Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE887F10E74A11EEA154D665775412E6.roa
File: DE887F10E74A11EEA154D665775412E6.roa (raw, json)
Hash identifier: w/QoHmFvrnP2G1P4BW7m60dNkoug3JkRohuCJ99XWSI=
Subject key identifier: FA:0F:FD:F5:0E:90:BE:AD:85:F1:A3:7A:2D:BF:E7:A9:BE:9A:EE:03
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A433
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE887F10E74A11EEA154D665775412E6.roa
Signing time: Thu 21 Mar 2024 06:18:44 +0000
ROA not before: Thu 21 Mar 2024 06:18:41 +0000
ROA not after: Tue 23 Apr 2024 06:18:41 +0000
asID: 44559
IP address blocks: 154.220.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42035 (0xa433)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 06:18:41 2024 GMT
Not After : Apr 23 06:18:41 2024 GMT
Subject: CN=65fbd144-a3bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:89:97:d3:bf:29:80:00:de:08:86:ac:42:25:
af:2d:f2:64:ec:63:16:95:25:4e:eb:82:18:6b:0a:
10:1a:58:7d:6b:28:a3:8e:02:0e:fa:6c:f5:a8:ea:
13:5c:5f:16:d5:0c:56:c5:6f:3f:16:d6:80:c5:93:
c9:0b:01:38:ed:6d:33:19:79:76:e2:37:90:5f:de:
8d:46:a1:a6:7e:72:76:7b:22:22:4a:c1:d2:44:16:
19:7e:36:f7:23:52:fb:f2:6e:93:1d:65:be:3c:74:
be:b3:c1:bd:1a:99:fb:fb:e0:b6:25:e2:0d:c8:a1:
58:22:66:91:74:49:70:d4:0a:8d:45:87:d8:8f:d3:
e7:bf:ad:e5:f1:1c:79:7d:d7:8f:2b:d9:f9:39:9f:
fa:1a:a6:d0:85:0e:f9:9c:c8:99:c6:eb:ec:fb:d5:
83:43:19:fd:6d:c2:b0:5f:27:6c:44:46:28:69:9c:
bb:5d:00:7c:c1:82:bf:94:fe:55:24:52:28:a3:58:
b7:d7:12:7a:d7:96:0d:92:88:9f:0c:8f:fc:75:1c:
43:7e:4e:63:53:76:c7:1b:75:19:55:cc:b6:2e:e7:
d6:4a:2b:b1:b6:a3:d0:da:3e:0f:82:8a:14:99:d3:
70:8a:4e:20:c5:8b:8e:81:f2:b8:b0:e8:60:73:07:
c7:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:0F:FD:F5:0E:90:BE:AD:85:F1:A3:7A:2D:BF:E7:A9:BE:9A:EE:03
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE887F10E74A11EEA154D665775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.159.0/24
Signature Algorithm: sha256WithRSAEncryption
48:ba:62:54:5b:b6:6b:72:ec:cf:71:bc:93:bb:10:20:95:03:
d5:75:d2:e2:2e:87:ac:88:25:64:55:6e:cb:cf:05:d4:96:3d:
4d:3e:09:5a:bb:37:08:31:8e:8e:bc:89:82:5b:37:c0:58:e4:
25:8c:f1:47:c7:20:cb:9a:2c:7e:1e:13:7a:84:1a:99:b4:9d:
15:fc:10:b7:a3:7e:fe:fc:bc:8e:7a:ae:df:c6:c1:cf:bf:64:
7f:8b:ad:ce:fe:c2:d2:5d:06:48:09:3d:8d:ee:5b:53:98:94:
a1:da:2e:4b:2a:db:46:d1:55:3d:8b:02:ff:c9:25:f4:ed:7b:
2a:72:e9:cf:28:df:c6:66:47:ac:3f:02:19:a4:81:23:3b:09:
b8:c9:71:46:fb:a7:34:50:ca:38:38:d5:32:64:f5:a7:1d:33:
58:54:d7:a7:0e:02:53:12:02:00:96:1a:2c:e7:39:dd:8a:10:
3f:8f:1b:fe:20:3f:d8:4a:08:9f:97:72:14:5a:ec:17:98:36:
b5:0e:dc:43:14:30:cc:aa:d7:e1:00:b1:c8:8e:c2:8b:78:a0:
28:96:1d:35:df:94:05:3c:f2:99:3e:f7:b7:60:4a:c0:ad:8e:
c8:e9:b4:a5:f8:75:50:c2:8c:a5:aa:6e:b0:4d:81:85:27:58:
14:6a:a7:61
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKQzMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMDYxODQxWhcNMjQwNDIzMDYxODQxWjAYMRYw
FAYDVQQDEw02NWZiZDE0NC1hM2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAromX078pgADeCIasQiWvLfJk7GMWlSVO64IYawoQGlh9ayijjgIO+mz1
qOoTXF8W1QxWxW8/FtaAxZPJCwE47W0zGXl24jeQX96NRqGmfnJ2eyIiSsHSRBYZ
fjb3I1L78m6THWW+PHS+s8G9Gpn7++C2JeINyKFYImaRdElw1AqNRYfYj9Pnv63l
8Rx5fdePK9n5OZ/6GqbQhQ75nMiZxuvs+9WDQxn9bcKwXydsREYoaZy7XQB8wYK/
lP5VJFIoo1i31xJ615YNkoifDI/8dRxDfk5jU3bHG3UZVcy2LufWSiuxtqPQ2j4P
gooUmdNwik4gxYuOgfK4sOhgcwfHSwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPoP
/fUOkL6thfGjei2/56m+mu4DMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9ERTg4N0YxMEU3NEExMUVFQTE1NEQ2NjU3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtyfMA0GCSqGSIb3DQEB
CwUAA4IBAQBIumJUW7ZrcuzPcbyTuxAglQPVddLiLoesiCVkVW7LzwXUlj1NPgla
uzcIMY6OvImCWzfAWOQljPFHxyDLmix+HhN6hBqZtJ0V/BC3o37+/LyOeq7fxsHP
v2R/i63O/sLSXQZICT2N7ltTmJSh2i5LKttG0VU9iwL/ySX07XsqcunPKN/GZkes
PwIZpIEjOwm4yXFG+6c0UMo4ONUyZPWnHTNYVNenDgJTEgIAlhos5zndihA/jxv+
ID/YSgifl3IUWuwXmDa1DtxDFDDMqtfhALHIjsKLeKAolh0135QFPPKZPve3YErA
rY7I6bSl+HVQwoylqm6wTYGFJ1gUaqdh
-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:26 2024 by rpki-client on console-ams.rpki-client.org