Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F5F5F0C060F11EF8EC0074D017001B1.roa
File: 2F5F5F0C060F11EF8EC0074D017001B1.roa (raw, json)
Hash identifier: PXgPoVyIxsi7JdNx7E0xQVO6lgCDvyILcBt0RkTuMks=
Subject key identifier: D8:4D:79:87:A4:8D:18:75:9F:1D:16:9A:E0:37:1D:0A:83:15:63:4A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B218
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F5F5F0C060F11EF8EC0074D017001B1.roa
Signing time: Mon 29 Apr 2024 09:59:36 +0000
ROA not before: Mon 29 Apr 2024 09:59:33 +0000
ROA not after: Fri 07 Jun 2024 09:59:33 +0000
asID: 138915
IP address blocks: 154.223.18.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45592 (0xb218)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 09:59:33 2024 GMT
Not After : Jun 7 09:59:33 2024 GMT
Subject: CN=662f6f88-a230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9a:2a:c9:7a:87:cc:e9:4a:4c:f7:1d:18:a0:
36:d0:0c:ff:74:f0:c2:eb:59:4a:99:16:96:f9:41:
37:ab:20:90:64:ad:4b:54:72:30:56:8a:e0:cc:6c:
0d:07:43:d7:38:bf:e9:ac:34:1e:51:10:ee:5e:6b:
98:e3:44:4b:04:a5:cd:27:fe:6b:cf:fa:e0:e5:6c:
b5:77:b5:ff:bd:22:71:f5:1d:44:9e:2e:db:28:c7:
44:05:a3:fa:57:6e:c7:77:d9:19:f9:9a:cc:af:ae:
52:74:9a:7d:e7:73:43:51:37:bc:f7:75:f8:18:f7:
3c:de:aa:7e:d8:03:2b:dd:13:94:4e:4d:eb:2d:df:
d5:2a:c0:a4:a1:4d:53:a5:20:66:d3:85:99:c5:c2:
5b:99:25:e8:09:f8:96:d2:0b:68:ef:20:7e:6c:17:
d0:0a:f8:b4:4e:39:32:ec:30:9e:fd:a6:06:b4:a9:
7b:7d:6d:7d:bf:14:60:8e:df:9f:d0:48:27:93:f6:
0c:41:6e:9b:ac:dc:3a:57:94:1e:3f:e1:87:19:a0:
04:46:7b:47:43:10:52:fe:cb:55:16:ec:66:32:7f:
b3:1d:b2:9d:2d:ae:c3:72:fc:54:e0:17:63:e8:8b:
41:37:77:b6:e7:bf:21:4e:7c:24:1b:50:6c:de:5b:
41:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:4D:79:87:A4:8D:18:75:9F:1D:16:9A:E0:37:1D:0A:83:15:63:4A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F5F5F0C060F11EF8EC0074D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.18.0/23
Signature Algorithm: sha256WithRSAEncryption
c3:e1:b0:93:ce:5b:81:a4:52:34:10:bc:e2:46:ac:f3:59:25:
fa:a9:76:b8:79:de:09:07:50:45:e4:16:d7:cf:4a:4d:86:28:
d7:1c:a9:27:00:71:c2:bc:05:98:d9:26:16:26:2d:9d:f8:08:
27:8b:cd:e4:31:99:98:51:18:2e:c6:57:69:f0:98:58:99:97:
48:b7:12:19:3a:14:bf:03:c0:69:01:23:df:42:72:0f:6d:73:
35:73:93:03:da:61:a7:ea:eb:b6:65:a3:ef:a5:14:b7:0d:a3:
51:33:91:0d:d6:cd:44:ea:d8:fd:3b:9f:b9:5a:0f:9d:b9:40:
1e:01:96:4f:d1:e3:1e:19:8c:c8:0f:63:8c:30:19:5a:29:d7:
f3:b5:51:db:13:7f:d9:8c:fb:9a:fc:6f:dd:31:f0:60:79:55:
dd:5a:74:b4:0a:86:54:f5:5e:1f:57:be:08:77:a0:20:13:7d:
b9:b1:6f:f2:03:24:44:02:44:b7:44:ad:66:ad:a2:98:a4:50:
62:e7:c5:83:30:de:01:4e:f2:06:62:30:f6:b5:e0:4e:0e:31:
ed:7b:00:11:cd:f7:25:2d:5f:3a:75:84:d6:0b:ad:7e:41:3b:
61:f1:a4:1b:be:04:d6:c9:3c:86:b2:44:f8:83:2c:47:62:ef:
67:a6:3f:32
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALIYMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDI5MDk1OTMzWhcNMjQwNjA3MDk1OTMzWjAYMRYw
FAYDVQQDEw02NjJmNmY4OC1hMjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsZoqyXqHzOlKTPcdGKA20Az/dPDC61lKmRaW+UE3qyCQZK1LVHIwVorg
zGwNB0PXOL/prDQeURDuXmuY40RLBKXNJ/5rz/rg5Wy1d7X/vSJx9R1Eni7bKMdE
BaP6V27Hd9kZ+ZrMr65SdJp953NDUTe893X4GPc83qp+2AMr3ROUTk3rLd/VKsCk
oU1TpSBm04WZxcJbmSXoCfiW0gto7yB+bBfQCvi0Tjky7DCe/aYGtKl7fW19vxRg
jt+f0Egnk/YMQW6brNw6V5QeP+GHGaAERntHQxBS/stVFuxmMn+zHbKdLa7DcvxU
4Bdj6ItBN3e2578hTnwkG1Bs3ltBOQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFNhN
eYekjRh1nx0WmuA3HQqDFWNKMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yRjVGNUYwQzA2MEYxMUVGOEVDMDA3NEQwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmt8SMA0GCSqGSIb3DQEB
CwUAA4IBAQDD4bCTzluBpFI0ELziRqzzWSX6qXa4ed4JB1BF5BbXz0pNhijXHKkn
AHHCvAWY2SYWJi2d+Agni83kMZmYURguxldp8JhYmZdItxIZOhS/A8BpASPfQnIP
bXM1c5MD2mGn6uu2ZaPvpRS3DaNRM5EN1s1E6tj9O5+5Wg+duUAeAZZP0eMeGYzI
D2OMMBlaKdfztVHbE3/ZjPua/G/dMfBgeVXdWnS0CoZU9V4fV74Id6AgE325sW/y
AyREAkS3RK1mraKYpFBi58WDMN4BTvIGYjD2teBODjHtewARzfclLV86dYTWC61+
QTth8aQbvgTWyTyGskT4gyxHYu9npj8y
-----END CERTIFICATE-----
Generated at Mon May 20 03:18:13 2024 by rpki-client on console-fra.rpki-client.org