Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CA58E98E473711EE885CFB544AD9E6FC.roa
File: CA58E98E473711EE885CFB544AD9E6FC.roa (raw, json)
Hash identifier: HA0SMBCQWa1dq2fAliWh0LrFrjaJgXxepvIIBOWvk6Q=
Subject key identifier: F1:05:0F:2B:A3:7C:52:4E:5F:4D:C3:E4:F9:C7:72:E2:C0:FD:1B:AD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3ADB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CA58E98E473711EE885CFB544AD9E6FC.roa
Signing time: Wed 30 Aug 2023 13:19:04 +0000
ROA not before: Wed 30 Aug 2023 13:19:01 +0000
ROA not after: Thu 08 Aug 2024 13:19:01 +0000
asID: 133199
IP address blocks: 154.204.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15067 (0x3adb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 30 13:19:01 2023 GMT
Not After : Aug 8 13:19:01 2024 GMT
Subject: CN=64ef41c8-71e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:ec:ae:b0:43:b1:07:36:c3:c3:6c:3d:53:da:
19:bf:3b:c2:f0:bd:db:a9:8f:71:51:64:fe:0d:79:
1b:71:6f:46:71:89:49:29:a0:98:36:6a:f6:31:8b:
f2:1b:f3:e5:10:9b:33:7f:5d:a9:87:c3:e6:6b:24:
ca:ce:6d:44:93:08:02:af:ed:19:f9:13:f7:8a:4a:
25:f0:d8:5d:ac:7d:8d:24:23:04:74:a5:ea:32:1e:
67:2e:2d:08:ea:2b:9f:7e:09:4d:e9:43:60:4e:f2:
61:c8:d9:4c:8f:d4:d6:0b:72:63:14:f1:3c:b3:9d:
29:25:e2:66:62:eb:db:9f:76:f0:4f:39:42:8b:07:
68:e0:f3:b5:08:65:ad:a4:a0:e0:a5:e5:71:3e:df:
70:40:f2:0a:fe:45:75:2b:87:4c:6d:ed:27:09:9c:
85:56:ff:08:ed:9d:c0:9e:8e:02:ea:7e:81:35:e3:
d5:fa:3f:43:5f:73:56:da:74:86:71:84:4e:d6:3e:
30:f1:1c:a0:e5:4a:ba:59:00:7c:26:66:2c:86:09:
df:f7:fc:77:e3:2e:70:a1:2e:72:3b:80:4a:35:61:
cd:47:a1:2c:b6:10:25:33:00:4a:0a:67:69:00:65:
dc:08:50:c1:1b:3b:93:3a:99:19:0b:d8:e9:29:9a:
33:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:05:0F:2B:A3:7C:52:4E:5F:4D:C3:E4:F9:C7:72:E2:C0:FD:1B:AD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CA58E98E473711EE885CFB544AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.46.0/24
Signature Algorithm: sha256WithRSAEncryption
21:f6:df:fd:65:a8:57:76:9d:8d:e9:69:0d:0c:07:f4:bd:ea:
42:db:d1:d4:90:de:a3:55:ed:4e:e3:2d:3e:5c:8b:9c:8c:e6:
59:a8:fb:4f:24:b6:9f:8f:db:ed:71:4a:0a:17:78:2e:7f:c6:
73:14:c0:68:14:15:12:a1:21:9c:83:ae:bd:cb:1d:02:e0:0b:
17:fa:b6:67:f2:7b:f5:5d:30:0f:98:27:11:67:23:2f:6b:4d:
31:23:4b:12:54:ac:30:38:1d:ef:29:98:76:5d:b1:fc:51:32:
a4:d9:6a:d8:ac:73:20:19:29:b8:15:14:2e:3f:61:76:44:8d:
b0:e9:36:bb:d7:24:99:25:02:cc:38:81:fe:44:f2:c7:a0:27:
44:85:37:8a:c8:16:b8:60:a3:04:7f:9e:0c:ac:00:55:79:35:
58:cb:e6:4a:2f:a1:6f:24:d2:e0:f8:c3:31:b4:49:12:ca:f9:
39:ee:ab:38:a6:ea:f7:3b:9d:d0:d8:44:9d:47:e5:5b:8a:df:
f4:0e:5d:83:05:51:92:77:d4:5b:79:db:73:0d:92:a0:2d:d0:
a8:34:1c:c5:d4:47:f7:02:6e:eb:7c:a1:7b:56:cc:54:a0:fa:
97:61:65:73:8e:c4:9e:af:ba:b3:6d:0d:ac:59:a1:b4:09:77:
f3:d8:f9:f3
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICOtswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA4MzAxMzE5MDFaFw0yNDA4MDgxMzE5MDFaMBgxFjAU
BgNVBAMTDTY0ZWY0MWM4LTcxZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQD17K6wQ7EHNsPDbD1T2hm/O8Lwvdupj3FRZP4NeRtxb0ZxiUkpoJg2avYx
i/Ib8+UQmzN/XamHw+ZrJMrObUSTCAKv7Rn5E/eKSiXw2F2sfY0kIwR0peoyHmcu
LQjqK59+CU3pQ2BO8mHI2UyP1NYLcmMU8TyznSkl4mZi69ufdvBPOUKLB2jg87UI
Za2koOCl5XE+33BA8gr+RXUrh0xt7ScJnIVW/wjtncCejgLqfoE149X6P0Nfc1ba
dIZxhE7WPjDxHKDlSrpZAHwmZiyGCd/3/HfjLnChLnI7gEo1Yc1HoSy2ECUzAEoK
Z2kAZdwIUMEbO5M6mRkL2OkpmjPvAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU8QUP
K6N8Uk5fTcPk+cdy4sD9G60wHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4L0NBNThFOThFNDczNzExRUU4ODVDRkI1NDRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACazC4wDQYJKoZIhvcNAQEL
BQADggEBACH23/1lqFd2nY3paQ0MB/S96kLb0dSQ3qNV7U7jLT5ci5yM5lmo+08k
tp+P2+1xSgoXeC5/xnMUwGgUFRKhIZyDrr3LHQLgCxf6tmfye/VdMA+YJxFnIy9r
TTEjSxJUrDA4He8pmHZdsfxRMqTZatiscyAZKbgVFC4/YXZEjbDpNrvXJJklAsw4
gf5E8segJ0SFN4rIFrhgowR/ngysAFV5NVjL5kovoW8k0uD4wzG0SRLK+Tnuqzim
6vc7ndDYRJ1H5VuK3/QOXYMFUZJ31Ft523MNkqAt0Kg0HMXUR/cCbut8oXtWzFSg
+pdhZXOOxJ6vurNtDaxZobQJd/PY+fM=
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:20 2024 by rpki-client on console-ams.rpki-client.org