Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C273E84CAEC811EEBA556F58775412E6.roa
File: C273E84CAEC811EEBA556F58775412E6.roa (raw, json)
Hash identifier: orfnzgpNRXu99nTWwYRXtYJHzYCIaFs0cWo8R9yUFIY=
Subject key identifier: 12:A3:FC:E1:E9:EC:C6:6C:01:93:7B:8D:8F:C0:78:4B:46:A5:19:81
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 72E9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C273E84CAEC811EEBA556F58775412E6.roa
Signing time: Tue 09 Jan 2024 08:26:17 +0000
ROA not before: Tue 09 Jan 2024 08:26:14 +0000
ROA not after: Sat 11 Jan 2025 08:26:14 +0000
asID: 138995
IP address blocks: 154.198.48.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29417 (0x72e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 9 08:26:14 2024 GMT
Not After : Jan 11 08:26:14 2025 GMT
Subject: CN=659d0329-ea0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:23:e4:31:e3:7e:c2:91:ba:02:32:c2:ef:b6:
1f:6e:0d:30:34:ab:c8:7d:39:24:3f:5d:ab:1a:8a:
74:08:05:29:b8:e9:04:45:0c:0a:10:2b:7d:43:f7:
fd:42:67:27:d5:f3:ac:fc:99:ca:72:76:fb:c5:ca:
48:28:90:15:87:e9:8e:75:50:7b:08:fe:85:17:86:
23:b6:2e:d1:f4:20:af:90:77:3c:01:2b:79:ee:3a:
4c:76:07:e5:18:3a:f2:99:9a:e2:2b:6f:24:6b:2b:
f1:ae:7f:0d:b2:c7:2a:8b:11:d9:99:ec:f1:c6:df:
1d:2c:e9:e5:70:bb:bb:9c:60:52:d3:e0:86:ef:ae:
12:0c:0a:22:68:05:ab:6d:df:73:2e:3e:10:e4:89:
36:5c:4a:a8:e1:a0:c7:e1:92:2a:70:8d:a6:cc:19:
f0:da:32:d0:fb:1b:d3:77:dc:5b:fd:4f:e0:df:4e:
eb:94:29:02:b9:4e:0b:46:86:8e:c3:06:21:39:28:
33:15:bc:e1:88:60:39:e5:f1:3a:c8:56:d4:9c:0d:
53:e0:5f:24:fb:5e:5d:63:ee:90:e5:6d:4f:cf:09:
ed:c1:af:13:3a:30:d4:89:69:fc:ff:ea:ee:5a:25:
33:45:73:3b:99:51:fc:6f:ba:70:4b:9c:e0:87:bb:
e3:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:A3:FC:E1:E9:EC:C6:6C:01:93:7B:8D:8F:C0:78:4B:46:A5:19:81
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C273E84CAEC811EEBA556F58775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.48.0/21
Signature Algorithm: sha256WithRSAEncryption
37:4d:da:fb:14:a6:b1:e7:a9:03:90:17:fd:1e:e5:64:46:35:
9c:28:09:d7:fc:f9:4f:e6:24:a5:9b:9d:68:32:3e:fd:2e:2d:
1b:4a:e5:59:50:7b:f0:5a:f7:c2:6d:5a:05:4b:eb:fe:c8:bb:
39:e8:73:ed:86:cd:a7:ac:7d:7c:e5:e3:e1:4c:9d:2d:ec:56:
cb:1f:26:bd:b3:23:18:52:fd:87:b0:8e:1f:02:2d:2f:12:9f:
81:f0:9d:0d:30:7c:f1:d3:95:a1:af:4d:9e:30:1f:59:5c:be:
33:d6:f8:54:dc:ab:f6:16:fc:6e:e5:99:8f:22:cf:45:1b:fa:
4d:24:0c:de:99:40:81:72:4d:17:5b:72:4a:d2:59:8d:2a:db:
88:96:20:ad:b3:09:3c:28:18:a9:0e:cc:a7:c3:df:82:2a:34:
53:2a:ee:d9:d0:d3:a7:40:06:85:bc:c7:b5:38:32:70:ef:e6:
f3:9f:68:a6:00:c3:58:91:cb:6a:9f:d6:8e:00:c2:6a:6f:32:
57:de:c7:64:c3:76:db:7c:5a:f0:cd:97:59:3d:bd:f3:41:30:
f9:f0:63:20:d9:ff:f1:4a:8e:5f:3d:2b:56:9f:c1:fa:33:bd:
12:f4:85:53:7e:49:37:45:d3:1a:bc:04:58:69:45:0a:ac:45:
0f:4f:9d:ac
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICcukwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yNDAxMDkwODI2MTRaFw0yNTAxMTEwODI2MTRaMBgxFjAU
BgNVBAMTDTY1OWQwMzI5LWVhMGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCwI+Qx437CkboCMsLvth9uDTA0q8h9OSQ/XasainQIBSm46QRFDAoQK31D
9/1CZyfV86z8mcpydvvFykgokBWH6Y51UHsI/oUXhiO2LtH0IK+QdzwBK3nuOkx2
B+UYOvKZmuIrbyRrK/Gufw2yxyqLEdmZ7PHG3x0s6eVwu7ucYFLT4IbvrhIMCiJo
Batt33MuPhDkiTZcSqjhoMfhkipwjabMGfDaMtD7G9N33Fv9T+DfTuuUKQK5TgtG
ho7DBiE5KDMVvOGIYDnl8TrIVtScDVPgXyT7Xl1j7pDlbU/PCe3BrxM6MNSJafz/
6u5aJTNFczuZUfxvunBLnOCHu+M9AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUEqP8
4ensxmwBk3uNj8B4S0alGYEwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4L0MyNzNFODRDQUVDODExRUVCQTU1NkY1ODc3NTQxMkU2LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAOaxjAwDQYJKoZIhvcNAQEL
BQADggEBADdN2vsUprHnqQOQF/0e5WRGNZwoCdf8+U/mJKWbnWgyPv0uLRtK5VlQ
e/Ba98JtWgVL6/7Iuznoc+2GzaesfXzl4+FMnS3sVssfJr2zIxhS/Yewjh8CLS8S
n4HwnQ0wfPHTlaGvTZ4wH1lcvjPW+FTcq/YW/G7lmY8iz0Ub+k0kDN6ZQIFyTRdb
ckrSWY0q24iWIK2zCTwoGKkOzKfD34IqNFMq7tnQ06dABoW8x7U4MnDv5vOfaKYA
w1iRy2qf1o4AwmpvMlfex2TDdtt8WvDNl1k9vfNBMPnwYyDZ//FKjl89K1afwfoz
vRL0hVN+STdF0xq8BFhpRQqsRQ9Pnaw=
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:20 2024 by rpki-client on console-ams.rpki-client.org