Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B9AFF47C277C11EEACD9BF0D4AD9E6FC.roa
File: B9AFF47C277C11EEACD9BF0D4AD9E6FC.roa (raw, json)
Hash identifier: hnrvPngivWbKqHilWihFyocNGfIgT/1h3aJlJSUwhFQ=
Subject key identifier: D9:4C:70:9F:4B:5B:09:BA:28:D9:11:54:26:BA:D9:CF:B7:6A:0E:83
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3359
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B9AFF47C277C11EEACD9BF0D4AD9E6FC.roa
Signing time: Fri 21 Jul 2023 04:11:54 +0000
ROA not before: Fri 21 Jul 2023 04:11:51 +0000
ROA not after: Thu 13 Jun 2024 04:11:51 +0000
asID: 22773
IP address blocks: 154.88.18.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13145 (0x3359)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 21 04:11:51 2023 GMT
Not After : Jun 13 04:11:51 2024 GMT
Subject: CN=64ba058a-7c84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:1a:2e:7a:fe:11:d4:22:7c:58:64:2b:e2:f2:
fc:5c:2f:c4:1b:c9:14:69:ec:8e:69:ef:f9:a7:e2:
74:fa:30:b7:d6:d9:fd:4d:1b:e6:d8:17:d8:7d:98:
0b:00:22:6f:29:14:26:b8:49:1e:49:b6:39:13:a1:
d2:e6:54:46:24:09:b9:86:99:33:57:dd:bc:46:4a:
d2:cf:64:fc:f3:8a:62:50:5b:5d:08:18:2b:c1:01:
fa:f1:41:ff:f3:8a:59:74:0d:74:30:5d:45:3b:ff:
cc:cf:47:1c:b1:25:26:f0:0a:8e:9e:fb:9c:e6:47:
0d:c9:4d:ac:5c:33:f5:48:b8:db:d5:46:5b:fd:e6:
44:1c:83:34:94:8e:83:b7:c9:b7:d6:12:ae:ca:88:
6a:64:fb:5a:5b:ba:fa:35:8a:55:3f:a8:07:5a:bc:
f1:d2:7f:ea:e3:67:ed:5c:b4:27:cf:fe:5c:ea:15:
31:5d:27:4e:c7:07:cf:e0:75:1d:42:12:f8:c7:80:
e0:f3:be:1a:bc:84:f1:6f:a8:57:1b:15:e5:8c:19:
5a:68:a0:f5:db:43:49:f4:94:b1:17:56:ba:d0:20:
e7:5a:00:b6:82:e3:e5:9f:4e:3f:c3:a5:a5:10:fc:
c0:18:cc:b0:06:d6:f1:c3:1f:23:5f:75:fb:33:86:
05:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:4C:70:9F:4B:5B:09:BA:28:D9:11:54:26:BA:D9:CF:B7:6A:0E:83
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B9AFF47C277C11EEACD9BF0D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.18.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:1e:bb:ee:91:7b:1e:2c:35:2c:fc:2b:83:72:c5:ae:47:67:
64:ca:f1:e0:d2:d7:48:cf:1f:81:b2:fb:33:7d:a1:df:ec:dc:
52:86:7d:b9:b8:4f:87:86:f0:6a:ea:70:b2:74:b6:01:db:ed:
35:33:01:a0:d7:f3:b8:10:5a:94:4d:15:10:9e:06:96:e6:96:
1b:e3:ae:d4:0d:aa:a5:62:b7:90:17:49:88:3c:31:f3:71:e7:
5f:35:27:98:0d:01:40:9f:11:0b:d7:46:ea:3a:88:5c:bd:40:
62:48:c2:de:39:3b:3c:35:1a:2a:1a:1d:97:19:5b:4f:8e:bf:
b5:0d:e4:22:5e:28:fe:dc:ef:1d:b5:2f:2e:8f:5a:d4:a5:a3:
15:85:66:07:0c:cc:a6:a6:5b:e3:b4:58:f3:8c:aa:33:31:cf:
d8:19:ff:11:bd:4a:95:5d:31:8a:90:a7:27:ff:d5:26:4e:74:
ef:4f:be:56:12:dd:b2:2e:b6:32:ef:75:e9:f6:3f:3c:dc:a7:
b6:1a:ab:7f:5a:89:cf:ad:09:b7:d2:4e:69:24:2a:55:e2:09:
92:0a:8f:1c:c4:60:02:9b:4a:a1:c2:56:8f:8d:f4:0a:10:03:
f6:b6:46:fa:57:74:c8:91:80:0f:29:6a:27:68:33:89:5d:ef:
17:4b:24:82
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICM1kwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA3MjEwNDExNTFaFw0yNDA2MTMwNDExNTFaMBgxFjAU
BgNVBAMTDTY0YmEwNThhLTdjODQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDjGi56/hHUInxYZCvi8vxcL8QbyRRp7I5p7/mn4nT6MLfW2f1NG+bYF9h9
mAsAIm8pFCa4SR5JtjkTodLmVEYkCbmGmTNX3bxGStLPZPzzimJQW10IGCvBAfrx
Qf/zill0DXQwXUU7/8zPRxyxJSbwCo6e+5zmRw3JTaxcM/VIuNvVRlv95kQcgzSU
joO3ybfWEq7KiGpk+1pbuvo1ilU/qAdavPHSf+rjZ+1ctCfP/lzqFTFdJ07HB8/g
dR1CEvjHgODzvhq8hPFvqFcbFeWMGVpooPXbQ0n0lLEXVrrQIOdaALaC4+WfTj/D
paUQ/MAYzLAG1vHDHyNfdfszhgV1AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU2Uxw
n0tbCboo2RFUJrrZz7dqDoMwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4L0I5QUZGNDdDMjc3QzExRUVBQ0Q5QkYwRDRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGaWBIwDQYJKoZIhvcNAQEL
BQADggEBAC0eu+6Rex4sNSz8K4Nyxa5HZ2TK8eDS10jPH4Gy+zN9od/s3FKGfbm4
T4eG8GrqcLJ0tgHb7TUzAaDX87gQWpRNFRCeBpbmlhvjrtQNqqVit5AXSYg8MfNx
5181J5gNAUCfEQvXRuo6iFy9QGJIwt45Ozw1GioaHZcZW0+Ov7UN5CJeKP7c7x21
Ly6PWtSloxWFZgcMzKamW+O0WPOMqjMxz9gZ/xG9SpVdMYqQpyf/1SZOdO9PvlYS
3bIutjLvden2Pzzcp7Yaq39aic+tCbfSTmkkKlXiCZIKjxzEYAKbSqHCVo+N9AoQ
A/a2RvpXdMiRgA8paidoM4ld7xdLJII=
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:36 2024 by rpki-client on console-fra.rpki-client.org