Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D25BE7040DB011EFA1B67FF7007001B1.roa
File: D25BE7040DB011EFA1B67FF7007001B1.roa (raw, json)
Hash identifier: PyRL8Bs9lRIifzI6kqMF2NNJWUlElOKhD2bJsqLbpDY=
Subject key identifier: AD:35:22:85:D8:AA:D3:AD:4D:03:8A:55:01:DB:77:E9:96:CE:51:EE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B59D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D25BE7040DB011EFA1B67FF7007001B1.roa
Signing time: Thu 09 May 2024 03:04:17 +0000
ROA not before: Thu 09 May 2024 03:04:13 +0000
ROA not after: Tue 11 Jun 2024 03:04:13 +0000
asID: 136030
IP address blocks: 154.198.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46493 (0xb59d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 9 03:04:13 2024 GMT
Not After : Jun 11 03:04:13 2024 GMT
Subject: CN=663c3d31-98d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:00:a2:8f:c4:bf:95:91:ab:0a:12:51:61:0b:
4f:45:d7:45:9d:0f:2c:f1:10:01:21:61:85:b9:8a:
f3:44:3f:46:37:10:a7:c4:43:ad:eb:89:9c:31:fd:
40:f9:24:e0:95:3e:b4:4c:5e:81:07:a8:71:f3:e1:
68:f0:1c:bb:81:a4:e1:03:2b:d8:ad:dd:76:d5:20:
c3:4f:4d:d4:89:cd:a1:2d:7d:b9:04:00:bb:85:82:
df:b8:2c:52:9d:38:7f:b4:36:b4:27:62:72:bd:99:
8f:f8:04:79:e0:9d:3b:61:6b:50:02:c0:21:ab:42:
2b:fd:6b:38:49:df:ab:76:d8:51:b5:73:42:e3:71:
a9:40:b8:b2:6e:06:98:2b:be:8b:17:02:e2:ed:93:
a6:b8:9e:23:da:9c:1c:67:4c:6f:4f:27:25:9c:1a:
65:d7:e6:b8:42:da:27:ac:d2:ce:c5:23:a0:7f:0a:
72:90:ac:95:19:68:54:20:08:eb:ec:24:b2:11:e5:
07:a8:a6:2f:3e:45:ff:82:1f:77:22:34:05:b7:6b:
18:ca:85:9b:48:a2:5c:c1:8b:e0:6c:d9:fb:15:bb:
e2:0d:e2:de:c9:a2:13:f1:27:e7:8d:64:e0:c7:4c:
3a:1c:42:5e:ac:06:93:7c:cc:b0:5f:6e:ac:a8:96:
5b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:35:22:85:D8:AA:D3:AD:4D:03:8A:55:01:DB:77:E9:96:CE:51:EE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D25BE7040DB011EFA1B67FF7007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.63.0/24
Signature Algorithm: sha256WithRSAEncryption
19:be:af:f8:4f:90:7a:cd:6c:c5:d9:16:01:5d:50:96:e2:bd:
06:73:dd:d2:50:88:ef:f6:74:bc:73:7e:54:41:b9:4a:e5:91:
18:bb:dc:b6:61:7b:55:c2:2e:c8:18:ce:6f:19:19:3c:35:f7:
af:20:68:5f:46:98:91:27:03:44:9c:22:86:d0:2b:53:3e:d7:
f5:c2:16:2d:66:8c:4d:20:6c:b9:fa:b0:d5:e7:07:a1:5a:f6:
e8:bc:39:b4:b5:2f:c8:85:8a:25:99:83:3e:b9:8b:06:a6:4e:
30:1d:bf:8b:44:8e:a7:9f:b0:9e:9f:37:ab:5e:04:86:5f:e5:
09:7e:37:5a:7a:cb:72:ee:a8:c9:29:eb:f2:09:71:12:65:9a:
cf:ef:b9:d3:b5:a7:f5:db:7d:04:77:bd:b5:07:be:08:2b:5d:
6c:8c:7b:55:2f:5c:2c:d4:49:aa:15:00:48:8a:4a:a8:cf:5a:
95:99:26:3f:a3:28:2f:15:2e:e5:d6:e1:37:7e:67:06:fc:78:
5f:de:45:57:0d:24:f7:9e:fe:21:6a:ab:9e:a2:72:29:60:c5:
fe:87:38:d5:a3:41:a5:7c:40:cc:cf:d9:12:81:68:85:9a:51:
09:22:35:9d:65:2a:d5:9e:71:8c:98:e6:21:8e:0d:f2:ce:6f:
f5:af:3d:46
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALWdMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNTA5MDMwNDEzWhcNMjQwNjExMDMwNDEzWjAYMRYw
FAYDVQQDEw02NjNjM2QzMS05OGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuQCij8S/lZGrChJRYQtPRddFnQ8s8RABIWGFuYrzRD9GNxCnxEOt64mc
Mf1A+STglT60TF6BB6hx8+Fo8By7gaThAyvYrd121SDDT03Uic2hLX25BAC7hYLf
uCxSnTh/tDa0J2JyvZmP+AR54J07YWtQAsAhq0Ir/Ws4Sd+rdthRtXNC43GpQLiy
bgaYK76LFwLi7ZOmuJ4j2pwcZ0xvTyclnBpl1+a4QtonrNLOxSOgfwpykKyVGWhU
IAjr7CSyEeUHqKYvPkX/gh93IjQFt2sYyoWbSKJcwYvgbNn7FbviDeLeyaIT8Sfn
jWTgx0w6HEJerAaTfMywX26sqJZb7wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFK01
IoXYqtOtTQOKVQHbd+mWzlHuMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9EMjVCRTcwNDBEQjAxMUVGQTFCNjdGRjcwMDcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsY/MA0GCSqGSIb3DQEB
CwUAA4IBAQAZvq/4T5B6zWzF2RYBXVCW4r0Gc93SUIjv9nS8c35UQblK5ZEYu9y2
YXtVwi7IGM5vGRk8NfevIGhfRpiRJwNEnCKG0CtTPtf1whYtZoxNIGy5+rDV5weh
WvbovDm0tS/IhYolmYM+uYsGpk4wHb+LRI6nn7CenzerXgSGX+UJfjdaesty7qjJ
KevyCXESZZrP77nTtaf1230Ed721B74IK11sjHtVL1ws1EmqFQBIikqoz1qVmSY/
oygvFS7l1uE3fmcG/Hhf3kVXDST3nv4haqueonIpYMX+hzjVo0GlfEDMz9kSgWiF
mlEJIjWdZSrVnnGMmOYhjg3yzm/1rz1G
-----END CERTIFICATE-----
Generated at Mon May 20 03:21:31 2024 by rpki-client on console-ams.rpki-client.org