuuVf
8bbAOd8FbX1LO/6I1ifGqhQ/LNxiMUtCZF1vlZ/bRi39XUuFVfLK19br4AVg/Jox
GWP8NYRHkEnbC9RG4/YHmaQZOXw8fsnACngIIYhlZ8B8SSHjvP9vN4I3xZnujDlw
5WaT/0DOz+mIiUKo0GLmR3gRLKuuw6g6NFiIF21Dv6iQqUoumtg0ZbIQLFj6XHcF
iN1Xp6Ed/zOjt67SnELY+6cMNw2Bd0zk
-----END CERTIFICATE-----
Generated at Fri May 3 01:29:59 2024 by rpki-client on console-fra.rpki-client.org