Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B0F4ED00C0C11EF922CC604017001B1.roa
File: 4B0F4ED00C0C11EF922CC604017001B1.roa (raw, json)
Hash identifier: fbsHTcXf85i37ezeLDf/vHar1dsBvfv2BdSpFrwT8Nk=
Subject key identifier: 24:E5:94:40:B3:DB:F3:5C:15:99:74:11:F4:49:AD:4E:A5:A7:DC:FE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B543
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B0F4ED00C0C11EF922CC604017001B1.roa
Signing time: Tue 07 May 2024 00:54:01 +0000
ROA not before: Tue 07 May 2024 00:00:58 +0000
ROA not after: Sun 09 Jun 2024 00:00:58 +0000
asID: 23470
IP address blocks: 154.202.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46403 (0xb543)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 7 00:00:58 2024 GMT
Not After : Jun 9 00:00:58 2024 GMT
Subject: CN=66397ba9-3ed9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:22:ef:33:df:73:74:39:e5:56:f1:01:0e:e4:
33:b9:7b:ef:78:51:83:fc:11:55:66:a2:ff:8b:92:
e0:f5:ee:71:eb:64:7b:c4:93:d7:86:f5:12:e3:55:
a4:6c:1a:4f:87:28:51:d5:a1:f3:20:87:59:a6:ca:
ff:ca:33:48:cf:a7:1a:d9:bf:4b:a7:d9:8b:e2:4d:
af:45:dc:65:c5:50:ce:8d:50:bd:da:d9:02:3d:b6:
9b:c3:be:1d:5d:c0:ed:0d:1f:29:ad:d8:ab:1b:32:
ac:1d:8d:3f:20:e7:93:1b:81:e6:3c:01:fb:6c:a7:
00:0f:06:cf:a4:de:c9:39:ef:98:5d:91:aa:ec:f4:
7b:1b:6e:92:b7:44:d6:ec:78:86:c3:99:34:2a:7b:
68:b5:9e:5a:b7:9d:03:7b:20:fc:0f:f2:81:23:cb:
da:90:52:74:21:23:c1:52:55:18:4f:28:7c:b6:30:
d9:2f:45:97:3c:6d:dd:7a:d4:55:e3:35:81:27:b5:
71:f3:57:0d:bb:5c:ed:b6:36:33:fb:27:37:21:fe:
39:b1:ed:d5:88:40:f9:ea:2d:de:71:db:20:12:58:
3b:f8:41:d9:2f:fb:7c:41:e6:f7:fd:a8:87:5a:42:
95:de:f8:96:f4:90:bd:1f:7b:73:cb:4d:61:dd:69:
fe:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:E5:94:40:B3:DB:F3:5C:15:99:74:11:F4:49:AD:4E:A5:A7:DC:FE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B0F4ED00C0C11EF922CC604017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.3.0/24
Signature Algorithm: sha256WithRSAEncryption
80:02:55:ea:5f:2f:70:95:c9:e9:6f:b1:c6:47:4c:36:20:47:
a1:29:4e:f8:6e:b7:f4:5a:d2:4e:f5:22:cb:dc:51:0f:25:cf:
35:a5:9e:ec:4e:a5:25:f1:3c:a8:ff:e9:08:10:2a:68:3e:cd:
c5:8a:3b:46:48:1e:2f:b6:86:26:b9:cb:4e:d0:3a:d5:fe:26:
7b:15:2c:bf:14:8c:d3:97:c2:15:77:53:7a:e7:23:9b:02:4c:
4c:a6:cf:a0:b3:2e:83:b7:9e:8c:8c:83:b9:b8:47:41:dd:ec:
45:74:ab:00:24:64:6c:38:2b:84:4e:b4:35:8d:29:aa:2e:c6:
34:86:83:4e:d7:8a:d6:7e:86:c6:8a:4f:ca:f7:96:a5:da:78:
9a:1a:d4:b4:1f:75:ff:f0:98:49:8c:54:78:a6:f1:97:b5:95:
12:52:d3:b8:6c:37:65:80:9a:ba:c0:85:8f:a0:fd:d6:a4:bf:
7f:69:03:f3:72:d6:5f:2f:3e:d1:19:f8:35:e6:79:fc:4d:86:
33:fb:65:02:da:a4:80:38:e2:ec:61:cb:9b:d3:ff:e8:2b:35:
33:cf:01:c7:44:9e:1a:fb:9b:86:f8:ef:bd:76:c7:5c:de:4c:
01:f1:32:58:19:94:09:2b:95:b5:27:68:9f:d6:e1:8f:8c:ce:
d1:a3:f2:6a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALVDMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNTA3MDAwMDU4WhcNMjQwNjA5MDAwMDU4WjAYMRYw
FAYDVQQDEw02NjM5N2JhOS0zZWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxyLvM99zdDnlVvEBDuQzuXvveFGD/BFVZqL/i5Lg9e5x62R7xJPXhvUS
41WkbBpPhyhR1aHzIIdZpsr/yjNIz6ca2b9Lp9mL4k2vRdxlxVDOjVC92tkCPbab
w74dXcDtDR8prdirGzKsHY0/IOeTG4HmPAH7bKcADwbPpN7JOe+YXZGq7PR7G26S
t0TW7HiGw5k0KntotZ5at50DeyD8D/KBI8vakFJ0ISPBUlUYTyh8tjDZL0WXPG3d
etRV4zWBJ7Vx81cNu1zttjYz+yc3If45se3ViED56i3ecdsgElg7+EHZL/t8Qeb3
/aiHWkKV3viW9JC9H3tzy01h3Wn+XQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCTl
lECz2/NcFZl0EfRJrU6lp9z+MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC80QjBGNEVEMDBDMEMxMUVGOTIyQ0M2MDQwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsoDMA0GCSqGSIb3DQEB
CwUAA4IBAQCAAlXqXy9wlcnpb7HGR0w2IEehKU74brf0WtJO9SLL3FEPJc81pZ7s
TqUl8Tyo/+kIECpoPs3FijtGSB4vtoYmuctO0DrV/iZ7FSy/FIzTl8IVd1N65yOb
AkxMps+gsy6Dt56MjIO5uEdB3exFdKsAJGRsOCuETrQ1jSmqLsY0hoNO14rWfobG
ik/K95al2niaGtS0H3X/8JhJjFR4pvGXtZUSUtO4bDdlgJq6wIWPoP3WpL9/aQPz
ctZfLz7RGfg15nn8TYYz+2UC2qSAOOLsYcub0//oKzUzzwHHRJ4a+5uG+O+9dsdc
3kwB8TJYGZQJK5W1J2if1uGPjM7Ro/Jq
-----END CERTIFICATE-----
Generated at Mon May 20 03:18:14 2024 by rpki-client on console-fra.rpki-client.org