Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E80A3736F87511EE85F41371017001B1.roa
File: E80A3736F87511EE85F41371017001B1.roa (raw, json)
Hash identifier: iruhPs1/ywmpWdjn3J31cNtvoJkP5Ux/k0OaHftjXto=
Subject key identifier: 67:0E:53:53:B7:36:9B:9F:7E:E6:0B:E3:C0:F4:10:4F:FD:7C:97:87
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ABB0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E80A3736F87511EE85F41371017001B1.roa
Signing time: Fri 12 Apr 2024 02:39:38 +0000
ROA not before: Fri 12 Apr 2024 02:39:35 +0000
ROA not after: Mon 22 Apr 2024 02:39:35 +0000
asID: 5065
IP address blocks: 154.86.12.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 22 Apr 2024 02:39:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43952 (0xabb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 12 02:39:35 2024 GMT
Not After : Apr 22 02:39:35 2024 GMT
Subject: CN=66189eea-7184
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:0e:39:c9:aa:12:3a:22:80:d6:ed:0a:4f:52:
9d:cb:8a:57:c4:bb:69:43:7a:89:0d:b9:58:5f:4d:
8e:59:f6:8b:4e:ee:25:64:b7:ae:91:81:3d:d0:00:
1c:87:29:25:a3:09:f7:52:9b:cc:08:18:64:59:46:
5d:37:66:fe:b1:06:b1:ed:ba:bb:f6:8c:50:9a:ce:
db:a2:81:a9:b9:ab:05:bb:51:9f:cb:c8:92:e0:8b:
03:81:2d:17:f3:47:f7:42:2f:b8:26:bd:ca:b5:3c:
7a:cb:91:ff:3c:23:d8:64:2a:16:2e:6d:16:67:eb:
fc:93:7f:31:fd:15:1b:2a:c6:4f:b0:8c:ec:03:25:
e4:32:f1:15:a8:54:0f:09:8f:af:5a:f2:e0:04:1b:
3c:8c:3d:1a:a8:b1:6d:d5:40:91:e9:b5:93:96:55:
6b:c2:22:4b:e2:4f:5a:15:97:dd:f4:90:06:5c:53:
d7:a1:ad:72:66:c7:c5:f1:32:74:3f:05:e2:65:94:
4c:7f:29:a7:8b:c9:29:a8:2b:e4:9e:51:07:47:bb:
5f:90:dd:d5:2c:4f:ea:54:95:5e:87:0d:0c:53:e7:
b6:c7:f1:fd:6b:a5:e3:ef:89:e3:22:44:4b:9b:75:
38:85:d2:5e:d6:32:2a:74:e8:79:55:2e:98:a3:6c:
66:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:0E:53:53:B7:36:9B:9F:7E:E6:0B:E3:C0:F4:10:4F:FD:7C:97:87
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E80A3736F87511EE85F41371017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.12.0/22
Signature Algorithm: sha256WithRSAEncryption
28:6f:a6:f1:95:ae:14:c9:8f:0b:6a:ef:bb:11:72:d0:d6:54:
ed:f5:3f:d4:53:fc:85:2d:28:a7:6d:f9:9f:0c:46:6c:8c:64:
32:74:94:05:8f:0b:06:54:fe:f1:8a:47:cb:57:77:49:c1:3d:
a1:78:62:ea:c9:0e:18:53:e8:85:46:5d:6d:25:4a:d2:2f:3f:
ab:6c:15:ca:60:1a:13:30:a7:73:4a:8e:84:4c:ca:8b:76:77:
cf:33:b0:c8:6c:60:20:d5:9a:12:eb:52:a7:07:fe:72:a8:bb:
4f:48:75:61:42:10:c8:ca:16:b6:8f:ac:ce:e9:5b:32:7b:d2:
9a:a4:ab:c5:db:77:89:2d:ab:9a:25:5f:32:50:77:ac:a2:6c:
63:ba:63:2c:2a:fd:3d:93:9d:4b:41:e6:c4:e2:05:22:ca:36:
05:b7:ab:f4:e3:90:00:04:7f:6e:f1:e9:22:ef:3a:75:80:00:
fa:56:e2:55:5c:b5:5a:c2:13:cb:88:38:0c:4d:b5:ed:77:2a:
c9:d5:c5:88:c4:a2:18:f5:3d:61:5c:ad:86:d9:63:4f:d3:63:
92:04:3e:d8:df:49:a0:50:56:93:4b:9f:40:c3:b5:1e:72:23:
f6:93:78:41:3b:45:82:6b:1c:ba:33:4b:82:9c:1c:65:f5:6b:
c8:f8:44:6a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKuwMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDEyMDIzOTM1WhcNMjQwNDIyMDIzOTM1WjAYMRYw
FAYDVQQDEw02NjE4OWVlYS03MTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyg45yaoSOiKA1u0KT1Kdy4pXxLtpQ3qJDblYX02OWfaLTu4lZLeukYE9
0AAchyklown3UpvMCBhkWUZdN2b+sQax7bq79oxQms7booGpuasFu1Gfy8iS4IsD
gS0X80f3Qi+4Jr3KtTx6y5H/PCPYZCoWLm0WZ+v8k38x/RUbKsZPsIzsAyXkMvEV
qFQPCY+vWvLgBBs8jD0aqLFt1UCR6bWTllVrwiJL4k9aFZfd9JAGXFPXoa1yZsfF
8TJ0PwXiZZRMfymni8kpqCvknlEHR7tfkN3VLE/qVJVehw0MU+e2x/H9a6Xj74nj
IkRLm3U4hdJe1jIqdOh5VS6Yo2xmHQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGcO
U1O3NpuffuYL48D0EE/9fJeHMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FODBBMzczNkY4NzUxMUVFODVGNDEzNzEwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmlYMMA0GCSqGSIb3DQEB
CwUAA4IBAQAob6bxla4UyY8Lau+7EXLQ1lTt9T/UU/yFLSinbfmfDEZsjGQydJQF
jwsGVP7xikfLV3dJwT2heGLqyQ4YU+iFRl1tJUrSLz+rbBXKYBoTMKdzSo6ETMqL
dnfPM7DIbGAg1ZoS61KnB/5yqLtPSHVhQhDIyha2j6zO6Vsye9KapKvF23eJLaua
JV8yUHesomxjumMsKv09k51LQebE4gUiyjYFt6v045AABH9u8eki7zp1gAD6VuJV
XLVawhPLiDgMTbXtdyrJ1cWIxKIY9T1hXK2G2WNP02OSBD7Y30mgUFaTS59Aw7Ue
ciP2k3hBO0WCaxy6M0uCnBxl9WvI+ERq
-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:25 2024 by rpki-client on console-fra.rpki-client.org