Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E474D96AE78511EEA94E56B1775412E6.roa
File: E474D96AE78511EEA94E56B1775412E6.roa (raw, json)
Hash identifier: AfpYh1dzBdNMgMN2Uq3T7iMYFbuD6WxBQrcGyZsS9mA=
Subject key identifier: F4:6F:DC:45:06:5C:82:C1:BB:15:8D:D0:C2:D3:D5:F9:70:44:AD:17
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A5A3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E474D96AE78511EEA94E56B1775412E6.roa
Signing time: Thu 21 Mar 2024 13:21:14 +0000
ROA not before: Thu 21 Mar 2024 13:21:11 +0000
ROA not after: Tue 23 Apr 2024 13:21:11 +0000
asID: 44559
IP address blocks: 154.210.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42403 (0xa5a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 13:21:11 2024 GMT
Not After : Apr 23 13:21:11 2024 GMT
Subject: CN=65fc344a-7053
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:18:7a:73:a2:3e:31:65:47:80:70:1f:e9:f0:
5a:97:ef:cd:06:71:0c:d0:bb:f5:05:98:b9:35:f7:
d3:6c:9c:75:54:a2:8b:d5:8b:23:00:57:67:9a:96:
63:17:4a:51:10:21:87:6f:21:35:c2:7a:e1:f1:d7:
f1:ac:15:e0:e6:bb:b5:46:c4:5e:d3:34:33:86:e2:
28:12:44:b7:2c:f1:3d:c5:41:f3:34:9d:99:47:26:
88:83:ff:6b:73:bd:e6:0b:2a:ed:c8:5d:bd:78:6f:
83:cf:fa:7e:0e:10:8e:8e:d1:f0:a7:45:9a:b9:ea:
8b:df:b3:16:b2:c1:51:31:0a:72:91:e0:07:66:d0:
71:9c:6c:8a:a3:cc:0f:c0:66:c6:81:c7:3e:54:98:
e9:22:ad:3d:1f:1f:73:3b:43:fa:52:e0:bb:4a:7e:
dc:92:87:fa:c7:06:c9:fb:d0:fc:5e:a6:86:60:9d:
33:2b:e4:53:75:f8:58:a8:d1:33:ec:9c:41:7e:80:
af:0d:6e:c1:e4:1b:1e:fc:c0:19:2a:5f:c5:0c:a0:
b4:df:3f:e8:94:09:56:5f:bb:d0:34:a1:51:1f:7d:
7d:5f:de:75:ac:78:26:f3:c9:27:88:4a:50:29:69:
26:0b:7b:9d:dd:77:5d:45:87:81:3a:d0:68:79:2e:
b9:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:6F:DC:45:06:5C:82:C1:BB:15:8D:D0:C2:D3:D5:F9:70:44:AD:17
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E474D96AE78511EEA94E56B1775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.75.0/24
Signature Algorithm: sha256WithRSAEncryption
12:15:a1:f8:ac:2e:4c:bc:4f:09:37:1b:a3:b5:dd:82:87:f1:
f1:26:07:d5:51:01:58:0b:70:88:71:4f:81:25:a0:9f:c6:72:
55:a1:4d:bd:09:7d:4f:79:a7:7e:0a:76:92:f0:2c:a2:ea:e2:
fc:a2:91:6b:f8:ad:4a:da:27:1d:14:9c:d6:61:37:9e:8f:3a:
0d:ec:d2:2f:56:1a:52:6d:83:09:5d:a0:9a:00:1f:23:27:8c:
10:c9:b5:55:26:78:19:89:09:31:a2:dd:8f:b8:02:36:c1:5e:
3d:3a:a0:4c:ab:bc:22:56:48:64:5f:73:89:48:e2:3d:ed:b9:
52:c4:14:6f:d3:ae:87:d2:bf:a5:e9:03:51:a9:09:44:3b:0c:
44:01:29:d0:ed:0e:41:00:5d:ba:22:44:70:72:91:c0:23:a4:
d9:bf:2e:33:c0:45:45:58:eb:ee:a4:29:1e:b3:f7:7f:51:46:
30:a8:7e:8a:15:eb:c9:48:e2:37:90:e3:ab:7b:aa:d4:62:81:
6a:ec:3e:3b:7f:9e:e8:70:4a:ab:df:ba:12:6b:c4:2c:4d:ba:
14:54:22:5c:16:66:61:79:f3:07:b2:ae:19:37:f2:bb:18:85:
ec:d2:f9:59:2b:28:4d:dd:1e:fd:26:65:48:ce:3a:3b:f7:87:
7d:d6:56:ff
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKWjMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMTMyMTExWhcNMjQwNDIzMTMyMTExWjAYMRYw
FAYDVQQDEw02NWZjMzQ0YS03MDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtxh6c6I+MWVHgHAf6fBal+/NBnEM0Lv1BZi5NffTbJx1VKKL1YsjAFdn
mpZjF0pRECGHbyE1wnrh8dfxrBXg5ru1RsRe0zQzhuIoEkS3LPE9xUHzNJ2ZRyaI
g/9rc73mCyrtyF29eG+Dz/p+DhCOjtHwp0WaueqL37MWssFRMQpykeAHZtBxnGyK
o8wPwGbGgcc+VJjpIq09Hx9zO0P6UuC7Sn7ckof6xwbJ+9D8XqaGYJ0zK+RTdfhY
qNEz7JxBfoCvDW7B5Bse/MAZKl/FDKC03z/olAlWX7vQNKFRH319X951rHgm88kn
iEpQKWkmC3ud3XddRYeBOtBoeS65aQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPRv
3EUGXILBuxWN0MLT1flwRK0XMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FNDc0RDk2QUU3ODUxMUVFQTk0RTU2QjE3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtJLMA0GCSqGSIb3DQEB
CwUAA4IBAQASFaH4rC5MvE8JNxujtd2Ch/HxJgfVUQFYC3CIcU+BJaCfxnJVoU29
CX1Pead+CnaS8Cyi6uL8opFr+K1K2icdFJzWYTeejzoN7NIvVhpSbYMJXaCaAB8j
J4wQybVVJngZiQkxot2PuAI2wV49OqBMq7wiVkhkX3OJSOI97blSxBRv066H0r+l
6QNRqQlEOwxEASnQ7Q5BAF26IkRwcpHAI6TZvy4zwEVFWOvupCkes/d/UUYwqH6K
FevJSOI3kOOre6rUYoFq7D47f57ocEqr37oSa8QsTboUVCJcFmZhefMHsq4ZN/K7
GIXs0vlZKyhN3R79JmVIzjo794d91lb/
-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:26 2024 by rpki-client on console-ams.rpki-client.org