Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1473E180B5311EF8E1ED632017001B1.roa
File: D1473E180B5311EF8E1ED632017001B1.roa (raw, json)
Hash identifier: wOAzcXfGd8jn6k+HmCaYFyGTZrRG6BBNK5nPy7T022c=
Subject key identifier: A3:41:07:D1:76:C2:8A:8C:8A:80:02:9E:9A:A9:0C:CF:90:E6:ED:36
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B4C0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1473E180B5311EF8E1ED632017001B1.roa
Signing time: Mon 06 May 2024 02:53:29 +0000
ROA not before: Mon 06 May 2024 02:53:26 +0000
ROA not after: Tue 11 Jun 2024 02:53:26 +0000
asID: 63139
IP address blocks: 154.203.161.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46272 (0xb4c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 02:53:26 2024 GMT
Not After : Jun 11 02:53:26 2024 GMT
Subject: CN=66384629-0a96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:92:e6:8f:98:e9:00:90:e7:f0:d1:06:6f:65:
bd:fc:ee:db:2a:23:e5:9b:10:77:83:07:4c:64:c5:
cd:de:b4:3a:de:cc:84:ef:bb:27:3f:d0:a0:a2:0a:
90:fd:4c:50:fa:56:d5:e5:fa:66:92:7d:80:7c:15:
ef:ef:54:62:0c:67:36:1b:e7:ed:89:04:f3:2a:72:
b2:ba:f1:4b:29:9f:6f:8f:d7:6c:25:81:ca:b4:23:
20:75:fa:20:f4:6c:83:1f:23:76:e3:b5:1b:6d:ad:
5c:a1:24:94:9c:7f:d7:ec:35:62:9b:aa:95:95:ac:
be:7e:90:c1:b7:03:ed:b1:e2:58:83:73:62:11:11:
81:6c:2b:58:51:01:a7:f2:34:f0:d4:d8:eb:2a:61:
60:d9:f0:7b:d8:21:7d:e8:88:94:c8:ee:0c:7d:36:
88:eb:4a:ff:d3:d7:58:fd:79:ea:60:d8:78:c3:71:
18:26:5c:54:5f:8c:03:9c:c0:36:15:3b:9d:99:2a:
74:0d:38:1e:d0:b4:32:6d:41:10:cb:ac:47:f7:7f:
8e:26:40:f2:a7:d0:a2:0f:d8:f6:c2:5b:5d:44:97:
87:5e:58:20:fc:4b:51:5e:e3:f5:be:04:af:e0:fe:
82:dd:f0:a0:3d:ac:bd:37:9c:e3:df:51:1f:60:4e:
a7:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:41:07:D1:76:C2:8A:8C:8A:80:02:9E:9A:A9:0C:CF:90:E6:ED:36
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1473E180B5311EF8E1ED632017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.161.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:f9:41:2e:95:3d:a2:9f:f5:9c:8a:fe:a9:de:62:d7:dd:99:
4a:7e:06:2d:4f:1c:69:38:cb:ce:c6:54:7e:1b:1f:d4:78:8d:
6f:4a:66:e8:91:e6:15:bf:f7:98:70:2a:19:48:59:1d:d1:22:
e1:6f:89:6a:6f:1c:0e:63:88:c7:72:f8:48:43:94:3a:8d:d5:
14:c8:7c:73:2b:07:1a:2b:44:63:8e:76:47:48:86:bf:67:a0:
d0:44:42:08:79:c0:81:0c:bc:ce:04:35:a2:2f:0d:3a:99:20:
6c:e7:84:8e:43:01:a8:1e:cf:c0:5a:73:cf:91:09:d3:f2:f3:
1f:0d:3f:c3:9b:c1:3d:44:04:e8:c9:b5:d8:c3:d7:97:0f:cb:
37:10:d9:6b:21:ff:58:a4:f0:ca:3f:57:37:56:5a:42:94:53:
22:01:62:c1:52:7c:5b:7a:7e:43:09:70:20:99:79:0d:ea:b3:
fa:c1:65:80:9d:8d:dd:c7:9c:3c:55:86:e9:25:f8:89:90:8c:
fd:b0:08:53:18:90:0d:17:96:a8:41:55:0b:95:7f:e9:20:dc:
e6:c4:e0:84:b6:7f:ab:45:3c:c0:27:68:97:ad:79:bb:65:01:
cc:26:f5:18:b9:fb:88:de:7d:13:6f:1c:12:56:15:c5:63:c1:
54:0b:9e:d3
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALTAMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNTA2MDI1MzI2WhcNMjQwNjExMDI1MzI2WjAYMRYw
FAYDVQQDEw02NjM4NDYyOS0wYTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAmZLmj5jpAJDn8NEGb2W9/O7bKiPlmxB3gwdMZMXN3rQ63syE77snP9Cg
ogqQ/UxQ+lbV5fpmkn2AfBXv71RiDGc2G+ftiQTzKnKyuvFLKZ9vj9dsJYHKtCMg
dfog9GyDHyN247Ubba1coSSUnH/X7DVim6qVlay+fpDBtwPtseJYg3NiERGBbCtY
UQGn8jTw1NjrKmFg2fB72CF96IiUyO4MfTaI60r/09dY/XnqYNh4w3EYJlxUX4wD
nMA2FTudmSp0DTge0LQybUEQy6xH93+OJkDyp9CiD9j2wltdRJeHXlgg/EtRXuP1
vgSv4P6C3fCgPay9N5zj31EfYE6n7wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFKNB
B9F2woqMioACnpqpDM+Q5u02MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9EMTQ3M0UxODBCNTMxMUVGOEUxRUQ2MzIwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsuhMA0GCSqGSIb3DQEB
CwUAA4IBAQAq+UEulT2in/Wciv6p3mLX3ZlKfgYtTxxpOMvOxlR+Gx/UeI1vSmbo
keYVv/eYcCoZSFkd0SLhb4lqbxwOY4jHcvhIQ5Q6jdUUyHxzKwcaK0RjjnZHSIa/
Z6DQREIIecCBDLzOBDWiLw06mSBs54SOQwGoHs/AWnPPkQnT8vMfDT/Dm8E9RATo
ybXYw9eXD8s3ENlrIf9YpPDKP1c3VlpClFMiAWLBUnxben5DCXAgmXkN6rP6wWWA
nY3dx5w8VYbpJfiJkIz9sAhTGJANF5aoQVULlX/pINzmxOCEtn+rRTzAJ2iXrXm7
ZQHMJvUYufuI3n0TbxwSVhXFY8FUC57T
-----END CERTIFICATE-----
Generated at Sat Jun 1 08:15:33 2024 by rpki-client on console-ams.rpki-client.org