Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE0D49CCDF6D11EEA2CA564D775412E6.roa
File: AE0D49CCDF6D11EEA2CA564D775412E6.roa (raw, json)
Hash identifier: WPNNr+ID24Ty6zlDVCFROxMNIeff7EvDqS+k/+qKe6k=
Subject key identifier: 7C:FC:00:47:36:3A:A9:F8:7B:94:13:0B:81:BF:35:79:11:5C:23:A5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A064
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE0D49CCDF6D11EEA2CA564D775412E6.roa
Signing time: Mon 11 Mar 2024 06:07:46 +0000
ROA not before: Mon 11 Mar 2024 06:07:43 +0000
ROA not after: Sat 19 Oct 2024 06:07:43 +0000
asID: 135423
IP address blocks: 154.205.23.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41060 (0xa064)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 11 06:07:43 2024 GMT
Not After : Oct 19 06:07:43 2024 GMT
Subject: CN=65ee9fb2-c5e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:5c:ef:08:7b:bc:b1:f4:0e:b3:13:12:b9:64:
e6:d0:dc:0d:6a:c4:f5:d1:db:2f:bb:1f:b5:a2:d6:
e3:f3:2d:52:61:1e:10:c5:33:b3:16:cd:9e:4a:2f:
23:10:23:99:02:35:02:eb:e4:e2:87:d6:90:2c:6e:
f3:34:8a:ce:59:27:2d:43:7f:08:85:60:78:b9:5a:
1f:65:ef:ed:ad:7b:8a:60:6d:ab:5b:a9:25:0a:82:
a1:20:21:f6:01:24:f4:55:9b:cd:4e:3d:6e:e9:cc:
76:af:59:69:fd:ec:07:4f:d5:87:37:40:4d:bd:d0:
c6:c3:1b:0d:40:c5:a3:0d:c8:26:ca:a9:35:49:2e:
3d:df:5f:a5:5e:ed:b3:17:15:7a:ff:f4:46:a5:29:
d8:f8:16:b7:86:29:56:36:2c:5f:ff:7d:e3:d9:48:
c2:71:8e:27:73:1f:e9:50:84:25:cc:7c:b8:cb:34:
88:e3:8d:d7:2f:1a:c3:e6:7f:2d:ba:e5:f0:d5:b6:
e0:a6:45:60:ae:ba:c6:ab:9c:b6:9a:a4:1d:26:81:
df:a4:12:7c:bd:c2:79:c0:72:55:fc:80:07:ac:3f:
fc:48:1e:cd:fa:54:af:d1:0a:54:c7:9a:4a:66:ba:
72:51:bb:93:6a:75:22:e9:06:b9:0b:e5:f1:6e:3d:
4f:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:FC:00:47:36:3A:A9:F8:7B:94:13:0B:81:BF:35:79:11:5C:23:A5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE0D49CCDF6D11EEA2CA564D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.23.0/24
Signature Algorithm: sha256WithRSAEncryption
71:a9:3b:80:f0:66:fe:26:c9:9c:63:7a:d8:c4:f0:53:81:92:
95:bb:f6:70:47:1a:b9:4c:53:aa:44:da:28:5f:d2:6e:ea:0b:
9f:94:d4:1a:6f:39:1f:4d:52:30:fb:d9:85:c0:f0:af:31:d3:
3b:4a:ab:ab:3b:fe:5b:ba:89:7c:f8:8a:97:6a:84:7c:9f:97:
24:b7:45:1a:75:72:df:bc:f7:5e:8d:ff:c1:ec:13:e0:0b:5f:
54:fd:31:df:70:c1:f4:1c:5c:e8:4c:8e:ca:42:98:ff:8b:e8:
e8:5d:7a:42:e6:b6:bc:8a:05:cd:c3:a5:be:17:e7:c7:2b:4e:
1a:b5:77:3c:f1:9c:a1:52:85:69:2a:be:17:98:77:04:4f:a3:
2a:b8:80:a1:88:b6:76:00:28:69:69:2e:0f:da:0e:d0:e9:40:
62:88:88:53:5e:ef:87:23:62:10:e1:0e:89:16:e9:f4:0e:91:
80:19:19:0a:e9:36:96:a1:29:1a:31:57:25:42:26:47:a6:5e:
e9:88:c7:41:4b:97:11:b7:04:7a:a7:0b:1a:0d:21:7d:24:b5:
fa:f7:9d:42:32:4e:84:2a:c8:70:6f:3c:aa:c7:40:fc:db:64:
f6:d6:a6:32:b6:07:a9:bd:d5:4e:79:d1:96:93:8a:78:c2:ca:
dd:2c:5c:cb
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKBkMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzExMDYwNzQzWhcNMjQxMDE5MDYwNzQzWjAYMRYw
FAYDVQQDEw02NWVlOWZiMi1jNWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1FzvCHu8sfQOsxMSuWTm0NwNasT10dsvux+1otbj8y1SYR4QxTOzFs2e
Si8jECOZAjUC6+Tih9aQLG7zNIrOWSctQ38IhWB4uVofZe/trXuKYG2rW6klCoKh
ICH2AST0VZvNTj1u6cx2r1lp/ewHT9WHN0BNvdDGwxsNQMWjDcgmyqk1SS4931+l
Xu2zFxV6//RGpSnY+Ba3hilWNixf/33j2UjCcY4ncx/pUIQlzHy4yzSI443XLxrD
5n8tuuXw1bbgpkVgrrrGq5y2mqQdJoHfpBJ8vcJ5wHJV/IAHrD/8SB7N+lSv0QpU
x5pKZrpyUbuTanUi6Qa5C+Xxbj1PlwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHz8
AEc2Oqn4e5QTC4G/NXkRXCOlMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BRTBENDlDQ0RGNkQxMUVFQTJDQTU2NEQ3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms0XMA0GCSqGSIb3DQEB
CwUAA4IBAQBxqTuA8Gb+JsmcY3rYxPBTgZKVu/ZwRxq5TFOqRNooX9Ju6guflNQa
bzkfTVIw+9mFwPCvMdM7SqurO/5buol8+IqXaoR8n5ckt0UadXLfvPdejf/B7BPg
C19U/THfcMH0HFzoTI7KQpj/i+joXXpC5ra8igXNw6W+F+fHK04atXc88ZyhUoVp
Kr4XmHcET6MquIChiLZ2AChpaS4P2g7Q6UBiiIhTXu+HI2IQ4Q6JFun0DpGAGRkK
6TaWoSkaMVclQiZHpl7piMdBS5cRtwR6pwsaDSF9JLX6951CMk6EKshwbzyqx0D8
22T21qYytgepvdVOedGWk4p4wsrdLFzL
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:35 2024 by rpki-client on console-fra.rpki-client.org