Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5ED689CA62B11EE8427AA98775412E6.roa
File: F5ED689CA62B11EE8427AA98775412E6.roa (raw, json)
Hash identifier: dCvsdNcdzFs9giWDI93rvLXGJiPcpJ4eEJG+0nx3XZI=
Subject key identifier: 85:E3:8E:03:37:FF:35:13:67:59:65:E1:E8:66:DA:F7:ED:95:B6:A6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 69F6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5ED689CA62B11EE8427AA98775412E6.roa
Signing time: Fri 29 Dec 2023 09:23:44 +0000
ROA not before: Fri 29 Dec 2023 09:23:40 +0000
ROA not after: Thu 02 Jan 2025 09:23:40 +0000
asID: 141994
IP address blocks: 154.91.202.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27126 (0x69f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 29 09:23:40 2023 GMT
Not After : Jan 2 09:23:40 2025 GMT
Subject: CN=658e901f-3171
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:36:cf:cc:c4:ea:07:e9:61:ea:89:32:ed:c4:
48:6e:ae:f6:ba:b6:0d:47:50:2f:fd:61:94:04:14:
97:e6:4b:68:4e:4c:c2:e8:1c:e5:c9:34:eb:a0:88:
87:e1:12:1a:1f:19:a9:ce:41:7e:37:2a:5f:94:24:
30:c2:3a:47:e0:8c:14:9c:13:33:ef:f5:11:a1:32:
1c:67:bd:db:b1:d2:1d:3d:c7:92:71:f1:36:f4:ad:
56:b8:7b:85:4c:90:23:02:73:bc:9a:34:39:e0:af:
b5:b5:08:7d:d3:c3:26:0c:55:e8:61:1b:fd:3a:8c:
c2:ea:19:2f:53:9b:0d:2d:54:fd:12:c3:5d:3d:be:
fe:42:73:0c:f7:37:de:69:8f:86:59:9b:d1:a3:02:
67:b3:83:dc:1b:80:22:a3:64:c4:ad:c6:2f:50:7a:
5d:32:53:fd:05:65:9a:a8:f5:6b:f6:94:1a:62:38:
ba:81:f3:37:f8:f6:ef:de:28:59:ca:f0:8e:26:99:
f0:af:6b:d6:2b:94:3f:e4:aa:5e:1c:d4:e7:04:8a:
95:8e:8c:36:bc:6f:2d:f9:b9:45:51:5d:63:64:f6:
6c:81:46:26:c2:b6:01:12:7f:ec:38:13:25:61:1c:
f7:39:f3:c8:95:1c:7f:6a:d1:17:d3:83:10:73:67:
16:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:E3:8E:03:37:FF:35:13:67:59:65:E1:E8:66:DA:F7:ED:95:B6:A6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5ED689CA62B11EE8427AA98775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.202.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:dc:4b:b0:bf:ee:c8:64:1b:d2:6a:2b:af:ae:6b:62:5f:50:
3f:14:79:41:1d:2b:33:27:fa:b9:9f:d5:88:ec:b4:a7:50:3a:
7a:59:c3:88:85:66:1a:e0:8f:93:87:ec:14:87:47:06:7b:6b:
45:1e:fd:2e:db:b7:30:cb:2f:29:8d:12:72:f7:10:d7:fc:32:
ab:f8:be:e1:56:47:f5:f0:bd:d6:94:d0:b0:6e:39:43:c3:1d:
7f:18:2c:03:a4:56:4c:08:d4:6c:fc:b4:88:ec:79:67:7e:57:
dc:2d:46:f7:11:1b:e5:e5:0c:45:77:6f:32:dd:37:20:8f:fd:
ae:d4:0d:6c:84:2d:9e:42:90:fe:32:f9:d3:3c:c6:76:78:14:
e7:c7:f4:dd:71:27:67:31:6f:e0:95:14:46:64:58:8d:b7:5c:
9f:5a:92:ec:2f:4d:12:23:35:c1:2c:db:92:26:6e:53:33:1a:
a1:13:f4:5c:36:e5:c8:1e:63:81:90:50:3f:3f:de:9a:d4:90:
d9:cc:07:b6:fa:d2:bc:c0:22:f4:6f:70:72:d1:b2:74:84:e4:
22:ba:cd:61:f5:d3:04:ac:f8:e6:97:10:37:f2:e9:d3:d4:32:
bf:5a:81:d0:1f:60:ec:9b:d9:9a:c3:e3:ef:ed:94:99:d8:20:
2e:17:be:a0
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICafYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzEyMjkwOTIzNDBaFw0yNTAxMDIwOTIzNDBaMBgxFjAU
BgNVBAMTDTY1OGU5MDFmLTMxNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCrNs/MxOoH6WHqiTLtxEhurva6tg1HUC/9YZQEFJfmS2hOTMLoHOXJNOug
iIfhEhofGanOQX43Kl+UJDDCOkfgjBScEzPv9RGhMhxnvdux0h09x5Jx8Tb0rVa4
e4VMkCMCc7yaNDngr7W1CH3TwyYMVehhG/06jMLqGS9Tmw0tVP0Sw109vv5Ccwz3
N95pj4ZZm9GjAmezg9wbgCKjZMStxi9Qel0yU/0FZZqo9Wv2lBpiOLqB8zf49u/e
KFnK8I4mmfCva9YrlD/kql4c1OcEipWOjDa8by35uUVRXWNk9myBRibCtgESf+w4
EyVhHPc588iVHH9q0RfTgxBzZxavAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUheOO
Azf/NRNnWWXh6Gba9+2VtqYwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4L0Y1RUQ2ODlDQTYyQjExRUU4NDI3QUE5ODc3NTQxMkU2LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaW8owDQYJKoZIhvcNAQEL
BQADggEBAEvcS7C/7shkG9JqK6+ua2JfUD8UeUEdKzMn+rmf1YjstKdQOnpZw4iF
Zhrgj5OH7BSHRwZ7a0Ue/S7btzDLLymNEnL3ENf8Mqv4vuFWR/XwvdaU0LBuOUPD
HX8YLAOkVkwI1Gz8tIjseWd+V9wtRvcRG+XlDEV3bzLdNyCP/a7UDWyELZ5CkP4y
+dM8xnZ4FOfH9N1xJ2cxb+CVFEZkWI23XJ9akuwvTRIjNcEs25ImblMzGqET9Fw2
5cgeY4GQUD8/3prUkNnMB7b60rzAIvRvcHLRsnSE5CK6zWH10wSs+OaXEDfy6dPU
Mr9agdAfYOyb2ZrD4+/tlJnYIC4XvqA=
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:43 2024 by rpki-client on console-fra.rpki-client.org