Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B06D0894FD3411EEAD3E261D017001B1.roa
File: B06D0894FD3411EEAD3E261D017001B1.roa (raw, json)
Hash identifier: QIjWXugqsGSub8a/6trbS8y4CTfX0fXR6kUpHk0pEFA=
Subject key identifier: 84:69:0F:DF:F9:34:87:39:D7:1D:A1:31:DD:74:D7:D3:76:5B:4E:83
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AE03
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B06D0894FD3411EEAD3E261D017001B1.roa
Signing time: Thu 18 Apr 2024 03:35:24 +0000
ROA not before: Thu 18 Apr 2024 03:35:20 +0000
ROA not after: Tue 07 Jan 2025 03:35:20 +0000
asID: 139057
IP address blocks: 154.85.94.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44547 (0xae03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 18 03:35:20 2024 GMT
Not After : Jan 7 03:35:20 2025 GMT
Subject: CN=662094fc-9269
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:69:78:2e:00:35:e3:50:e5:c9:07:03:0c:45:
00:05:d5:a9:fc:ab:bb:11:9c:c4:47:8c:90:e9:80:
92:73:f1:49:a0:95:2d:9d:86:fd:cd:da:10:fd:92:
93:22:fb:b3:74:aa:42:0c:37:ee:01:4a:2c:60:c4:
3f:6b:24:1a:58:8e:8e:28:90:a5:b8:7c:e6:9e:e3:
c8:db:96:1b:83:74:04:c3:3f:7d:05:d2:ab:4d:c9:
84:d4:4b:47:5a:a4:09:ba:14:ed:52:ab:c9:97:80:
bd:ff:23:ba:3c:f5:1b:50:91:c9:14:7e:2c:e1:c7:
01:d0:a1:55:f4:6b:3d:e2:9c:c1:1c:11:03:1e:42:
bf:ed:b4:43:4e:ed:3b:b4:31:b8:56:fc:49:64:e6:
06:60:68:18:b8:0d:b7:97:96:1c:6a:44:1d:03:af:
e4:78:84:23:c9:4f:d3:f3:d0:f4:93:2b:4b:c3:c9:
89:f9:ca:77:39:e4:a4:8f:8f:95:d7:ef:ed:52:3c:
77:22:93:29:d6:1e:91:61:f7:cb:3c:cf:a1:59:d0:
f5:53:f1:8f:16:26:fd:8e:34:b9:61:f8:53:d6:0d:
f7:85:7b:17:b9:67:ff:59:ff:1e:f3:16:43:d0:e8:
2b:cb:2a:41:ae:55:97:24:1d:30:72:f6:1e:b1:f5:
1e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:69:0F:DF:F9:34:87:39:D7:1D:A1:31:DD:74:D7:D3:76:5B:4E:83
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B06D0894FD3411EEAD3E261D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.94.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:ae:e5:75:c2:89:59:2a:ce:9c:b9:34:ea:49:87:d3:a1:f5:
83:73:f7:39:9f:00:4d:91:42:bc:42:6a:00:eb:04:84:0d:a3:
be:d6:47:94:b9:c2:6f:38:1e:83:64:04:82:d9:7b:7f:d4:b5:
65:f5:9a:2e:5d:f2:38:4c:55:61:c5:bf:32:e3:3a:ba:64:08:
a6:a1:c2:ca:cd:a5:40:03:5b:5c:c5:99:b6:47:90:5c:6c:64:
eb:f7:a4:95:25:7e:19:28:65:ac:f5:be:8f:db:25:bd:bc:4b:
86:0d:d4:15:7e:24:89:5b:65:b2:51:dd:2f:fc:f5:03:49:25:
93:06:6d:ac:61:31:cd:cb:90:50:c7:5b:d9:13:db:7d:eb:f5:
f0:03:18:92:78:0b:5c:50:00:11:d6:f4:96:03:f9:96:ee:f5:
67:70:1a:ef:62:28:80:bb:cf:b1:39:ec:f8:e5:e3:08:38:d0:
3b:3a:64:f0:92:fa:59:bd:3f:61:04:7e:4a:93:92:d6:0c:95:
2a:f6:5a:9a:b1:e1:a8:f0:bb:72:06:d8:59:5a:18:26:07:c4:
da:fc:1a:7e:ff:c6:82:cd:f1:42:67:ce:88:eb:d9:c6:5b:ab:
b7:d7:8f:87:fb:ab:86:83:d1:22:d2:b9:75:a4:a7:d3:b0:90:
6a:fc:dd:42
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAK4DMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDE4MDMzNTIwWhcNMjUwMTA3MDMzNTIwWjAYMRYw
FAYDVQQDEw02NjIwOTRmYy05MjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA8Gl4LgA141DlyQcDDEUABdWp/Ku7EZzER4yQ6YCSc/FJoJUtnYb9zdoQ
/ZKTIvuzdKpCDDfuAUosYMQ/ayQaWI6OKJCluHzmnuPI25Ybg3QEwz99BdKrTcmE
1EtHWqQJuhTtUqvJl4C9/yO6PPUbUJHJFH4s4ccB0KFV9Gs94pzBHBEDHkK/7bRD
Tu07tDG4VvxJZOYGYGgYuA23l5YcakQdA6/keIQjyU/T89D0kytLw8mJ+cp3OeSk
j4+V1+/tUjx3IpMp1h6RYffLPM+hWdD1U/GPFib9jjS5YfhT1g33hXsXuWf/Wf8e
8xZD0OgryypBrlWXJB0wcvYesfUefQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFIRp
D9/5NIc51x2hMd1019N2W06DMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CMDZEMDg5NEZEMzQxMUVFQUQzRTI2MUQwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlVeMA0GCSqGSIb3DQEB
CwUAA4IBAQCbruV1wolZKs6cuTTqSYfTofWDc/c5nwBNkUK8QmoA6wSEDaO+1keU
ucJvOB6DZASC2Xt/1LVl9ZouXfI4TFVhxb8y4zq6ZAimocLKzaVAA1tcxZm2R5Bc
bGTr96SVJX4ZKGWs9b6P2yW9vEuGDdQVfiSJW2WyUd0v/PUDSSWTBm2sYTHNy5BQ
x1vZE9t96/XwAxiSeAtcUAAR1vSWA/mW7vVncBrvYiiAu8+xOez45eMIONA7OmTw
kvpZvT9hBH5Kk5LWDJUq9lqaseGo8LtyBthZWhgmB8Ta/Bp+/8aCzfFCZ86I69nG
W6u314+H+6uGg9Ei0rl1pKfTsJBq/N1C
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:35 2024 by rpki-client on console-fra.rpki-client.org