Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B2A08818473911EEAC180B5B4AD9E6FC.roa
File: B2A08818473911EEAC180B5B4AD9E6FC.roa (raw, json)
Hash identifier: hadxBMitQnC0JR9G8okW7xQ8yDyYxW35jU4LmH+xYvA=
Subject key identifier: 62:A2:08:9C:BA:16:9B:F5:57:6A:18:9D:C0:61:49:12:2C:BD:69:B1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3AF3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B2A08818473911EEAC180B5B4AD9E6FC.roa
Signing time: Wed 30 Aug 2023 13:32:43 +0000
ROA not before: Wed 30 Aug 2023 13:32:40 +0000
ROA not after: Thu 08 Aug 2024 13:32:40 +0000
asID: 133199
IP address blocks: 154.197.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15091 (0x3af3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 30 13:32:40 2023 GMT
Not After : Aug 8 13:32:40 2024 GMT
Subject: CN=64ef44fb-273f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:29:f0:1e:e7:f5:3c:46:1d:d4:ce:44:0b:76:
15:df:58:d2:df:4b:e8:52:97:2d:af:96:11:44:b0:
a7:58:01:bd:af:48:df:16:2d:67:f1:ff:b9:9c:b8:
63:30:f5:98:34:3e:8c:c6:c3:c2:66:7d:62:fd:f5:
ce:9f:c0:ba:ee:ff:20:de:55:97:68:16:7e:80:c6:
dc:a0:fa:5f:a2:da:7f:3d:42:86:7b:e9:a3:b1:91:
01:5f:24:52:ff:2f:ff:24:f2:2d:d0:e4:18:d2:cf:
c3:15:32:de:f5:7d:2f:41:81:57:ff:5e:07:b4:74:
03:22:3b:bf:62:e1:03:a2:fe:73:17:55:af:32:ef:
6a:12:a6:7e:6c:a0:21:70:ca:90:71:64:b4:a4:7a:
28:1a:b3:dc:79:3a:8f:27:73:94:3c:fa:0b:a0:dc:
9b:da:6f:8c:7f:82:e2:3e:0b:38:bc:1f:f4:35:79:
09:3f:ad:41:cb:ee:1f:7d:a1:e3:68:85:0f:ab:b7:
be:8d:9a:dd:22:ca:0a:a3:8b:5b:0d:c8:70:ea:93:
9e:21:84:32:d6:11:f3:cd:5d:ab:74:97:95:1d:12:
8a:a0:75:39:26:50:36:da:b1:19:1c:24:d1:5e:93:
6f:9c:d3:5a:53:d3:6a:55:e1:bb:eb:b4:e0:0b:e3:
e6:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:A2:08:9C:BA:16:9B:F5:57:6A:18:9D:C0:61:49:12:2C:BD:69:B1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B2A08818473911EEAC180B5B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.27.0/24
Signature Algorithm: sha256WithRSAEncryption
96:5d:1b:7a:2f:a9:ef:ab:d8:eb:89:97:0f:cc:f1:3c:3b:a4:
0a:15:28:76:b8:04:2e:3c:f0:4d:03:81:80:82:95:1c:cd:1f:
34:10:26:28:ce:21:db:35:6c:78:1b:62:40:15:ab:b2:e6:0c:
8c:56:19:81:74:ab:db:5b:49:46:59:91:f6:b8:d6:6e:bc:8d:
68:88:cc:3d:33:e9:c3:ca:27:6f:e6:fb:4c:98:ea:31:29:cb:
ca:b4:b9:b0:5d:70:82:27:28:12:98:35:2b:15:78:23:51:62:
9b:42:7f:de:d0:bf:d7:f4:f9:e4:55:05:ba:f7:bd:67:f4:93:
ea:dd:a7:36:63:0e:a7:f0:73:91:5b:bc:37:50:5b:d5:17:72:
c6:0e:61:22:89:90:9b:45:90:f3:89:b4:c4:df:d2:1a:f8:22:
26:16:66:1c:4a:54:64:01:70:30:7a:0b:7b:a0:ff:29:19:e0:
88:a5:ed:04:3e:a1:e9:12:97:7d:49:3e:ae:41:39:ba:10:af:
3e:4c:b7:dc:3c:a0:0c:6c:d8:b8:f1:7d:ef:1a:f5:6f:35:92:
26:c4:f2:a7:97:a7:a4:b3:fc:ec:c8:c1:db:f0:e6:2e:21:d5:
19:0c:58:ce:76:9e:5c:0f:cb:c2:87:42:e1:94:e6:16:35:e4:
b4:61:d1:7a
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICOvMwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA4MzAxMzMyNDBaFw0yNDA4MDgxMzMyNDBaMBgxFjAU
BgNVBAMTDTY0ZWY0NGZiLTI3M2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDvKfAe5/U8Rh3UzkQLdhXfWNLfS+hSly2vlhFEsKdYAb2vSN8WLWfx/7mc
uGMw9Zg0PozGw8JmfWL99c6fwLru/yDeVZdoFn6Axtyg+l+i2n89QoZ76aOxkQFf
JFL/L/8k8i3Q5BjSz8MVMt71fS9BgVf/Xge0dAMiO79i4QOi/nMXVa8y72oSpn5s
oCFwypBxZLSkeigas9x5Oo8nc5Q8+gug3Jvab4x/guI+Czi8H/Q1eQk/rUHL7h99
oeNohQ+rt76Nmt0iygqji1sNyHDqk54hhDLWEfPNXat0l5UdEoqgdTkmUDbasRkc
JNFek2+c01pT02pV4bvrtOAL4+bFAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUYqII
nLoWm/VXahidwGFJEiy9abEwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4L0IyQTA4ODE4NDczOTExRUVBQzE4MEI1QjRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaxRswDQYJKoZIhvcNAQEL
BQADggEBAJZdG3ovqe+r2OuJlw/M8Tw7pAoVKHa4BC488E0DgYCClRzNHzQQJijO
Ids1bHgbYkAVq7LmDIxWGYF0q9tbSUZZkfa41m68jWiIzD0z6cPKJ2/m+0yY6jEp
y8q0ubBdcIInKBKYNSsVeCNRYptCf97Qv9f0+eRVBbr3vWf0k+rdpzZjDqfwc5Fb
vDdQW9UXcsYOYSKJkJtFkPOJtMTf0hr4IiYWZhxKVGQBcDB6C3ug/ykZ4Iil7QQ+
oekSl31JPq5BOboQrz5Mt9w8oAxs2Ljxfe8a9W81kibE8qeXp6Sz/OzIwdvw5i4h
1RkMWM52nlwPy8KHQuGU5hY15LRh0Xo=
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:35 2024 by rpki-client on console-fra.rpki-client.org