Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C5DFAA66FD3311EE92DE3C16017001B1.roa
File: C5DFAA66FD3311EE92DE3C16017001B1.roa (raw, json)
Hash identifier: HlWypIDqqMUuii6bNCvIQ+nFDb3JKOHfnuqdooIneZA=
Subject key identifier: 21:C7:E1:0E:09:5B:BB:5F:96:EB:4A:01:E4:D1:C8:C0:70:46:83:BE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ADFD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C5DFAA66FD3311EE92DE3C16017001B1.roa
Signing time: Thu 18 Apr 2024 03:28:50 +0000
ROA not before: Thu 18 Apr 2024 03:28:46 +0000
ROA not after: Sun 19 May 2024 03:28:46 +0000
asID: 29802
IP address blocks: 154.203.37.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44541 (0xadfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 18 03:28:46 2024 GMT
Not After : May 19 03:28:46 2024 GMT
Subject: CN=66209372-6d37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:a4:64:da:3d:e3:a2:9b:1a:02:b1:7d:77:64:
29:84:bd:a0:84:be:9d:2e:36:62:fd:38:10:55:55:
97:95:0e:eb:a2:dd:ce:17:e2:04:48:8a:ac:38:ab:
2f:99:af:1a:0b:12:83:92:8e:83:7f:3d:b9:2e:da:
44:97:4b:15:48:45:c1:4b:e8:88:06:48:a3:ee:8a:
c1:ff:d6:26:3d:03:c8:fc:36:1b:c3:4e:91:e1:24:
8b:3c:9a:a7:8b:56:7e:9c:51:de:b3:61:45:b5:bc:
c9:95:32:bf:b9:18:09:4c:f1:fa:c7:c3:fd:05:1c:
37:cd:01:84:1c:c9:ec:ac:67:a2:fa:cb:96:31:32:
d8:90:a8:ab:92:9a:a5:82:0b:93:36:59:cf:fe:a9:
a1:3d:a4:17:c2:06:7a:54:e9:ad:70:53:f9:81:50:
a2:5b:ea:84:65:fe:6c:d1:e3:5c:51:0d:28:0b:96:
2a:8e:88:55:36:42:44:12:9b:61:86:5e:ac:a0:96:
1c:28:79:e9:1c:05:4d:3f:6b:55:2a:ac:95:2b:f9:
d5:43:c1:8c:80:ae:31:5f:72:2d:7c:1e:ba:40:09:
03:b8:39:0e:fd:63:48:32:0b:90:6a:fe:65:f3:8f:
7e:e7:fb:83:9a:23:43:db:a6:f7:0d:c8:f9:41:81:
c3:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:C7:E1:0E:09:5B:BB:5F:96:EB:4A:01:E4:D1:C8:C0:70:46:83:BE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C5DFAA66FD3311EE92DE3C16017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.37.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:83:82:0e:bc:db:e7:14:5a:64:3a:03:ee:5f:75:cf:d5:ca:
52:de:27:6c:ad:c1:8e:ed:24:da:67:b4:40:84:fe:53:fe:06:
1c:be:33:ed:3e:ec:9e:44:15:b9:fd:42:b8:d7:71:18:96:24:
41:6a:6b:63:00:3f:62:cb:76:b4:80:2c:00:d1:b8:81:58:ad:
fb:b3:1b:bd:f5:eb:d0:e8:2d:fb:14:6a:7b:0a:74:a5:b5:ba:
97:9c:6e:e6:5b:01:12:f2:2c:3d:73:23:94:f5:d1:54:33:db:
40:1f:e2:c7:7c:0f:30:6e:6b:06:8d:ed:ee:1b:c9:07:56:4b:
dd:35:88:9a:6b:e1:1a:46:ad:71:ba:ec:4b:50:03:f4:dd:c7:
a3:9d:d6:db:04:2b:1b:c3:f4:b8:26:39:5e:91:41:33:7c:6c:
51:2c:b6:ed:bb:95:8b:38:10:46:e1:34:c9:1e:ab:2a:11:6a:
f3:d4:ea:05:74:85:c2:31:e7:b8:b1:44:2c:dd:9b:58:c4:17:
7d:1a:e3:37:ec:ba:68:5d:79:a0:27:dd:93:6d:83:d0:75:32:
8c:1a:97:78:60:33:1f:a9:c2:e8:fb:9d:7a:14:3b:63:4c:11:
38:16:2e:86:47:0b:6c:26:bf:cd:13:f8:64:be:d8:27:79:17:
ed:e0:24:21
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAK39MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDE4MDMyODQ2WhcNMjQwNTE5MDMyODQ2WjAYMRYw
FAYDVQQDEw02NjIwOTM3Mi02ZDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAkaRk2j3jopsaArF9d2QphL2ghL6dLjZi/TgQVVWXlQ7rot3OF+IESIqs
OKsvma8aCxKDko6Dfz25LtpEl0sVSEXBS+iIBkij7orB/9YmPQPI/DYbw06R4SSL
PJqni1Z+nFHes2FFtbzJlTK/uRgJTPH6x8P9BRw3zQGEHMnsrGei+suWMTLYkKir
kpqlgguTNlnP/qmhPaQXwgZ6VOmtcFP5gVCiW+qEZf5s0eNcUQ0oC5YqjohVNkJE
Epthhl6soJYcKHnpHAVNP2tVKqyVK/nVQ8GMgK4xX3ItfB66QAkDuDkO/WNIMguQ
av5l849+5/uDmiND26b3Dcj5QYHDLwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCHH
4Q4JW7tflutKAeTRyMBwRoO+MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9DNURGQUE2NkZEMzMxMUVFOTJERTNDMTYwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsslMA0GCSqGSIb3DQEB
CwUAA4IBAQCwg4IOvNvnFFpkOgPuX3XP1cpS3idsrcGO7STaZ7RAhP5T/gYcvjPt
PuyeRBW5/UK413EYliRBamtjAD9iy3a0gCwA0biBWK37sxu99evQ6C37FGp7CnSl
tbqXnG7mWwES8iw9cyOU9dFUM9tAH+LHfA8wbmsGje3uG8kHVkvdNYiaa+EaRq1x
uuxLUAP03cejndbbBCsbw/S4JjlekUEzfGxRLLbtu5WLOBBG4TTJHqsqEWrz1OoF
dIXCMee4sUQs3ZtYxBd9GuM37LpoXXmgJ92TbYPQdTKMGpd4YDMfqcLo+516FDtj
TBE4Fi6GRwtsJr/NE/hkvtgneRft4CQh
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:37 2024 by rpki-client on console-fra.rpki-client.org