Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB03377CC0CD11EF85580897762E951A.roa
File: FB03377CC0CD11EF85580897762E951A.roa (raw, json)
Hash identifier: 1a2qbfZ7boJj545lMaw74WmawDU3TQklM196fGFOkq4=
Subject key identifier: 9B:55:DC:63:FC:FB:B0:02:A7:64:53:21:14:C4:42:CC:66:60:40:CB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011E20
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB03377CC0CD11EF85580897762E951A.roa
Signing time: Mon 23 Dec 2024 01:33:58 +0000
ROA not before: Mon 23 Dec 2024 01:33:55 +0000
ROA not after: Wed 10 Dec 2025 01:33:55 +0000
asID: 984
IP address blocks: 154.83.74.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:06:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73248 (0x11e20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 23 01:33:55 2024 GMT
Not After : Dec 10 01:33:55 2025 GMT
Subject: CN=6768be06-0f3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:4c:b8:61:81:25:2b:8b:db:2c:ec:1a:fb:19:
93:7f:23:f1:26:eb:5d:75:ea:9f:be:ef:15:6d:2b:
87:5f:d7:07:68:c2:39:4f:a1:38:4c:a0:c2:3b:06:
36:02:37:7e:e6:bb:fe:cf:5a:c3:23:fa:03:67:1b:
dc:03:cc:9f:a7:20:98:3f:26:88:1f:fa:f3:9b:3c:
43:2e:1d:30:f8:4f:a4:29:97:ec:95:d0:05:31:ed:
b8:ee:1e:f8:fc:53:6e:12:b0:a3:43:a8:7c:5f:f1:
57:44:04:d0:12:9f:41:bd:95:a2:2f:e8:ce:da:f0:
e0:d2:ec:54:ed:b2:d3:8f:22:f1:22:88:1f:65:33:
16:93:3e:ec:69:d5:d3:4f:af:1a:1f:f4:a7:26:b3:
18:00:c4:05:0a:9c:30:79:ba:94:1e:4b:64:56:67:
8c:bc:3a:83:59:2a:f1:1f:0f:0a:46:e7:21:bd:52:
eb:94:81:3f:8e:3c:82:c9:34:11:86:6a:3c:a2:ce:
56:b2:dc:3d:4e:44:21:60:e1:32:9e:da:e6:f7:fc:
27:23:41:93:6c:43:d3:53:50:bc:bf:c8:a3:02:22:
76:b2:7d:ea:f0:9b:87:8c:09:37:04:b7:ae:74:2c:
c6:40:49:76:6e:03:67:cb:44:d0:cd:38:7c:d2:cf:
93:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:55:DC:63:FC:FB:B0:02:A7:64:53:21:14:C4:42:CC:66:60:40:CB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB03377CC0CD11EF85580897762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.74.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:fb:40:b0:98:f2:df:c8:ef:4e:74:7e:be:53:8d:07:9b:22:
20:a0:81:bd:7e:3c:9e:8f:72:dd:4d:d7:12:24:a8:11:e1:d9:
a7:de:25:2c:e8:83:2c:1f:e1:e7:3e:c9:ab:b4:07:51:fe:43:
5e:92:6b:74:2e:e0:3f:15:96:40:d9:f2:19:af:8a:69:7d:28:
40:50:3c:2f:ad:13:35:d6:e5:3b:68:3c:08:33:f6:75:1a:2a:
2e:ec:64:04:32:a6:03:f6:60:f3:7c:5d:f7:c3:35:6c:f1:7e:
16:91:e4:f9:ed:fc:74:a2:ec:41:80:c4:96:c2:92:c8:8a:a9:
b5:b5:56:c5:61:bf:de:5d:8c:21:b9:76:d5:4c:10:6f:73:fe:
5c:e9:0e:04:b6:6a:20:6a:5f:f8:94:56:3d:95:9b:12:cd:9e:
e3:73:63:57:73:ec:51:98:6e:9f:10:e4:68:8e:ce:a2:4a:84:
34:4b:44:b3:9b:8b:37:e6:c6:a5:58:1c:5b:09:94:67:a9:3f:
e7:68:e5:ce:a5:e9:7b:ce:cd:9b:cb:6e:dd:aa:a0:eb:66:12:
f2:79:b9:cc:13:2e:ff:71:86:01:ff:94:b1:28:93:e5:70:59:
00:5b:6b:90:aa:e8:46:7a:e8:93:e3:10:dc:26:b1:a9:8c:d5:
b2:e2:55:5b
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAR4gMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjIzMDEzMzU1WhcNMjUxMjEwMDEzMzU1WjAYMRYw
FAYDVQQDEw02NzY4YmUwNi0wZjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3ky4YYElK4vbLOwa+xmTfyPxJutddeqfvu8VbSuHX9cHaMI5T6E4TKDC
OwY2Ajd+5rv+z1rDI/oDZxvcA8yfpyCYPyaIH/rzmzxDLh0w+E+kKZfsldAFMe24
7h74/FNuErCjQ6h8X/FXRATQEp9BvZWiL+jO2vDg0uxU7bLTjyLxIogfZTMWkz7s
adXTT68aH/SnJrMYAMQFCpwwebqUHktkVmeMvDqDWSrxHw8KRuchvVLrlIE/jjyC
yTQRhmo8os5Wstw9TkQhYOEyntrm9/wnI0GTbEPTU1C8v8ijAiJ2sn3q8JuHjAk3
BLeudCzGQEl2bgNny0TQzTh80s+TeQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJtV
3GP8+7ACp2RTIRTEQsxmYEDLMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GQjAzMzc3Q0MwQ0QxMUVGODU1ODA4OTc3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlNKMA0GCSqGSIb3DQEB
CwUAA4IBAQA7+0CwmPLfyO9OdH6+U40HmyIgoIG9fjyej3LdTdcSJKgR4dmn3iUs
6IMsH+HnPsmrtAdR/kNekmt0LuA/FZZA2fIZr4ppfShAUDwvrRM11uU7aDwIM/Z1
Giou7GQEMqYD9mDzfF33wzVs8X4WkeT57fx0ouxBgMSWwpLIiqm1tVbFYb/eXYwh
uXbVTBBvc/5c6Q4Etmogal/4lFY9lZsSzZ7jc2NXc+xRmG6fEORojs6iSoQ0S0Sz
m4s35salWBxbCZRnqT/naOXOpel7zs2by27dqqDrZhLyebnMEy7/cYYB/5SxKJPl
cFkAW2uQquhGeuiT4xDcJrGpjNWy4lVb
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:56:51 2025 by rpki-client