Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FD47EEFCF86811EE92ACA1F9007001B1.roa
File: FD47EEFCF86811EE92ACA1F9007001B1.roa (raw, json)
Hash identifier: dehC86epnE5NRcQP7IGb/C6ytdqK6xI4sRCwoenT0dY=
Subject key identifier: CC:9F:A3:0A:E3:97:3B:4D:C5:56:52:F4:84:C9:DF:DA:57:EB:0D:AE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB5E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FD47EEFCF86811EE92ACA1F9007001B1.roa
Signing time: Fri 12 Apr 2024 01:07:10 +0000
ROA not before: Fri 12 Apr 2024 01:07:07 +0000
ROA not after: Sun 19 May 2024 01:07:07 +0000
asID: 138915
IP address blocks: 154.90.42.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43870 (0xab5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 12 01:07:07 2024 GMT
Not After : May 19 01:07:07 2024 GMT
Subject: CN=6618893e-d392
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:37:74:7a:2e:55:e2:9a:1c:fd:8b:8d:f9:61:
55:c7:bc:1f:40:ed:a0:bd:44:4c:9b:39:0c:3f:11:
90:2c:1b:87:1f:e0:c3:c5:8b:e4:fc:dc:0c:e9:44:
f0:66:21:a6:e3:a1:89:d4:e2:32:65:86:0e:dd:18:
5e:f4:8c:a9:df:22:10:ad:b8:c4:63:e6:9b:3e:75:
c9:9a:18:03:78:d3:bf:f7:4c:dc:e2:35:f7:00:9e:
5c:9b:19:cd:33:43:56:d0:39:20:63:70:dc:81:48:
73:56:72:4f:4c:e7:6d:eb:be:7c:61:f1:b0:3b:1c:
77:df:99:f9:d0:9d:86:90:35:de:4a:4d:2e:38:2c:
c2:30:6f:ad:c0:99:1c:ef:cb:31:f9:01:28:6d:50:
07:48:d0:3c:f3:80:4c:7b:10:3d:f4:d1:e0:1e:cb:
5c:5a:65:fa:0d:2a:c6:a6:fb:e4:39:29:cd:ee:b2:
23:0d:3a:dd:2d:08:7f:bd:bb:f5:44:37:7d:40:31:
9f:06:9f:0c:83:1c:a7:84:1e:c1:77:dd:c2:6c:9b:
40:b6:b0:07:b3:fc:8e:3b:3d:58:17:69:02:4b:17:
f5:d2:bb:91:dd:73:14:23:dd:95:05:fb:e3:9d:99:
64:3a:cc:da:3a:5f:08:3f:85:d2:61:4c:07:82:13:
a5:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:9F:A3:0A:E3:97:3B:4D:C5:56:52:F4:84:C9:DF:DA:57:EB:0D:AE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FD47EEFCF86811EE92ACA1F9007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.42.0/23
Signature Algorithm: sha256WithRSAEncryption
b9:45:72:9d:a6:16:94:67:4c:f8:8c:3a:7e:f9:e0:49:c9:54:
7f:63:42:3e:91:57:20:b8:3b:1b:9d:92:f0:df:5f:33:d9:00:
7b:44:a6:e2:79:a1:67:f9:4d:44:45:76:22:12:c2:44:5f:5e:
3f:9f:a2:da:93:a8:bc:9a:1e:f0:b2:95:bd:a1:d4:de:02:00:
b4:60:d4:ce:5a:1e:ee:50:df:bc:dc:26:0d:50:af:89:72:8b:
3a:3b:6d:bb:39:36:12:59:7a:92:59:5e:68:70:1a:90:f4:1a:
75:00:9e:2a:e0:77:b6:34:56:05:01:c1:c0:f7:fe:3d:69:b6:
15:f2:66:29:88:7f:7b:6e:25:fb:94:b1:9d:26:75:46:54:5f:
af:70:8e:f3:7b:cb:dc:22:bf:85:ca:54:96:37:61:e9:2b:84:
b5:2d:96:07:4e:51:6c:46:94:0f:3e:0d:ac:ae:eb:57:63:72:
b4:f9:36:0f:cd:2b:41:dd:70:63:ff:2e:25:47:fb:79:43:c3:
57:b4:d2:18:bb:de:a5:6a:61:49:88:2c:b8:cc:ba:40:77:db:
b1:a7:41:26:09:39:d9:80:88:8c:89:4c:09:38:34:80:96:7e:
9a:40:71:ca:7d:08:79:e0:69:e8:95:94:ad:5c:4d:e6:2b:b1:
cb:bb:37:21
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKteMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDEyMDEwNzA3WhcNMjQwNTE5MDEwNzA3WjAYMRYw
FAYDVQQDEw02NjE4ODkzZS1kMzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA4Td0ei5V4poc/YuN+WFVx7wfQO2gvURMmzkMPxGQLBuHH+DDxYvk/NwM
6UTwZiGm46GJ1OIyZYYO3Rhe9Iyp3yIQrbjEY+abPnXJmhgDeNO/90zc4jX3AJ5c
mxnNM0NW0DkgY3DcgUhzVnJPTOdt6758YfGwOxx335n50J2GkDXeSk0uOCzCMG+t
wJkc78sx+QEobVAHSNA884BMexA99NHgHstcWmX6DSrGpvvkOSnN7rIjDTrdLQh/
vbv1RDd9QDGfBp8MgxynhB7Bd93CbJtAtrAHs/yOOz1YF2kCSxf10ruR3XMUI92V
BfvjnZlkOszaOl8IP4XSYUwHghOlIQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFMyf
owrjlztNxVZS9ITJ39pX6w2uMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GRDQ3RUVGQ0Y4NjgxMUVFOTJBQ0ExRjkwMDcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmloqMA0GCSqGSIb3DQEB
CwUAA4IBAQC5RXKdphaUZ0z4jDp++eBJyVR/Y0I+kVcguDsbnZLw318z2QB7RKbi
eaFn+U1ERXYiEsJEX14/n6Lak6i8mh7wspW9odTeAgC0YNTOWh7uUN+83CYNUK+J
cos6O227OTYSWXqSWV5ocBqQ9Bp1AJ4q4He2NFYFAcHA9/49abYV8mYpiH97biX7
lLGdJnVGVF+vcI7ze8vcIr+FylSWN2HpK4S1LZYHTlFsRpQPPg2srutXY3K0+TYP
zStB3XBj/y4lR/t5Q8NXtNIYu96lamFJiCy4zLpAd9uxp0EmCTnZgIiMiUwJODSA
ln6aQHHKfQh54GnolZStXE3mK7HLuzch
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:44 2024 by rpki-client on console-fra.rpki-client.org