Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7208608E75B11EEB1FF8F6B775412E6.roa
File: D7208608E75B11EEB1FF8F6B775412E6.roa (raw, json)
Hash identifier: 6uVPp40Qgq3AjQner6mzaDipdPJLXqlfTA+iolITJ/U=
Subject key identifier: 29:9A:3D:E9:37:18:14:0F:DF:96:6C:3F:0E:4C:21:15:09:29:A1:0C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A4D9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7208608E75B11EEB1FF8F6B775412E6.roa
Signing time: Thu 21 Mar 2024 08:20:13 +0000
ROA not before: Thu 21 Mar 2024 08:20:10 +0000
ROA not after: Tue 23 Apr 2024 08:20:10 +0000
asID: 44559
IP address blocks: 154.211.44.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42201 (0xa4d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 08:20:10 2024 GMT
Not After : Apr 23 08:20:10 2024 GMT
Subject: CN=65fbedbd-fc50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:20:79:45:29:23:7a:47:49:f4:2c:b1:1b:41:
c5:85:6a:d5:6b:40:26:0c:4c:f5:6c:f7:14:1e:e4:
ed:f9:7f:ef:0f:c7:d2:9e:8e:74:7e:18:1e:6d:91:
b8:c9:53:ca:6b:dd:6a:3f:d0:bc:ac:63:fb:c7:96:
f9:c8:40:da:bf:85:73:86:e8:a1:e7:36:c7:a9:d2:
f5:97:fa:77:57:c2:8c:47:ec:c2:63:ba:2c:44:71:
ca:46:ec:f0:61:a6:a9:3b:1c:54:e9:73:69:39:6e:
fc:59:d2:01:e0:25:67:40:72:f0:75:80:62:18:7d:
46:88:c9:b6:d8:58:f4:91:a4:07:fd:f1:f4:17:df:
24:2c:d0:1b:d7:01:a0:6c:a3:6a:c4:38:9d:a8:7e:
0c:45:fc:93:66:81:d2:c3:23:73:c9:9b:47:df:49:
96:52:be:24:47:1f:f3:3c:52:00:66:f0:a5:01:0f:
ac:27:53:9f:b7:dc:fd:5b:f1:ff:c1:39:88:2a:9e:
75:b9:aa:71:a5:f0:f1:83:53:0b:76:1c:ef:5c:26:
48:2c:f6:2a:7b:d5:0d:1c:99:2f:d0:5e:38:01:fd:
da:5b:02:3e:3c:2e:70:cf:fd:52:21:8d:34:d8:10:
91:b1:f3:b2:42:5a:b5:ea:8a:35:2f:16:cc:21:47:
c4:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:9A:3D:E9:37:18:14:0F:DF:96:6C:3F:0E:4C:21:15:09:29:A1:0C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7208608E75B11EEB1FF8F6B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.44.0/24
Signature Algorithm: sha256WithRSAEncryption
51:67:ec:b2:c9:12:b7:8c:fe:f0:32:ab:28:e9:95:78:23:fe:
37:09:d3:97:f9:81:10:3c:f2:d9:7e:24:7f:35:2b:e2:d5:59:
98:1e:1c:ce:f7:81:df:a6:bf:40:4a:35:3a:07:d3:c7:29:9a:
b6:2c:58:05:a7:ae:95:30:2a:ef:4f:78:6d:8b:ad:88:59:f3:
9d:9e:f8:73:1c:6a:4e:8f:11:f5:91:b4:9a:17:68:0a:6e:c5:
cc:e9:b7:8b:18:cd:0a:40:81:64:bc:f8:aa:07:98:d9:95:71:
13:b9:c9:cd:3e:88:d3:46:df:92:42:98:f6:76:32:61:5c:9f:
91:07:93:b4:bb:a7:8f:32:7d:e3:bf:a6:c8:52:71:10:9c:ca:
0b:ee:46:85:e8:75:26:37:45:f9:d2:14:4f:07:00:ae:ad:5c:
49:c8:8a:7c:a9:1d:5e:82:8c:e1:51:ed:88:cb:b6:5a:54:2a:
c5:c8:fc:7e:c9:d6:5a:15:42:81:af:fd:d6:5d:80:34:7e:eb:
9a:d3:a3:77:ee:31:3c:9c:db:67:17:90:18:f5:93:80:2d:66:
c7:6c:84:74:27:12:b4:0f:90:0b:54:ff:79:73:cd:8a:4b:42:
95:0c:6e:4e:00:be:b6:ad:56:0e:2c:df:e2:d4:38:eb:88:0a:
c0:6a:ee:f6
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKTZMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMDgyMDEwWhcNMjQwNDIzMDgyMDEwWjAYMRYw
FAYDVQQDEw02NWZiZWRiZC1mYzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqyB5RSkjekdJ9CyxG0HFhWrVa0AmDEz1bPcUHuTt+X/vD8fSno50fhge
bZG4yVPKa91qP9C8rGP7x5b5yEDav4Vzhuih5zbHqdL1l/p3V8KMR+zCY7osRHHK
RuzwYaapOxxU6XNpOW78WdIB4CVnQHLwdYBiGH1GiMm22Fj0kaQH/fH0F98kLNAb
1wGgbKNqxDidqH4MRfyTZoHSwyNzyZtH30mWUr4kRx/zPFIAZvClAQ+sJ1Oft9z9
W/H/wTmIKp51uapxpfDxg1MLdhzvXCZILPYqe9UNHJkv0F44Af3aWwI+PC5wz/1S
IY002BCRsfOyQlq16oo1LxbMIUfEOwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCma
Pek3GBQP35ZsPw5MIRUJKaEMMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9ENzIwODYwOEU3NUIxMUVFQjFGRjhGNkI3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtMsMA0GCSqGSIb3DQEB
CwUAA4IBAQBRZ+yyyRK3jP7wMqso6ZV4I/43CdOX+YEQPPLZfiR/NSvi1VmYHhzO
94Hfpr9ASjU6B9PHKZq2LFgFp66VMCrvT3hti62IWfOdnvhzHGpOjxH1kbSaF2gK
bsXM6beLGM0KQIFkvPiqB5jZlXETucnNPojTRt+SQpj2djJhXJ+RB5O0u6ePMn3j
v6bIUnEQnMoL7kaF6HUmN0X50hRPBwCurVxJyIp8qR1egozhUe2Iy7ZaVCrFyPx+
ydZaFUKBr/3WXYA0fuua06N37jE8nNtnF5AY9ZOALWbHbIR0JxK0D5ALVP95c82K
S0KVDG5OAL62rVYOLN/i1DjriArAau72
-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:25 2024 by rpki-client on console-fra.rpki-client.org