Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6FC3570005F211EFAC0E8665017001B1.roa
File: 6FC3570005F211EFAC0E8665017001B1.roa (raw, json)
Hash identifier: f2mu6H9uU6Z9Q6532TdExPrOJT3OPcEH1GNER0jvjc8=
Subject key identifier: 45:A5:F3:06:B8:3C:6E:C9:67:9E:82:73:C1:A7:AF:EF:97:0D:01:9D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B1EC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6FC3570005F211EFAC0E8665017001B1.roa
Signing time: Mon 29 Apr 2024 06:33:49 +0000
ROA not before: Mon 29 Apr 2024 06:33:46 +0000
ROA not after: Sat 01 Jun 2024 06:33:46 +0000
asID: 147176
IP address blocks: 154.197.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45548 (0xb1ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 06:33:46 2024 GMT
Not After : Jun 1 06:33:46 2024 GMT
Subject: CN=662f3f4d-e09c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:82:e8:5f:92:81:0d:d9:77:d6:69:f7:ee:6a:
d7:2f:bf:a2:89:66:0e:99:cd:f6:ee:03:68:7e:0b:
51:50:a4:99:10:5d:5c:4b:2d:42:a2:4b:06:d1:08:
b8:a4:df:cf:76:f5:86:b1:3e:47:ef:15:50:e7:69:
95:f8:82:0b:1e:eb:e4:19:21:77:17:65:40:b4:82:
1e:62:69:0d:e6:19:5a:aa:43:5d:d5:c6:cd:9c:14:
08:f0:54:c8:be:0d:06:3c:f9:68:f5:b5:72:5d:13:
06:4b:50:1f:7b:56:e1:ec:91:19:2e:5a:e6:ba:0c:
f9:b7:b3:c2:2b:17:8b:71:93:ff:96:20:ac:32:ad:
c0:ad:7b:3d:4e:b7:c2:ff:ae:17:11:35:2e:cc:c8:
2d:f5:08:a7:28:39:73:03:44:72:35:ca:a4:5f:12:
ec:b8:e4:ae:8d:06:9c:9a:f4:16:33:82:92:d1:b3:
3b:72:d1:47:19:71:21:f8:4f:52:0e:9a:c9:37:bf:
ab:f9:40:78:93:86:48:0f:1d:e4:9f:f7:9b:b6:8b:
67:c1:ee:d7:c2:4c:6c:b2:40:83:1f:fd:81:bd:67:
66:03:3f:16:95:67:eb:24:1e:c0:eb:af:8a:29:16:
41:24:b0:7d:06:10:e6:a0:30:c6:3a:89:dd:1a:dd:
a7:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:A5:F3:06:B8:3C:6E:C9:67:9E:82:73:C1:A7:AF:EF:97:0D:01:9D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6FC3570005F211EFAC0E8665017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.69.0/24
Signature Algorithm: sha256WithRSAEncryption
94:1e:5d:9d:17:80:d2:5b:cd:ee:5e:cb:fc:d3:7e:18:ff:93:
10:58:07:17:9f:34:ef:d1:a3:9e:34:9f:b7:ec:a3:62:0b:53:
41:64:85:17:52:8a:36:cb:0b:08:f1:af:96:72:fa:5c:08:c1:
73:67:3f:c1:5a:b8:e9:97:f9:78:d1:27:a0:49:e4:f0:6a:19:
92:b5:bd:f5:b8:5f:a7:53:1e:ff:eb:b1:39:f5:7a:a2:55:13:
99:6d:a4:f9:96:f8:8f:97:0e:05:38:6d:0a:0a:03:3b:9b:12:
a9:70:d3:ca:10:9e:dd:5b:78:43:f6:bf:dd:1e:90:75:a3:1b:
ea:b4:1b:03:39:c3:f7:35:ee:63:8d:c1:82:80:5c:60:58:50:
30:45:c6:86:8c:9e:4b:68:6d:6f:0f:9e:68:3c:dd:c2:79:63:
96:00:23:81:99:91:1b:73:70:22:78:8b:00:c3:89:0e:24:a3:
f6:ba:1e:bc:1f:1b:fb:7a:62:72:4a:34:7d:05:a5:3f:3d:c0:
66:87:14:ce:d6:3d:df:14:ea:76:25:04:97:eb:5b:4a:f0:41:
65:6f:5e:86:88:cf:3f:23:8f:f6:1a:91:1f:6e:bb:b7:0f:71:
dd:8c:32:e7:c7:59:3d:2c:43:04:2b:52:f6:ca:ac:b5:9a:35:
ba:08:b3:fe
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALHsMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDI5MDYzMzQ2WhcNMjQwNjAxMDYzMzQ2WjAYMRYw
FAYDVQQDEw02NjJmM2Y0ZC1lMDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAnYLoX5KBDdl31mn37mrXL7+iiWYOmc327gNofgtRUKSZEF1cSy1CoksG
0Qi4pN/PdvWGsT5H7xVQ52mV+IILHuvkGSF3F2VAtIIeYmkN5hlaqkNd1cbNnBQI
8FTIvg0GPPlo9bVyXRMGS1Afe1bh7JEZLlrmugz5t7PCKxeLcZP/liCsMq3ArXs9
TrfC/64XETUuzMgt9QinKDlzA0RyNcqkXxLsuOSujQacmvQWM4KS0bM7ctFHGXEh
+E9SDprJN7+r+UB4k4ZIDx3kn/ebtotnwe7XwkxsskCDH/2BvWdmAz8WlWfrJB7A
66+KKRZBJLB9BhDmoDDGOondGt2nNwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFEWl
8wa4PG7JZ56Cc8Gnr++XDQGdMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82RkMzNTcwMDA1RjIxMUVGQUMwRTg2NjUwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsVFMA0GCSqGSIb3DQEB
CwUAA4IBAQCUHl2dF4DSW83uXsv8034Y/5MQWAcXnzTv0aOeNJ+37KNiC1NBZIUX
Uoo2ywsI8a+WcvpcCMFzZz/BWrjpl/l40SegSeTwahmStb31uF+nUx7/67E59Xqi
VROZbaT5lviPlw4FOG0KCgM7mxKpcNPKEJ7dW3hD9r/dHpB1oxvqtBsDOcP3Ne5j
jcGCgFxgWFAwRcaGjJ5LaG1vD55oPN3CeWOWACOBmZEbc3AieIsAw4kOJKP2uh68
Hxv7emJySjR9BaU/PcBmhxTO1j3fFOp2JQSX61tK8EFlb16GiM8/I4/2GpEfbru3
D3HdjDLnx1k9LEMEK1L2yqy1mjW6CLP+
-----END CERTIFICATE-----
Generated at Mon May 20 03:21:24 2024 by rpki-client on console-ams.rpki-client.org