Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4600946720811EE94A3DA514AD9E6FC.roa
File: F4600946720811EE94A3DA514AD9E6FC.roa (raw, json)
Hash identifier: MzoN9iLL8iX3xNtXzxZLsgvGjOxYRKlz6B9cZFfDYHU=
Subject key identifier: 4F:53:F7:9F:E5:42:91:C8:E9:AE:C4:14:FF:AA:69:D5:42:45:45:3B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 46F7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4600946720811EE94A3DA514AD9E6FC.roa
Signing time: Tue 24 Oct 2023 01:02:08 +0000
ROA not before: Tue 24 Oct 2023 01:02:04 +0000
ROA not after: Thu 17 Oct 2024 01:02:04 +0000
asID: 132813
IP address blocks: 154.91.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18167 (0x46f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 24 01:02:04 2023 GMT
Not After : Oct 17 01:02:04 2024 GMT
Subject: CN=65371790-d6e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f7:98:4c:62:2e:47:c3:ef:fb:26:03:3e:cc:
b1:ad:6a:36:50:35:57:0a:38:57:8e:dd:df:9b:50:
e7:27:dd:46:3e:58:5a:03:5f:92:db:36:27:45:05:
b6:a7:eb:54:b7:8f:2c:82:fa:7d:c3:56:97:e1:8f:
b5:d1:8d:1c:c5:94:9d:b3:8e:97:f5:45:f0:c0:5c:
02:a4:6d:14:bf:a5:c9:ca:cf:06:0a:af:d6:f3:f7:
45:b6:3b:e9:5f:a2:9c:8d:ca:d7:2c:80:1f:21:59:
fd:77:d8:52:74:99:23:6a:73:6f:7a:33:13:29:aa:
70:40:5a:3d:9d:b7:77:a2:27:bb:f7:46:77:af:87:
26:d4:6e:9f:57:ee:63:2f:83:66:d3:c9:52:63:00:
44:89:3a:15:ba:75:fc:fe:5b:fc:01:8c:58:66:43:
d7:8d:6e:08:0d:b9:8d:35:c4:3e:75:4a:8e:d6:6a:
d0:0a:e4:ad:fa:c7:30:ce:da:0b:66:f5:55:40:c2:
5f:9e:bb:f0:72:03:c0:ca:7f:23:59:8f:c1:01:7f:
87:a1:00:53:99:15:b2:4a:2e:17:c8:52:f0:b2:3e:
d3:a5:a4:1c:3b:2b:85:a8:eb:c3:eb:46:df:07:e9:
82:de:fd:80:8f:69:88:61:a6:a0:e0:cc:2b:3a:46:
55:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:53:F7:9F:E5:42:91:C8:E9:AE:C4:14:FF:AA:69:D5:42:45:45:3B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4600946720811EE94A3DA514AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.35.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:86:7a:ad:2e:05:bf:ce:bd:56:b9:ed:dc:0b:15:8c:42:95:
b7:cb:5c:15:6b:e3:6e:40:e3:9d:eb:9c:6e:b0:91:7c:80:d8:
94:00:2a:45:d8:02:59:f1:a5:9c:da:c7:b1:e1:55:f3:06:73:
6a:22:a0:a2:c4:f2:d1:4d:89:d1:12:ca:a6:71:55:b3:19:6f:
48:c7:6c:fd:d8:96:5d:1f:44:59:01:2e:60:3d:65:88:22:66:
c1:3d:25:e9:39:55:4d:10:7b:dc:6d:ca:5d:88:e5:32:4f:ea:
15:cc:91:c5:7f:c7:59:a4:2f:7e:2d:9a:f3:5e:0c:99:ea:25:
14:58:7d:e9:a8:50:e1:f9:7c:c6:7c:34:27:15:7f:cd:80:11:
0f:8a:bc:a5:20:9c:aa:a8:1e:13:cf:d7:3d:49:7e:9d:bf:a9:
cc:7d:27:17:d7:fb:ea:4f:71:52:21:d5:ad:eb:c8:cf:16:f9:
a5:1d:bb:63:c8:9d:43:df:5f:47:d6:e2:d4:c4:9b:5f:1a:33:
25:94:8c:16:22:b0:6a:0f:32:c4:ee:b0:b2:e5:55:b6:78:81:
62:9f:11:69:bc:26:db:9a:c0:d6:75:9c:d6:2c:67:31:e0:66:
99:42:c9:dd:6f:92:5f:ac:d2:1f:3d:35:1f:f7:a3:05:01:5d:
0c:27:f4:34
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICRvcwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzEwMjQwMTAyMDRaFw0yNDEwMTcwMTAyMDRaMBgxFjAU
BgNVBAMTDTY1MzcxNzkwLWQ2ZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDb95hMYi5Hw+/7JgM+zLGtajZQNVcKOFeO3d+bUOcn3UY+WFoDX5LbNidF
Bban61S3jyyC+n3DVpfhj7XRjRzFlJ2zjpf1RfDAXAKkbRS/pcnKzwYKr9bz90W2
O+lfopyNytcsgB8hWf132FJ0mSNqc296MxMpqnBAWj2dt3eiJ7v3RnevhybUbp9X
7mMvg2bTyVJjAESJOhW6dfz+W/wBjFhmQ9eNbggNuY01xD51So7WatAK5K36xzDO
2gtm9VVAwl+eu/ByA8DKfyNZj8EBf4ehAFOZFbJKLhfIUvCyPtOlpBw7K4Wo68Pr
Rt8H6YLe/YCPaYhhpqDgzCs6RlUPAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUT1P3
n+VCkcjprsQU/6pp1UJFRTswHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4L0Y0NjAwOTQ2NzIwODExRUU5NEEzREE1MTRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaWyMwDQYJKoZIhvcNAQEL
BQADggEBAE6Geq0uBb/OvVa57dwLFYxClbfLXBVr425A453rnG6wkXyA2JQAKkXY
AlnxpZzax7HhVfMGc2oioKLE8tFNidESyqZxVbMZb0jHbP3Yll0fRFkBLmA9ZYgi
ZsE9Jek5VU0Qe9xtyl2I5TJP6hXMkcV/x1mkL34tmvNeDJnqJRRYfemoUOH5fMZ8
NCcVf82AEQ+KvKUgnKqoHhPP1z1Jfp2/qcx9JxfX++pPcVIh1a3ryM8W+aUdu2PI
nUPfX0fW4tTEm18aMyWUjBYisGoPMsTusLLlVbZ4gWKfEWm8JtuawNZ1nNYsZzHg
ZplCyd1vkl+s0h89NR/3owUBXQwn9DQ=
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:24 2024 by rpki-client on console-ams.rpki-client.org