Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AFD36390F65111EEAB5A2A87775412E6.roa
File: AFD36390F65111EEAB5A2A87775412E6.roa (raw, json)
Hash identifier: y4M1Tb/6NcbHohk7Ci/MwbF4oX0TARqzPUsYK25MOPU=
Subject key identifier: E0:69:E6:95:F3:0E:0D:0C:4F:79:6D:70:07:18:AE:9B:57:0D:19:B9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AA61
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AFD36390F65111EEAB5A2A87775412E6.roa
Signing time: Tue 09 Apr 2024 09:15:20 +0000
ROA not before: Tue 09 Apr 2024 09:15:16 +0000
ROA not after: Thu 30 May 2024 09:15:16 +0000
asID: 63139
IP address blocks: 154.94.124.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43617 (0xaa61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 9 09:15:16 2024 GMT
Not After : May 30 09:15:16 2024 GMT
Subject: CN=66150728-10f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0e:ef:78:b8:76:66:67:0f:88:e8:1d:c5:e3:
c0:c3:cd:8f:cf:6c:38:7e:a5:46:83:58:0c:b4:cb:
b7:6d:d7:62:72:cb:c5:31:52:00:5d:7b:ca:f3:30:
71:f8:8b:75:41:91:69:59:73:ad:f7:f5:d8:0d:e3:
24:bb:19:99:38:18:79:a7:3c:63:99:40:f9:58:44:
f9:7a:78:33:30:e6:e9:0c:5a:cb:31:59:7f:6f:15:
e1:33:a0:dd:d0:58:8e:a5:c6:30:f1:51:cb:95:63:
64:53:21:86:0d:29:d3:b1:37:ac:46:8e:ed:bd:ea:
a7:83:30:c2:2b:5b:8a:78:72:2a:bc:8a:f5:e1:c9:
6f:01:89:f1:fe:9b:7b:6c:db:56:d2:82:1e:05:5a:
19:ba:d4:6b:d2:81:c1:14:3e:50:b6:ef:7b:75:09:
d4:65:0b:db:d6:1d:f0:b6:d0:fb:cf:6a:59:2b:09:
15:68:e7:06:a1:7e:1d:d4:70:ab:d4:01:8a:5c:a6:
6e:7d:d2:f9:25:0a:14:70:fd:70:22:d4:fe:01:e6:
3a:a7:46:3c:7f:2b:72:8a:bc:90:cb:ec:9f:5a:b8:
8a:a9:b5:fb:9e:d2:20:12:f0:21:fb:51:eb:4f:c2:
9f:7b:be:e2:3e:e0:d5:d6:05:d1:71:ff:c5:37:c7:
aa:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:69:E6:95:F3:0E:0D:0C:4F:79:6D:70:07:18:AE:9B:57:0D:19:B9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AFD36390F65111EEAB5A2A87775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.124.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:af:d9:8e:ba:df:53:ea:a1:d4:56:99:37:dc:d8:b8:cb:95:
26:37:b1:9e:aa:90:64:fb:92:34:f3:c2:99:44:73:31:ed:7d:
53:03:e3:88:b7:ba:b3:93:bf:5e:79:e0:cb:d2:8b:8d:33:6c:
be:4c:c1:b6:67:ca:8d:49:23:bf:f1:df:bc:ac:76:2d:1a:95:
06:1b:65:b1:f3:2b:c8:f8:9f:45:61:1c:4a:87:1d:e6:d4:af:
06:0e:dc:49:c8:a0:51:28:f1:c3:e5:d5:9f:1c:51:5f:83:6c:
2a:c0:f8:c6:10:26:4c:6e:fe:25:65:82:4e:ad:c0:97:f8:0d:
2e:a2:b2:38:59:e5:71:41:02:51:26:45:4c:61:ce:f6:e3:69:
e6:c7:82:78:20:fa:14:f7:58:7d:f2:3d:2c:c5:bd:6c:37:ce:
95:43:99:ef:0d:20:23:a0:f3:67:e1:63:0c:ca:88:8d:cc:db:
6f:06:c2:75:f3:18:6a:7b:14:39:e5:a9:6b:e8:06:7f:16:97:
3a:20:5e:b9:31:29:35:b8:6a:25:84:77:a9:d7:d2:77:41:5e:
db:cf:26:3c:3e:75:e2:9c:c8:4e:6e:06:40:15:1a:a2:2e:73:
b8:3c:63:a2:f4:05:36:ab:41:1f:00:cd:e9:15:e9:7f:cd:45:
0e:75:af:18
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKphMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDA5MDkxNTE2WhcNMjQwNTMwMDkxNTE2WjAYMRYw
FAYDVQQDEw02NjE1MDcyOC0xMGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArg7veLh2ZmcPiOgdxePAw82Pz2w4fqVGg1gMtMu3bddicsvFMVIAXXvK
8zBx+It1QZFpWXOt9/XYDeMkuxmZOBh5pzxjmUD5WET5engzMObpDFrLMVl/bxXh
M6Dd0FiOpcYw8VHLlWNkUyGGDSnTsTesRo7tveqngzDCK1uKeHIqvIr14clvAYnx
/pt7bNtW0oIeBVoZutRr0oHBFD5Qtu97dQnUZQvb1h3wttD7z2pZKwkVaOcGoX4d
1HCr1AGKXKZufdL5JQoUcP1wItT+AeY6p0Y8fytyiryQy+yfWriKqbX7ntIgEvAh
+1HrT8Kfe77iPuDV1gXRcf/FN8eqwQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOBp
5pXzDg0MT3ltcAcYrptXDRm5MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BRkQzNjM5MEY2NTExMUVFQUI1QTJBODc3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml58MA0GCSqGSIb3DQEB
CwUAA4IBAQBMr9mOut9T6qHUVpk33Ni4y5UmN7GeqpBk+5I088KZRHMx7X1TA+OI
t7qzk79eeeDL0ouNM2y+TMG2Z8qNSSO/8d+8rHYtGpUGG2Wx8yvI+J9FYRxKhx3m
1K8GDtxJyKBRKPHD5dWfHFFfg2wqwPjGECZMbv4lZYJOrcCX+A0uorI4WeVxQQJR
JkVMYc7242nmx4J4IPoU91h98j0sxb1sN86VQ5nvDSAjoPNn4WMMyoiNzNtvBsJ1
8xhqexQ55alr6AZ/Fpc6IF65MSk1uGolhHep19J3QV7bzyY8PnXinMhObgZAFRqi
LnO4PGOi9AU2q0EfAM3pFel/zUUOda8Y
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:18 2024 by rpki-client on console-ams.rpki-client.org