Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CC84B6DAE75E11EEAF6E5782775412E6.roa
File: CC84B6DAE75E11EEAF6E5782775412E6.roa (raw, json)
Hash identifier: +L3nonfZUatPVVbZ/VX+EwbVfLImm0n4/A1H3wwy8NI=
Subject key identifier: 6F:6D:53:00:82:FD:18:EF:C0:D5:52:59:F5:F1:17:5F:67:38:4D:77
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A4F5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CC84B6DAE75E11EEAF6E5782775412E6.roa
Signing time: Thu 21 Mar 2024 08:41:24 +0000
ROA not before: Thu 21 Mar 2024 08:41:21 +0000
ROA not after: Tue 23 Apr 2024 08:41:21 +0000
asID: 44559
IP address blocks: 154.222.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42229 (0xa4f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 08:41:21 2024 GMT
Not After : Apr 23 08:41:21 2024 GMT
Subject: CN=65fbf2b4-5653
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:e0:d3:e2:01:a8:41:76:20:a1:c2:89:2e:1f:
b7:15:ef:1f:bb:5b:05:6e:e6:cd:d2:66:a0:4d:62:
b5:1b:d8:ea:a3:15:e1:ac:c6:57:d1:0d:62:a6:69:
fb:77:5c:71:e0:4d:fa:8c:16:84:33:7e:1b:fb:ae:
37:5d:0e:af:b6:ac:8a:ae:5e:77:02:4c:33:de:5f:
35:aa:e1:3b:04:b3:25:57:51:f7:e0:a9:e6:40:4c:
23:51:45:fc:7d:2e:e4:f5:a2:f4:64:df:1f:45:07:
7d:83:96:cd:b2:07:78:0d:d4:ce:80:73:9d:95:62:
cc:3f:4e:dd:68:ac:b4:51:7e:a9:0d:3e:24:80:b5:
d6:5b:9c:19:2d:00:ea:f6:32:f1:7a:b4:1f:14:b1:
78:79:5f:dd:aa:c9:8e:c4:d6:69:4b:d6:93:ea:c9:
51:f8:f0:4f:4b:db:80:2e:c3:ab:fe:6d:e0:69:63:
2f:bb:11:02:9e:24:3e:d2:4c:10:58:39:72:f6:f6:
48:64:28:64:94:45:b0:3c:e1:77:f4:79:62:c3:29:
b8:f1:65:15:85:93:b2:cf:1f:9c:b2:32:66:01:11:
90:45:f1:2f:12:3b:73:d6:d2:11:0f:4d:8a:02:96:
e5:4d:d1:2d:b6:a9:41:02:ab:55:d6:e4:e8:71:8a:
8a:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:6D:53:00:82:FD:18:EF:C0:D5:52:59:F5:F1:17:5F:67:38:4D:77
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CC84B6DAE75E11EEAF6E5782775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.30.0/24
Signature Algorithm: sha256WithRSAEncryption
64:13:95:6a:11:e8:b4:34:37:e7:49:6e:cf:61:7c:5f:8a:97:
3a:67:5a:13:cc:39:b8:ec:d9:4f:11:7d:1c:a6:32:11:f2:1b:
83:43:81:96:35:0b:64:ca:ce:8c:81:4a:97:ae:d0:85:e7:06:
f7:aa:81:68:fd:d0:8b:86:12:1a:96:20:d3:ed:70:8f:4d:6b:
05:eb:7a:86:4c:3a:26:97:95:2d:95:69:0a:9a:57:f2:20:c7:
56:77:98:18:7c:a8:46:d6:ef:83:03:a4:0b:4e:ae:8c:8b:6f:
4e:eb:a6:fc:86:86:f1:07:36:8e:e3:05:cd:9b:bb:af:9e:f0:
58:73:3d:21:6d:df:d8:2a:3e:60:22:13:c1:76:17:9a:a3:3d:
dc:16:e2:a3:ef:52:b5:c1:80:a2:d4:af:51:6a:d1:9e:3f:df:
d4:71:65:22:0a:08:20:ec:5b:9f:9d:61:87:da:83:45:97:30:
4c:f3:98:fc:6c:ca:e8:fa:9b:33:f9:2d:87:39:d7:9e:a8:f0:
a2:4d:b9:7d:7b:1b:60:06:c4:2c:1f:06:3b:16:5a:44:78:00:
d4:9a:37:dc:11:b0:07:ac:0a:bb:33:be:0a:b9:52:7f:7b:09:
8e:1e:b9:6d:d6:2d:8a:f8:31:0d:c7:ae:d3:d6:01:de:70:3e:
72:45:12:95
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKT1MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMDg0MTIxWhcNMjQwNDIzMDg0MTIxWjAYMRYw
FAYDVQQDEw02NWZiZjJiNC01NjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0ODT4gGoQXYgocKJLh+3Fe8fu1sFbubN0magTWK1G9jqoxXhrMZX0Q1i
pmn7d1xx4E36jBaEM34b+643XQ6vtqyKrl53Akwz3l81quE7BLMlV1H34KnmQEwj
UUX8fS7k9aL0ZN8fRQd9g5bNsgd4DdTOgHOdlWLMP07daKy0UX6pDT4kgLXWW5wZ
LQDq9jLxerQfFLF4eV/dqsmOxNZpS9aT6slR+PBPS9uALsOr/m3gaWMvuxECniQ+
0kwQWDly9vZIZChklEWwPOF39Hliwym48WUVhZOyzx+csjJmARGQRfEvEjtz1tIR
D02KApblTdEttqlBAqtV1uTocYqKnwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFG9t
UwCC/RjvwNVSWfXxF19nOE13MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9DQzg0QjZEQUU3NUUxMUVFQUY2RTU3ODI3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt4eMA0GCSqGSIb3DQEB
CwUAA4IBAQBkE5VqEei0NDfnSW7PYXxfipc6Z1oTzDm47NlPEX0cpjIR8huDQ4GW
NQtkys6MgUqXrtCF5wb3qoFo/dCLhhIaliDT7XCPTWsF63qGTDoml5UtlWkKmlfy
IMdWd5gYfKhG1u+DA6QLTq6Mi29O66b8hobxBzaO4wXNm7uvnvBYcz0hbd/YKj5g
IhPBdheaoz3cFuKj71K1wYCi1K9RatGeP9/UcWUiCggg7FufnWGH2oNFlzBM85j8
bMro+psz+S2HOdeeqPCiTbl9extgBsQsHwY7FlpEeADUmjfcEbAHrAq7M74KuVJ/
ewmOHrlt1i2K+DENx67T1gHecD5yRRKV
-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:25 2024 by rpki-client on console-fra.rpki-client.org