Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DC9C7174E73C11EE8052CA77775412E6.roa
File: DC9C7174E73C11EE8052CA77775412E6.roa (raw, json)
Hash identifier: fwlmuyvTenWTfSVlerB+PcA0V/o4nJmckWhU/tS6oiY=
Subject key identifier: 6D:A4:B5:96:45:56:28:9E:82:9B:E7:E1:9C:78:27:7C:EF:36:DD:D6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A3AC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DC9C7174E73C11EE8052CA77775412E6.roa
Signing time: Thu 21 Mar 2024 04:38:28 +0000
ROA not before: Thu 21 Mar 2024 04:38:25 +0000
ROA not after: Tue 23 Apr 2024 04:38:25 +0000
asID: 44559
IP address blocks: 154.221.227.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41900 (0xa3ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 04:38:25 2024 GMT
Not After : Apr 23 04:38:25 2024 GMT
Subject: CN=65fbb9c4-7c98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:23:a9:b5:96:ac:aa:36:f7:fe:63:c4:74:9d:
8e:e0:f5:3f:c6:a8:d5:49:0b:26:17:80:3e:68:4e:
5d:68:1d:bf:93:6a:c7:cf:c5:9a:a7:6b:b5:c8:e7:
2f:51:c9:1e:4b:0f:dd:74:e5:9b:96:bb:05:5d:3c:
f8:c3:ad:75:76:4d:be:ce:20:45:7b:14:67:0d:66:
c7:c1:ad:63:40:d7:54:56:ee:29:99:3c:36:55:41:
ab:ab:2c:a7:a5:82:7a:f5:4f:16:3a:e7:c5:84:b3:
64:e7:02:55:12:d5:21:7a:07:e8:87:43:08:bf:6a:
c4:7a:70:9f:23:30:d4:b3:6c:92:49:ab:7c:1a:e5:
9e:3d:ef:ff:6e:17:c2:d5:42:96:84:f1:cc:ef:ed:
25:b8:c4:24:1f:b7:fe:0f:1e:f6:4b:02:c7:2a:7d:
9f:35:70:b2:99:18:ad:9a:96:41:ef:2d:92:7e:e1:
c4:61:62:48:de:88:29:7f:25:08:ae:3b:54:6c:69:
29:c9:b2:2a:13:42:3d:82:cd:23:2b:c2:a0:6f:d3:
21:65:09:b7:b4:09:a9:14:02:5f:b8:fd:57:44:63:
e4:59:ae:2d:ae:93:20:e6:de:0a:d1:8f:f4:c4:c7:
87:bf:ae:5b:20:fe:54:c5:c2:82:41:6c:3d:d8:15:
6c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:A4:B5:96:45:56:28:9E:82:9B:E7:E1:9C:78:27:7C:EF:36:DD:D6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DC9C7174E73C11EE8052CA77775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.227.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:c9:99:f8:6f:c2:13:29:97:e0:09:16:df:3e:be:01:17:2a:
da:6e:f4:10:bd:59:ae:69:42:4f:49:78:cc:c0:f4:00:8b:91:
59:fb:23:e8:0c:ab:43:e8:8a:ea:e4:c7:b0:67:73:7a:ab:e5:
a4:65:fa:eb:90:4f:cf:4f:56:de:80:1c:f8:51:1f:e7:12:e6:
e5:62:7c:21:b7:4d:58:b8:90:b5:65:0c:b7:51:0b:94:6f:5f:
2a:c9:fb:75:93:dd:b7:b1:07:ea:1c:4d:cf:24:a6:85:a0:b9:
d9:a5:df:70:95:42:2a:b8:a2:79:8f:f9:ad:67:12:04:d2:68:
99:6a:15:cb:c6:20:fd:e2:a7:c3:7d:b0:be:06:73:fc:39:c3:
d9:8a:36:1d:15:f0:48:58:c0:dc:1f:af:ed:05:30:c1:45:15:
6f:d6:34:b5:75:31:7a:df:8d:a9:39:32:b3:03:a6:cb:00:13:
b7:ff:25:ad:4b:8d:8c:1e:3d:d4:e9:4d:dc:3c:05:f7:2d:c2:
79:9f:a1:3e:0e:f9:8e:25:75:a3:31:9a:32:91:02:54:89:78:
c8:23:bd:be:35:87:60:13:1b:9a:af:bc:bf:76:5b:71:f8:f8:
be:cf:47:3d:d2:4f:be:9f:62:23:2f:66:80:fc:3f:be:e5:73:
b7:ff:5b:73
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKOsMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMDQzODI1WhcNMjQwNDIzMDQzODI1WjAYMRYw
FAYDVQQDEw02NWZiYjljNC03Yzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEApCOptZasqjb3/mPEdJ2O4PU/xqjVSQsmF4A+aE5daB2/k2rHz8Wap2u1
yOcvUckeSw/ddOWblrsFXTz4w611dk2+ziBFexRnDWbHwa1jQNdUVu4pmTw2VUGr
qyynpYJ69U8WOufFhLNk5wJVEtUhegfoh0MIv2rEenCfIzDUs2ySSat8GuWePe//
bhfC1UKWhPHM7+0luMQkH7f+Dx72SwLHKn2fNXCymRitmpZB7y2SfuHEYWJI3ogp
fyUIrjtUbGkpybIqE0I9gs0jK8Kgb9MhZQm3tAmpFAJfuP1XRGPkWa4trpMg5t4K
0Y/0xMeHv65bIP5UxcKCQWw92BVsqQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFG2k
tZZFViiegpvn4Zx4J3zvNt3WMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9EQzlDNzE3NEU3M0MxMUVFODA1MkNBNzc3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt3jMA0GCSqGSIb3DQEB
CwUAA4IBAQDByZn4b8ITKZfgCRbfPr4BFyrabvQQvVmuaUJPSXjMwPQAi5FZ+yPo
DKtD6Irq5MewZ3N6q+WkZfrrkE/PT1begBz4UR/nEublYnwht01YuJC1ZQy3UQuU
b18qyft1k923sQfqHE3PJKaFoLnZpd9wlUIquKJ5j/mtZxIE0miZahXLxiD94qfD
fbC+BnP8OcPZijYdFfBIWMDcH6/tBTDBRRVv1jS1dTF6342pOTKzA6bLABO3/yWt
S42MHj3U6U3cPAX3LcJ5n6E+DvmOJXWjMZoykQJUiXjII72+NYdgExuar7y/dltx
+Pi+z0c90k++n2IjL2aA/D++5XO3/1tz
-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:26 2024 by rpki-client on console-ams.rpki-client.org