Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01B6408ACCC011EE889B6288775412E6.roa
File: 01B6408ACCC011EE889B6288775412E6.roa (raw, json)
Hash identifier: w0xLuPvRAjn99yWSieih1Qef19VAgqTR7iiPKAfeQUQ=
Subject key identifier: F7:D3:EF:32:E8:35:69:81:4B:92:5B:1A:28:6D:8E:9A:CD:F2:43:EA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8AFF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01B6408ACCC011EE889B6288775412E6.roa
Signing time: Fri 16 Feb 2024 11:39:13 +0000
ROA not before: Fri 16 Feb 2024 11:39:10 +0000
ROA not after: Fri 26 Apr 2024 11:39:10 +0000
asID: 9009
IP address blocks: 154.216.239.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 11:39:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35583 (0x8aff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 11:39:10 2024 GMT
Not After : Apr 26 11:39:10 2024 GMT
Subject: CN=65cf4961-00f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:e8:e3:da:72:61:ec:70:1e:69:ad:91:2c:da:
e5:08:57:57:08:db:4e:b3:d2:fb:21:f0:36:06:4b:
1c:21:33:fa:64:cb:0c:00:5b:ad:98:53:72:39:a3:
1e:b4:90:3e:34:5b:7a:55:17:86:b6:11:e8:41:11:
fd:64:00:f1:d3:31:53:fd:64:ad:ec:ad:6d:5b:eb:
ef:26:ba:1b:7d:4d:22:2c:cd:6b:e5:2b:a4:d3:ef:
6e:f0:23:e9:e9:cc:c5:9e:7e:2b:92:76:69:53:b8:
23:76:f0:82:dc:0d:d6:13:82:0c:e6:1c:f1:5b:4a:
5b:c5:d4:cc:5e:62:08:2f:ba:26:22:7d:ca:3d:b4:
9b:9b:ec:78:e1:84:03:08:88:f3:55:b2:05:7b:d0:
44:97:8f:af:b3:20:7d:48:a3:fb:75:83:39:35:cd:
fe:1a:c9:88:94:f0:16:a6:f6:cd:a0:58:20:30:54:
90:7d:c7:a2:5d:1d:9b:4c:9e:20:ac:fb:20:43:b3:
af:35:1e:84:2a:21:a6:02:1e:dd:35:a3:85:3e:7e:
cc:ab:b8:5a:4a:1c:45:4c:b7:ac:17:a1:ad:79:bf:
24:0e:77:89:e3:a7:2e:20:ed:3e:a2:2b:b1:d8:ea:
6c:ed:8a:86:bd:fd:7e:81:de:92:00:8e:1d:bf:21:
ec:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:D3:EF:32:E8:35:69:81:4B:92:5B:1A:28:6D:8E:9A:CD:F2:43:EA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01B6408ACCC011EE889B6288775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.239.0/24
Signature Algorithm: sha256WithRSAEncryption
42:a9:4e:b7:22:92:7b:9b:7c:b1:61:45:1a:37:57:20:98:5a:
1f:21:9e:18:ef:80:dc:dc:6f:40:61:a9:18:0d:d9:d3:fc:de:
8a:b3:c3:36:28:95:5d:1c:9e:d5:4d:ad:88:64:25:d2:f7:4e:
01:90:c6:a6:c3:7c:f9:31:33:ff:e4:49:d9:db:22:e4:6c:14:
0b:a3:b1:f5:b0:a1:6e:fe:a8:b9:e6:b4:cc:d6:c3:0b:cb:07:
53:20:cf:65:6e:f6:05:e6:fa:6a:65:38:99:78:9a:24:54:89:
fb:c3:5f:d2:0a:53:0d:86:ee:1d:34:72:cf:d5:ff:30:7d:e5:
b6:3b:f4:ee:1e:e0:1c:9a:28:7a:38:dc:b6:1a:09:bf:1f:b1:
ae:44:75:39:33:9c:ac:4f:a4:ca:bb:e0:93:ae:68:3d:2c:63:
b2:89:71:1c:76:38:d9:15:03:06:4e:71:78:aa:5e:0e:a2:9b:
97:ce:d4:fd:7f:5d:25:8f:0f:79:41:ff:6b:39:0b:ff:f2:54:
7b:f7:6f:71:a2:21:ad:d3:a6:c6:f6:49:79:a9:21:6b:0c:cc:
d8:f0:de:7c:6f:e6:d3:18:74:9c:b4:a7:dd:fc:44:d9:75:00:
a7:4b:14:84:f5:18:5e:1f:47:63:dd:3a:bc:de:77:bf:6c:65:
33:aa:f6:f8
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAIr/MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMjE2MTEzOTEwWhcNMjQwNDI2MTEzOTEwWjAYMRYw
FAYDVQQDEw02NWNmNDk2MS0wMGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA9ejj2nJh7HAeaa2RLNrlCFdXCNtOs9L7IfA2BkscITP6ZMsMAFutmFNy
OaMetJA+NFt6VReGthHoQRH9ZADx0zFT/WSt7K1tW+vvJrobfU0iLM1r5Suk0+9u
8CPp6czFnn4rknZpU7gjdvCC3A3WE4IM5hzxW0pbxdTMXmIIL7omIn3KPbSbm+x4
4YQDCIjzVbIFe9BEl4+vsyB9SKP7dYM5Nc3+GsmIlPAWpvbNoFggMFSQfceiXR2b
TJ4grPsgQ7OvNR6EKiGmAh7dNaOFPn7Mq7haShxFTLesF6Gteb8kDneJ46cuIO0+
oiux2Ops7YqGvf1+gd6SAI4dvyHsqwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPfT
7zLoNWmBS5JbGihtjprN8kPqMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wMUI2NDA4QUNDQzAxMUVFODg5QjYyODg3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtjvMA0GCSqGSIb3DQEB
CwUAA4IBAQBCqU63IpJ7m3yxYUUaN1cgmFofIZ4Y74Dc3G9AYakYDdnT/N6Ks8M2
KJVdHJ7VTa2IZCXS904BkMamw3z5MTP/5EnZ2yLkbBQLo7H1sKFu/qi55rTM1sML
ywdTIM9lbvYF5vpqZTiZeJokVIn7w1/SClMNhu4dNHLP1f8wfeW2O/TuHuAcmih6
ONy2Ggm/H7GuRHU5M5ysT6TKu+CTrmg9LGOyiXEcdjjZFQMGTnF4ql4OopuXztT9
f10ljw95Qf9rOQv/8lR7929xoiGt06bG9kl5qSFrDMzY8N58b+bTGHSctKfd/ETZ
dQCnSxSE9RheH0dj3Tq83ne/bGUzqvb4
-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:27 2024 by rpki-client on console-ams.rpki-client.org