Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C342804A09B811EE90D6DE7B4AD9E6FC.roa
File: C342804A09B811EE90D6DE7B4AD9E6FC.roa (raw, json)
Hash identifier: 29ltNqGK5IoCaJ6ihSnlQFn5/UnNe6HeY569dh7ln2A=
Subject key identifier: 40:E5:0F:6D:AB:8E:F4:58:1B:3C:9E:EF:87:7F:C8:A2:9D:2B:19:4C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2B6F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C342804A09B811EE90D6DE7B4AD9E6FC.roa
Signing time: Tue 13 Jun 2023 07:06:05 +0000
ROA not before: Tue 13 Jun 2023 07:06:01 +0000
ROA not after: Sat 15 Jun 2024 07:06:01 +0000
asID: 138678
IP address blocks: 154.88.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11119 (0x2b6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 13 07:06:01 2023 GMT
Not After : Jun 15 07:06:01 2024 GMT
Subject: CN=6488155d-c244
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:c5:dd:8c:81:d9:36:f7:55:a1:23:f4:a2:4f:
ca:bf:33:97:50:75:d4:cb:46:c8:fe:3d:4a:58:36:
50:1e:13:1a:77:b3:18:0d:ef:7c:90:a8:af:51:51:
b9:6b:16:d1:e1:0e:b6:3c:a6:80:5d:ea:0d:7d:d8:
c2:0b:41:19:ed:b7:0c:f9:a5:c2:e9:49:23:b9:00:
c1:65:5a:5d:cc:6c:64:86:10:53:14:51:c1:92:81:
f0:bb:bc:15:9c:c8:d9:0d:7f:18:f6:3d:c2:fa:e7:
90:d4:46:37:07:c6:03:2a:49:08:19:0e:86:a2:cd:
72:6a:40:e6:b5:01:7e:2e:70:3c:5d:d4:4d:61:5c:
00:b8:54:4e:08:46:da:3d:93:d8:1f:3d:ef:3d:11:
4f:78:58:d7:03:07:78:25:59:4d:a8:fd:99:49:e9:
81:d8:98:63:9d:5f:d6:ae:90:40:23:67:15:19:2b:
d3:dc:60:50:bb:51:b2:f9:b0:e5:75:d2:b0:b7:96:
95:90:cc:73:1c:9a:dd:fc:40:46:3c:b2:6e:5b:7f:
ac:77:c3:cb:89:bb:29:cc:b5:ab:bc:6f:9f:75:b6:
d5:58:03:ba:0c:55:77:1d:69:c8:59:80:6b:43:e0:
83:9f:92:97:01:df:5d:5a:f2:2c:83:38:56:f4:fa:
5b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:E5:0F:6D:AB:8E:F4:58:1B:3C:9E:EF:87:7F:C8:A2:9D:2B:19:4C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C342804A09B811EE90D6DE7B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.2.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:e7:cb:c9:8e:87:f6:ea:36:83:8d:4c:28:12:4f:6d:2d:5f:
43:74:1b:87:da:80:65:14:6c:36:05:19:fc:14:6d:6f:9e:be:
ca:62:99:6e:62:9a:f8:d5:1f:83:94:e7:89:e8:a4:43:8e:cb:
b2:4f:f1:36:8e:00:0c:8c:ce:96:b3:0a:22:45:a7:04:23:66:
f8:5c:6f:cf:4a:e9:66:54:3e:76:c9:7e:71:3c:11:d0:ae:62:
9a:fc:ec:e8:e6:99:ea:c7:4c:05:50:c0:31:88:0e:1c:53:cb:
7f:eb:96:20:d8:d7:f5:b6:28:7b:57:6d:8f:f6:00:21:ba:bc:
f0:08:21:c8:d9:16:46:7a:d5:7c:ee:ac:0a:b7:b7:c2:98:d3:
e9:6f:6f:d3:da:a1:cc:0d:00:12:ff:82:9f:4f:e5:5f:f2:9b:
78:06:79:df:50:68:68:26:8f:77:9f:42:49:94:0a:be:cd:13:
ec:9b:1a:41:b1:da:c4:2a:fa:4d:7d:bf:77:37:f3:fc:6f:ad:
8b:3f:f7:8d:41:09:0d:01:a7:39:b8:c5:c0:23:42:85:e8:be:
f4:ae:d2:da:5b:e7:84:64:18:0a:ef:0b:cd:87:db:cb:ca:ac:
03:4c:d3:55:85:a2:b7:82:a2:bf:99:44:2d:27:63:9c:6c:e0:
7b:00:ad:4b
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICK28wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA2MTMwNzA2MDFaFw0yNDA2MTUwNzA2MDFaMBgxFjAU
BgNVBAMTDTY0ODgxNTVkLWMyNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDfxd2Mgdk291WhI/SiT8q/M5dQddTLRsj+PUpYNlAeExp3sxgN73yQqK9R
UblrFtHhDrY8poBd6g192MILQRnttwz5pcLpSSO5AMFlWl3MbGSGEFMUUcGSgfC7
vBWcyNkNfxj2PcL655DURjcHxgMqSQgZDoaizXJqQOa1AX4ucDxd1E1hXAC4VE4I
Rto9k9gfPe89EU94WNcDB3glWU2o/ZlJ6YHYmGOdX9aukEAjZxUZK9PcYFC7UbL5
sOV10rC3lpWQzHMcmt38QEY8sm5bf6x3w8uJuynMtau8b591ttVYA7oMVXcdachZ
gGtD4IOfkpcB311a8iyDOFb0+lvXAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUQOUP
bauO9FgbPJ7vh3/Iop0rGUwwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4L0MzNDI4MDRBMDlCODExRUU5MEQ2REU3QjRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaWAIwDQYJKoZIhvcNAQEL
BQADggEBALLny8mOh/bqNoONTCgST20tX0N0G4fagGUUbDYFGfwUbW+evspimW5i
mvjVH4OU54nopEOOy7JP8TaOAAyMzpazCiJFpwQjZvhcb89K6WZUPnbJfnE8EdCu
Ypr87OjmmerHTAVQwDGIDhxTy3/rliDY1/W2KHtXbY/2ACG6vPAIIcjZFkZ61Xzu
rAq3t8KY0+lvb9PaocwNABL/gp9P5V/ym3gGed9QaGgmj3efQkmUCr7NE+ybGkGx
2sQq+k19v3c38/xvrYs/941BCQ0Bpzm4xcAjQoXovvSu0tpb54RkGArvC82H28vK
rANM01WForeCor+ZRC0nY5xs4HsArUs=
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:20 2024 by rpki-client on console-ams.rpki-client.org