Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB903D3A226211EEAECD9B624AD9E6FC.roa
File: AB903D3A226211EEAECD9B624AD9E6FC.roa (raw, json)
Hash identifier: wsCKbRL6G/XdCBi5j1FrPmnHzJntMLM8jPFbHceAdCs=
Subject key identifier: 33:05:6E:A2:97:7F:FB:8B:EC:61:A0:A0:4B:80:5C:8D:59:52:71:C7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 32D2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB903D3A226211EEAECD9B624AD9E6FC.roa
Signing time: Fri 14 Jul 2023 16:22:48 +0000
ROA not before: Sat 15 Jul 2023 16:22:44 +0000
ROA not after: Sun 14 Jul 2024 16:22:44 +0000
asID: 38638
IP address blocks: 154.215.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13010 (0x32d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 15 16:22:44 2023 GMT
Not After : Jul 14 16:22:44 2024 GMT
Subject: CN=64b17657-749c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9d:30:b5:82:1d:88:e4:5b:87:76:ff:7a:ab:
f8:55:7a:f6:cc:da:8a:c7:9d:90:dd:4a:79:ee:63:
cd:29:f4:65:84:cb:86:60:05:d0:c8:41:d4:71:8b:
d4:9e:07:92:67:49:b0:34:95:62:d7:31:84:39:6a:
f5:30:8d:dd:68:c7:d5:70:90:34:25:a4:5b:b5:eb:
ec:2a:f7:38:ca:a0:2c:eb:30:9f:f2:c3:07:24:7f:
56:9b:c5:f6:fc:46:55:d7:b5:e4:a3:63:8c:fd:df:
40:8d:bf:0a:04:5f:8e:10:d8:91:35:5a:21:cc:db:
d7:ff:6e:12:f0:b1:8d:c7:8b:53:88:25:6b:5c:20:
7d:48:d1:6a:eb:99:d8:ad:94:d1:0c:63:8c:ca:13:
9b:62:49:09:2a:12:43:6a:07:50:f0:04:2b:a2:c2:
20:b9:64:cb:14:cf:3e:b6:26:a3:f8:c8:0e:02:36:
f0:08:a0:65:6b:25:b5:3d:ac:57:62:e0:39:d8:2a:
e9:bf:70:58:4d:a1:35:49:12:51:47:7b:b1:5f:9d:
d8:48:db:e2:4a:87:9b:b0:51:14:8b:ff:27:5d:37:
3e:62:57:12:7e:f7:96:ac:51:d2:c4:b6:ab:77:d3:
27:4a:89:ee:7f:a7:2b:12:ef:46:59:ac:38:ba:a0:
e6:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:05:6E:A2:97:7F:FB:8B:EC:61:A0:A0:4B:80:5C:8D:59:52:71:C7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB903D3A226211EEAECD9B624AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.1.0/24
Signature Algorithm: sha256WithRSAEncryption
92:54:16:63:70:cc:99:ec:a8:0a:23:57:a0:06:67:4e:b0:8e:
b9:69:c6:5d:ac:ca:c1:93:f6:08:1a:bd:d4:a2:1d:95:05:2a:
b1:87:c2:af:c8:df:9c:75:cf:b6:25:2e:53:d1:26:5f:41:61:
7e:e0:ef:31:68:61:39:b5:ec:49:d5:52:06:54:7e:03:6c:17:
b8:69:2d:97:31:80:e3:1b:ca:46:1c:b2:b2:a7:53:4d:ac:ee:
6b:a9:00:c6:05:3f:22:78:b5:39:87:c8:7d:78:5f:81:82:f1:
89:a0:d0:c2:a6:ec:c0:b6:7f:7d:03:99:7d:48:a9:73:a3:e2:
41:43:f7:61:86:0e:2b:c2:3d:12:3a:41:bb:ab:a0:05:2f:4d:
ad:3e:2d:d0:1c:cd:1e:3c:92:0f:51:62:82:bc:00:eb:e1:5c:
aa:53:0f:ab:c6:1f:2f:e7:a5:9c:f2:4e:5e:38:0c:9b:c4:35:
86:44:f0:0c:df:96:fc:ea:86:14:2e:32:7a:2a:a0:d1:b1:d8:
2a:f3:44:ea:f5:3e:b8:5d:31:85:bf:f8:61:d1:87:03:df:e9:
d6:0b:1a:dc:19:d5:72:44:9f:1d:78:f4:4e:15:f9:2a:6e:65:
9a:45:2c:aa:a5:43:45:e9:a4:3e:9b:49:2f:d8:17:54:8a:7c:
81:77:b0:e3
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICMtIwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA3MTUxNjIyNDRaFw0yNDA3MTQxNjIyNDRaMBgxFjAU
BgNVBAMTDTY0YjE3NjU3LTc0OWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCnnTC1gh2I5FuHdv96q/hVevbM2orHnZDdSnnuY80p9GWEy4ZgBdDIQdRx
i9SeB5JnSbA0lWLXMYQ5avUwjd1ox9VwkDQlpFu16+wq9zjKoCzrMJ/ywwckf1ab
xfb8RlXXteSjY4z930CNvwoEX44Q2JE1WiHM29f/bhLwsY3Hi1OIJWtcIH1I0Wrr
mditlNEMY4zKE5tiSQkqEkNqB1DwBCuiwiC5ZMsUzz62JqP4yA4CNvAIoGVrJbU9
rFdi4DnYKum/cFhNoTVJElFHe7FfndhI2+JKh5uwURSL/yddNz5iVxJ+95asUdLE
tqt30ydKie5/pysS70ZZrDi6oObzAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUMwVu
opd/+4vsYaCgS4BcjVlScccwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4L0FCOTAzRDNBMjI2MjExRUVBRUNEOUI2MjRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACa1wEwDQYJKoZIhvcNAQEL
BQADggEBAJJUFmNwzJnsqAojV6AGZ06wjrlpxl2sysGT9ggavdSiHZUFKrGHwq/I
35x1z7YlLlPRJl9BYX7g7zFoYTm17EnVUgZUfgNsF7hpLZcxgOMbykYcsrKnU02s
7mupAMYFPyJ4tTmHyH14X4GC8Ymg0MKm7MC2f30DmX1IqXOj4kFD92GGDivCPRI6
QburoAUvTa0+LdAczR48kg9RYoK8AOvhXKpTD6vGHy/npZzyTl44DJvENYZE8Azf
lvzqhhQuMnoqoNGx2CrzROr1PrhdMYW/+GHRhwPf6dYLGtwZ1XJEnx149E4V+Spu
ZZpFLKqlQ0XppD6bSS/YF1SKfIF3sOM=
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:35 2024 by rpki-client on console-fra.rpki-client.org