Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A8E34856FBAC11EEB2CA2B27017001B1.roa
File: A8E34856FBAC11EEB2CA2B27017001B1.roa (raw, json)
Hash identifier: mRP/gR4o3D/y89DgG4BlPf7D2P3vijD5UbUwI/ojT0k=
Subject key identifier: 1D:9B:20:ED:B1:F9:2A:B7:A0:D2:1D:96:63:FF:B9:91:3D:5B:7C:29
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ADC1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A8E34856FBAC11EEB2CA2B27017001B1.roa
Signing time: Tue 16 Apr 2024 04:49:08 +0000
ROA not before: Tue 16 Apr 2024 04:49:05 +0000
ROA not after: Thu 30 May 2024 04:49:05 +0000
asID: 63139
IP address blocks: 154.94.103.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44481 (0xadc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 04:49:05 2024 GMT
Not After : May 30 04:49:05 2024 GMT
Subject: CN=661e0344-9d9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:10:a0:09:06:76:39:2b:04:ce:11:57:e2:99:
dd:7a:2e:8c:b1:ef:ab:f8:71:5a:4f:a7:33:80:fc:
c7:3c:93:b5:08:f7:ad:b7:ce:3b:73:41:8e:22:3c:
34:eb:fd:94:ad:c1:67:d9:e2:83:0e:90:fd:45:f3:
67:3b:5a:0a:d6:d6:05:d1:eb:ce:5c:2d:04:03:69:
94:3f:72:72:29:60:d0:58:5a:83:f9:a3:24:e9:8d:
75:81:6c:de:22:9b:00:35:08:1f:f8:6c:f3:d8:52:
b7:95:e8:83:45:8c:af:30:88:ff:28:0e:0d:12:4c:
92:8b:b0:42:db:07:56:29:22:e6:d0:27:e4:ce:d0:
4f:8b:06:44:e1:51:29:0c:a5:e7:73:66:aa:22:12:
9c:cb:48:a9:56:f8:a2:18:42:26:98:ef:9a:c4:0d:
a3:fc:9e:1f:3f:15:26:c4:55:66:e7:28:71:23:5d:
41:0f:6b:eb:97:e5:a2:fa:51:16:00:41:a9:ba:4a:
18:fb:c6:f6:14:44:07:8d:ca:06:a4:df:4a:05:e5:
1d:a2:ae:31:b0:31:92:47:0f:7d:c7:a1:f1:38:f7:
96:65:21:cc:f6:b4:04:cc:24:5d:c0:69:09:45:56:
55:d5:08:1a:f9:1c:c5:14:42:9a:37:58:33:9b:23:
37:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:9B:20:ED:B1:F9:2A:B7:A0:D2:1D:96:63:FF:B9:91:3D:5B:7C:29
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A8E34856FBAC11EEB2CA2B27017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.103.0/24
Signature Algorithm: sha256WithRSAEncryption
23:b0:11:5e:b3:9c:c2:c4:16:8a:ed:bc:a7:3e:54:51:cd:07:
f3:94:31:4b:52:66:41:15:c0:b7:0f:ce:32:77:53:ae:34:43:
da:4f:dd:1e:72:71:73:de:0b:1b:d7:f4:77:60:bb:06:7b:f8:
81:58:fd:a6:02:f8:f7:0d:49:d6:f0:00:41:33:e4:73:fb:71:
0c:b6:d8:27:dd:36:a0:af:e2:09:e0:da:a0:56:6c:0c:09:17:
59:b1:03:17:b9:d6:35:89:90:ec:00:c2:0e:95:94:63:9c:ad:
23:0d:6c:47:0a:b5:1c:86:60:21:7f:c7:17:65:c9:2f:86:63:
2b:59:9b:06:f9:94:a9:f7:12:57:3e:00:7c:10:71:cb:1c:60:
df:3e:c0:a2:e3:6c:f7:47:b8:58:f0:84:d2:71:f7:79:67:00:
db:ac:42:5e:59:99:74:70:2c:83:43:57:dd:bb:89:b5:0c:25:
47:7b:6b:13:be:3e:26:3a:ea:e9:a0:93:8c:ee:c1:c8:8f:d4:
11:7e:a6:53:cb:48:94:c4:54:fa:d4:9e:10:79:40:4e:86:10:
8b:d1:c8:62:7a:83:5e:39:d4:74:ba:a5:00:7c:a8:25:e0:58:
4a:d8:6f:12:38:b7:13:55:d4:fe:e2:8b:ba:78:e9:63:23:f9:
12:b0:6b:0b
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAK3BMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDE2MDQ0OTA1WhcNMjQwNTMwMDQ0OTA1WjAYMRYw
FAYDVQQDEw02NjFlMDM0NC05ZDliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvhCgCQZ2OSsEzhFX4pndei6Mse+r+HFaT6czgPzHPJO1CPett847c0GO
Ijw06/2UrcFn2eKDDpD9RfNnO1oK1tYF0evOXC0EA2mUP3JyKWDQWFqD+aMk6Y11
gWzeIpsANQgf+Gzz2FK3leiDRYyvMIj/KA4NEkySi7BC2wdWKSLm0CfkztBPiwZE
4VEpDKXnc2aqIhKcy0ipVviiGEImmO+axA2j/J4fPxUmxFVm5yhxI11BD2vrl+Wi
+lEWAEGpukoY+8b2FEQHjcoGpN9KBeUdoq4xsDGSRw99x6HxOPeWZSHM9rQEzCRd
wGkJRVZV1Qga+RzFFEKaN1gzmyM3gwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFB2b
IO2x+Sq3oNIdlmP/uZE9W3wpMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BOEUzNDg1NkZCQUMxMUVFQjJDQTJCMjcwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml5nMA0GCSqGSIb3DQEB
CwUAA4IBAQAjsBFes5zCxBaK7bynPlRRzQfzlDFLUmZBFcC3D84yd1OuNEPaT90e
cnFz3gsb1/R3YLsGe/iBWP2mAvj3DUnW8ABBM+Rz+3EMttgn3Tagr+IJ4NqgVmwM
CRdZsQMXudY1iZDsAMIOlZRjnK0jDWxHCrUchmAhf8cXZckvhmMrWZsG+ZSp9xJX
PgB8EHHLHGDfPsCi42z3R7hY8ITScfd5ZwDbrEJeWZl0cCyDQ1fdu4m1DCVHe2sT
vj4mOurpoJOM7sHIj9QRfqZTy0iUxFT61J4QeUBOhhCL0chieoNeOdR0uqUAfKgl
4FhK2G8SOLcTVdT+4ou6eOljI/kSsGsL
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:17 2024 by rpki-client on console-ams.rpki-client.org