Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F498CB4CC0F311EFB2A32296762E951A.roa
File: F498CB4CC0F311EFB2A32296762E951A.roa (raw, json)
Hash identifier: EfI06bSu6s4EfVs3iQO5NYRqHjrZy9o1KZvP2u9IYLk=
Subject key identifier: 86:76:00:48:EE:B7:F4:D9:8A:B0:89:7D:C5:41:AB:AC:97:08:9D:E9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011F7A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F498CB4CC0F311EFB2A32296762E951A.roa
Signing time: Mon 23 Dec 2024 06:05:48 +0000
ROA not before: Mon 23 Dec 2024 06:05:45 +0000
ROA not after: Wed 10 Dec 2025 06:05:45 +0000
asID: 984
IP address blocks: 154.90.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73594 (0x11f7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 23 06:05:45 2024 GMT
Not After : Dec 10 06:05:45 2025 GMT
Subject: CN=6768fdbc-246e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:46:de:0a:5d:42:c5:51:8d:c3:1a:b0:5a:89:
42:b0:ea:f5:d3:31:c2:22:ac:2d:dc:d3:86:4c:43:
9d:6a:4d:98:00:3e:00:d0:0d:90:94:a9:eb:a8:f8:
fc:c0:e0:60:df:73:25:5f:ea:1c:10:4b:a1:fe:e7:
af:83:0c:1d:1c:c2:44:95:49:01:14:09:fe:d6:84:
cb:fb:25:49:c2:b0:c4:71:94:39:85:6a:dd:72:4f:
16:41:5d:4d:a2:e2:07:c7:98:99:ac:04:ea:d5:72:
37:d7:c2:1f:a3:fe:51:2d:9a:b4:49:09:56:a6:e7:
a6:62:26:be:9b:d6:64:93:8a:7b:85:b2:a6:7c:76:
8c:68:6e:3e:90:d8:55:b7:07:bf:99:df:26:7f:a3:
bb:e6:c3:de:b8:18:c0:81:69:e3:2f:0a:69:30:ad:
8c:a3:f5:e6:b7:56:50:88:85:dc:e7:58:06:d8:a4:
44:eb:14:03:6c:18:0f:4c:07:55:6d:2d:96:cb:7a:
5a:26:e0:55:e2:8f:af:ca:e0:9e:72:a4:3b:11:ec:
f9:39:03:87:a7:05:48:28:fb:d3:4a:22:0e:a5:16:
58:91:23:6a:4f:23:f0:94:5c:21:41:e1:aa:a9:b7:
4c:d6:81:a1:f2:2e:5f:36:63:00:64:90:8e:6a:af:
d0:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:76:00:48:EE:B7:F4:D9:8A:B0:89:7D:C5:41:AB:AC:97:08:9D:E9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F498CB4CC0F311EFB2A32296762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.115.0/24
Signature Algorithm: sha256WithRSAEncryption
52:c6:84:72:b6:cd:c8:fd:22:52:9d:67:31:d3:94:2a:98:74:
6a:7e:50:47:3e:fb:7c:c9:f4:e9:15:48:74:a5:05:9f:66:62:
d8:49:d0:cf:c2:9e:db:a1:30:c4:91:07:59:c8:7a:84:51:67:
b1:e7:bc:f7:72:d3:5c:eb:cb:f9:68:dc:63:fb:0e:b7:36:44:
1c:bf:bb:49:65:45:9b:04:06:09:5f:7e:f1:33:e6:53:a1:2c:
8d:ad:c0:62:de:14:73:a4:5e:45:23:57:b6:72:cf:08:93:d1:
7b:fd:f0:07:0c:70:6b:53:e6:49:f2:08:19:ac:b7:fa:c1:46:
1c:20:96:7e:c0:a3:c3:88:a0:17:b6:2e:35:64:05:c2:7d:79:
b1:1d:7d:35:66:77:12:48:96:a5:0a:ae:6c:a1:c6:d3:c8:04:
cb:46:e5:a2:68:8b:32:3f:df:4e:1b:07:5a:15:8b:fc:d7:ff:
ba:8e:c6:8a:1c:d1:e8:9d:2f:27:a9:c7:6b:0f:23:87:63:62:
1f:2b:b6:cd:64:3a:ee:74:e7:1f:50:42:37:b6:54:32:57:5c:
59:fa:7a:e3:c2:d6:c6:24:d9:19:d5:fa:af:7e:5d:9b:68:c1:
ff:b0:b8:f7:c2:8f:37:cd:12:d7:bf:4b:66:e0:ac:9a:89:bc:
f0:59:74:8a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAR96MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjIzMDYwNTQ1WhcNMjUxMjEwMDYwNTQ1WjAYMRYw
FAYDVQQDEw02NzY4ZmRiYy0yNDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvEbeCl1CxVGNwxqwWolCsOr10zHCIqwt3NOGTEOdak2YAD4A0A2QlKnr
qPj8wOBg33MlX+ocEEuh/uevgwwdHMJElUkBFAn+1oTL+yVJwrDEcZQ5hWrdck8W
QV1NouIHx5iZrATq1XI318Ifo/5RLZq0SQlWpuemYia+m9Zkk4p7hbKmfHaMaG4+
kNhVtwe/md8mf6O75sPeuBjAgWnjLwppMK2Mo/Xmt1ZQiIXc51gG2KRE6xQDbBgP
TAdVbS2Wy3paJuBV4o+vyuCecqQ7Eez5OQOHpwVIKPvTSiIOpRZYkSNqTyPwlFwh
QeGqqbdM1oGh8i5fNmMAZJCOaq/QpQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFIZ2
AEjut/TZirCJfcVBq6yXCJ3pMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GNDk4Q0I0Q0MwRjMxMUVGQjJBMzIyOTY3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlpzMA0GCSqGSIb3DQEB
CwUAA4IBAQBSxoRyts3I/SJSnWcx05QqmHRqflBHPvt8yfTpFUh0pQWfZmLYSdDP
wp7boTDEkQdZyHqEUWex57z3ctNc68v5aNxj+w63NkQcv7tJZUWbBAYJX37xM+ZT
oSyNrcBi3hRzpF5FI1e2cs8Ik9F7/fAHDHBrU+ZJ8ggZrLf6wUYcIJZ+wKPDiKAX
ti41ZAXCfXmxHX01ZncSSJalCq5socbTyATLRuWiaIsyP99OGwdaFYv81/+6jsaK
HNHonS8nqcdrDyOHY2IfK7bNZDrudOcfUEI3tlQyV1xZ+nrjwtbGJNkZ1fqvfl2b
aMH/sLj3wo83zRLXv0tm4KyaibzwWXSK
-----END CERTIFICATE-----
Generated at Fri Apr 4 10:57:41 2025 by rpki-client