Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6B9AA58F7BF11EEB3B8C524017001B1.roa
File: E6B9AA58F7BF11EEB3B8C524017001B1.roa (raw, json)
Hash identifier: e1vunfyahTlKQajSaqagSajijaPoAZdvpbXgUaM1SX0=
Subject key identifier: A4:5A:BE:DE:CE:96:83:B4:44:5F:0F:54:69:FE:45:F8:C5:87:B1:59
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB21
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6B9AA58F7BF11EEB3B8C524017001B1.roa
Signing time: Thu 11 Apr 2024 04:56:48 +0000
ROA not before: Thu 11 Apr 2024 04:56:44 +0000
ROA not after: Sun 19 May 2024 04:56:44 +0000
asID: 138915
IP address blocks: 154.93.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43809 (0xab21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 11 04:56:44 2024 GMT
Not After : May 19 04:56:44 2024 GMT
Subject: CN=66176d90-f0c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c4:88:67:b9:b9:58:1a:4b:8c:88:0d:26:c7:
4e:6c:c6:c7:e8:f2:7d:11:7d:75:2c:8f:d4:4b:44:
f1:29:36:95:a3:f4:99:2b:1a:5e:d6:e4:20:8a:33:
0d:bf:84:62:e4:89:9b:4d:67:73:4e:40:06:70:15:
22:e2:0e:d1:a8:64:9e:93:98:90:6b:83:e6:a0:7b:
6c:9a:94:4f:67:bd:6c:0b:11:49:85:a4:da:ba:c3:
39:f9:52:59:65:61:80:3c:6b:66:5a:0b:38:14:56:
3c:35:93:26:b0:8a:3b:ea:f3:67:9f:1b:1d:22:75:
ba:0d:b4:08:5e:ca:b9:8b:c7:8a:d5:e2:8e:bc:79:
44:97:22:81:aa:31:43:1c:45:0e:72:e4:a9:59:a7:
c7:20:95:d2:81:de:81:aa:63:4f:2e:04:ab:6a:46:
b9:44:e3:ba:3c:49:7f:03:04:54:d9:92:23:59:7e:
e5:8f:2a:e7:28:20:ab:de:1a:36:20:64:a5:4f:9e:
15:8d:b9:44:3d:fc:39:b2:e3:a8:b5:3d:b7:35:4e:
9e:4c:8e:ee:34:22:5b:8d:e4:2b:39:2f:40:15:b7:
ea:db:ba:95:22:2a:72:fa:13:a9:53:4d:0a:15:c2:
65:20:c9:14:fb:55:04:b2:dd:02:35:69:d0:44:f6:
24:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:5A:BE:DE:CE:96:83:B4:44:5F:0F:54:69:FE:45:F8:C5:87:B1:59
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6B9AA58F7BF11EEB3B8C524017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.49.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:5b:cd:6f:6f:9f:53:1e:dc:cc:9d:be:b7:64:05:0a:a4:c4:
ce:e0:eb:89:41:c5:16:81:ec:ee:8c:61:78:12:47:f9:38:03:
7f:dc:d6:bf:06:f2:86:bd:b7:24:90:85:58:bb:1c:10:a9:38:
96:69:09:86:2e:e8:f7:fa:0b:bd:56:fb:d0:dc:f7:7b:d6:67:
92:6c:41:ea:51:e9:f6:3d:9a:9c:54:07:0b:e0:8c:55:4d:bb:
92:39:46:6f:28:4d:17:bf:40:ad:54:ab:08:d1:ca:a2:d7:7d:
35:a1:c8:93:a4:6e:76:3c:18:65:05:c5:a8:f3:b7:46:24:c6:
da:71:05:b5:cf:19:0c:9a:0c:99:77:23:b4:b4:6c:e3:6c:82:
10:a8:0c:9f:cc:45:13:d2:6b:cd:89:fd:b4:f3:d4:2a:9e:94:
b7:f2:c4:dc:99:21:b5:f7:a5:02:b1:02:bb:2b:31:ef:4c:8d:
ae:75:8e:29:a6:a1:a8:4f:47:ab:cc:5d:73:a5:c0:64:6d:07:
9a:fb:b5:bf:a1:c1:d1:98:42:72:46:f9:17:fc:c0:58:79:2d:
19:38:48:1d:81:20:7b:ab:97:64:37:69:c2:98:66:b3:b2:20:
4b:e4:8c:f3:7c:21:c9:6d:06:e1:7d:d1:6a:20:d7:79:d9:d5:
fa:98:d1:5d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKshMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDExMDQ1NjQ0WhcNMjQwNTE5MDQ1NjQ0WjAYMRYw
FAYDVQQDEw02NjE3NmQ5MC1mMGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzMSIZ7m5WBpLjIgNJsdObMbH6PJ9EX11LI/US0TxKTaVo/SZKxpe1uQg
ijMNv4Ri5ImbTWdzTkAGcBUi4g7RqGSek5iQa4PmoHtsmpRPZ71sCxFJhaTausM5
+VJZZWGAPGtmWgs4FFY8NZMmsIo76vNnnxsdInW6DbQIXsq5i8eK1eKOvHlElyKB
qjFDHEUOcuSpWafHIJXSgd6BqmNPLgSraka5ROO6PEl/AwRU2ZIjWX7ljyrnKCCr
3ho2IGSlT54VjblEPfw5suOotT23NU6eTI7uNCJbjeQrOS9AFbfq27qVIipy+hOp
U00KFcJlIMkU+1UEst0CNWnQRPYkowIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFKRa
vt7OloO0RF8PVGn+RfjFh7FZMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FNkI5QUE1OEY3QkYxMUVFQjNCOEM1MjQwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml0xMA0GCSqGSIb3DQEB
CwUAA4IBAQA6W81vb59THtzMnb63ZAUKpMTO4OuJQcUWgezujGF4Ekf5OAN/3Na/
BvKGvbckkIVYuxwQqTiWaQmGLuj3+gu9VvvQ3Pd71meSbEHqUen2PZqcVAcL4IxV
TbuSOUZvKE0Xv0CtVKsI0cqi1301ociTpG52PBhlBcWo87dGJMbacQW1zxkMmgyZ
dyO0tGzjbIIQqAyfzEUT0mvNif2089QqnpS38sTcmSG196UCsQK7KzHvTI2udY4p
pqGoT0erzF1zpcBkbQea+7W/ocHRmEJyRvkX/MBYeS0ZOEgdgSB7q5dkN2nCmGaz
siBL5IzzfCHJbQbhfdFqINd52dX6mNFd
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:41 2024 by rpki-client on console-fra.rpki-client.org