Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EDCE389CEDB811EEB0D9B7B7775412E6.roa
File: EDCE389CEDB811EEB0D9B7B7775412E6.roa (raw, json)
Hash identifier: DjdLG8eXn8a1qRubjnJifxfCdvfrT1auU/lgINUc198=
Subject key identifier: 33:93:BE:3B:78:97:73:34:DA:1E:7A:42:CF:3C:3D:A2:9A:39:6A:DA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A739
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EDCE389CEDB811EEB0D9B7B7775412E6.roa
Signing time: Fri 29 Mar 2024 10:41:41 +0000
ROA not before: Fri 29 Mar 2024 10:41:38 +0000
ROA not after: Sat 04 May 2024 10:41:38 +0000
asID: 142062
IP address blocks: 154.86.92.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 10:41:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42809 (0xa739)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 29 10:41:38 2024 GMT
Not After : May 4 10:41:38 2024 GMT
Subject: CN=66069ae5-07d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6a:29:3f:63:d9:69:e1:bb:8d:ee:f5:57:36:
da:c0:f6:18:55:ec:5e:0e:0d:53:66:73:de:9d:9c:
22:01:39:2d:87:eb:d7:fb:92:31:3a:0a:6d:17:54:
4e:92:f3:c3:16:01:2d:e3:ba:83:ea:fd:fa:d6:75:
48:98:7b:27:b8:b3:cc:cd:1c:2a:6f:ba:ab:78:ae:
9f:08:98:b6:72:50:fa:88:4b:c9:fc:12:10:fc:19:
85:84:12:5f:92:a5:1a:41:70:0f:9f:e7:58:66:b4:
41:4f:bd:6b:33:32:8f:3a:76:7d:78:e4:de:02:96:
09:36:1b:ea:b9:70:78:71:c4:09:2b:98:81:eb:c2:
59:5f:fc:9e:b0:89:2a:dc:f2:0c:18:7b:00:c9:0d:
eb:f7:4d:4e:61:b1:5f:da:17:36:de:67:43:6b:49:
1a:7b:8b:d5:c4:b1:0b:19:67:99:a3:2b:ff:28:76:
e1:4f:f8:23:07:eb:10:82:c8:7f:55:f7:22:3f:a6:
47:2f:e8:f2:9b:aa:1f:27:2b:86:5a:f1:6b:f3:a4:
83:0f:ee:c9:ca:10:55:14:20:4e:d4:fa:15:e2:4d:
9b:45:f5:4d:df:da:95:17:93:bd:88:69:f9:10:60:
cf:25:97:b5:67:fd:ff:2e:c5:b4:a5:fd:01:7b:44:
6f:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:93:BE:3B:78:97:73:34:DA:1E:7A:42:CF:3C:3D:A2:9A:39:6A:DA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EDCE389CEDB811EEB0D9B7B7775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.92.0/24
Signature Algorithm: sha256WithRSAEncryption
03:8e:ed:77:b2:12:68:73:29:50:96:bc:7e:34:5d:d7:bc:f0:
bc:c0:73:6c:32:80:53:7e:18:94:ab:51:7d:56:2d:20:2a:2b:
83:c2:a4:12:11:5b:58:f5:b8:f8:f7:53:bd:9d:e0:54:1d:99:
f4:10:34:19:8f:11:8c:a2:e3:0f:05:98:0e:4f:d3:19:15:7b:
c9:8a:d1:54:14:12:91:d4:ef:a7:c1:8a:73:0c:5b:ab:17:0e:
2d:26:7e:6c:ef:b9:a3:28:f4:42:08:4f:77:ea:73:8c:2c:3f:
74:5e:40:99:05:aa:d7:23:32:1d:79:7c:6c:f7:fd:5e:3b:98:
d7:ce:5c:f9:b0:23:74:c5:9f:f2:7d:1f:1f:15:6f:ac:ea:ce:
fb:65:04:40:f1:d3:ac:76:4f:bc:e7:70:4d:b2:72:a2:0f:0b:
2f:5b:85:ab:96:71:f5:6f:7a:45:60:94:45:c9:73:c0:3f:9d:
44:36:90:dc:4c:92:3b:c0:3c:9a:6b:be:41:e6:0c:17:5e:3f:
51:e9:5d:ad:52:ea:a5:ab:fa:50:13:e1:94:e7:9b:51:59:9e:
98:f1:01:b9:1d:d4:e8:23:94:23:e1:20:a4:47:4d:2f:cd:86:
2c:69:c4:d4:47:a9:c3:dc:5e:67:9b:ab:9b:d7:19:b0:c2:5e:
d6:c3:35:fc
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKc5MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzI5MTA0MTM4WhcNMjQwNTA0MTA0MTM4WjAYMRYw
FAYDVQQDEw02NjA2OWFlNS0wN2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEApmopP2PZaeG7je71VzbawPYYVexeDg1TZnPenZwiATkth+vX+5IxOgpt
F1ROkvPDFgEt47qD6v361nVImHsnuLPMzRwqb7qreK6fCJi2clD6iEvJ/BIQ/BmF
hBJfkqUaQXAPn+dYZrRBT71rMzKPOnZ9eOTeApYJNhvquXB4ccQJK5iB68JZX/ye
sIkq3PIMGHsAyQ3r901OYbFf2hc23mdDa0kae4vVxLELGWeZoyv/KHbhT/gjB+sQ
gsh/VfciP6ZHL+jym6ofJyuGWvFr86SDD+7JyhBVFCBO1PoV4k2bRfVN39qVF5O9
iGn5EGDPJZe1Z/3/LsW0pf0Be0RvbwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDOT
vjt4l3M02h56Qs88PaKaOWraMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FRENFMzg5Q0VEQjgxMUVFQjBEOUI3Qjc3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlZcMA0GCSqGSIb3DQEB
CwUAA4IBAQADju13shJocylQlrx+NF3XvPC8wHNsMoBTfhiUq1F9Vi0gKiuDwqQS
EVtY9bj491O9neBUHZn0EDQZjxGMouMPBZgOT9MZFXvJitFUFBKR1O+nwYpzDFur
Fw4tJn5s77mjKPRCCE936nOMLD90XkCZBarXIzIdeXxs9/1eO5jXzlz5sCN0xZ/y
fR8fFW+s6s77ZQRA8dOsdk+853BNsnKiDwsvW4WrlnH1b3pFYJRFyXPAP51ENpDc
TJI7wDyaa75B5gwXXj9R6V2tUuqlq/pQE+GU55tRWZ6Y8QG5HdToI5Qj4SCkR00v
zYYsacTUR6nD3F5nm6ub1xmwwl7WwzX8
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:42 2024 by rpki-client on console-fra.rpki-client.org