Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ECFAC28A0B5B11EFA3EA0CF6007001B1.roa
File: ECFAC28A0B5B11EFA3EA0CF6007001B1.roa (raw, json)
Hash identifier: 8tOJFculCKhmBNPqKhZVNgbTkRfwJkiB1DOU63rxImU=
Subject key identifier: 8C:2F:BA:E0:6F:EE:21:D8:D7:B6:EA:EE:84:E3:EA:F3:04:3F:88:4C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B4E8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ECFAC28A0B5B11EFA3EA0CF6007001B1.roa
Signing time: Mon 06 May 2024 03:51:32 +0000
ROA not before: Mon 06 May 2024 03:51:28 +0000
ROA not after: Tue 11 Jun 2024 03:51:28 +0000
asID: 138915
IP address blocks: 154.203.140.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46312 (0xb4e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 03:51:28 2024 GMT
Not After : Jun 11 03:51:28 2024 GMT
Subject: CN=663853c4-c729
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ef:81:2b:b5:ac:1a:2f:fb:07:e1:12:f1:8a:
1d:3a:1a:80:d1:80:2c:05:68:64:fc:0d:46:70:01:
d6:7c:c5:ec:b4:4a:be:35:95:1a:4a:b6:4d:73:31:
ac:fb:2a:f0:f3:f0:10:3f:bc:e1:58:2f:8e:be:f2:
13:9b:47:9a:23:97:bb:d7:5e:17:2a:d9:1f:f0:4c:
4f:a9:8d:6e:e0:8a:2b:e8:64:c6:18:96:f5:b5:0d:
05:32:fc:65:0f:9a:d0:f7:90:ed:57:9b:3e:af:f9:
4d:44:5c:72:18:da:9e:f3:07:bf:5c:7d:4b:38:98:
28:1e:d7:fe:5d:fb:53:a9:31:aa:93:d1:fd:63:0e:
93:69:62:f6:d5:c7:45:2c:8e:75:75:97:0b:3c:8a:
81:35:e7:80:8a:2c:ce:f7:39:a8:92:98:0a:72:dd:
b2:55:63:d7:8f:6c:7e:ee:34:86:2c:c8:50:2d:dd:
d7:a0:7f:a0:9e:a2:41:3f:2a:af:ed:49:05:89:90:
8a:b1:db:88:11:37:7e:29:ea:a5:f3:d9:45:16:72:
44:a4:58:30:3f:20:32:75:d0:a7:a4:54:59:0e:45:
01:de:8e:c3:41:58:31:f9:f9:78:26:76:2d:46:5a:
f1:ee:f3:fd:d1:21:e0:7a:93:1c:20:11:b7:c0:45:
18:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:2F:BA:E0:6F:EE:21:D8:D7:B6:EA:EE:84:E3:EA:F3:04:3F:88:4C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ECFAC28A0B5B11EFA3EA0CF6007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.140.0/24
Signature Algorithm: sha256WithRSAEncryption
15:8f:b1:39:f2:82:04:ba:f1:63:6c:46:1d:dc:cf:54:9b:39:
f9:11:a3:a7:b1:2c:8c:fa:6a:c3:f0:bd:f2:1f:c6:4e:60:be:
bc:28:ca:21:b0:33:ed:fe:eb:87:ba:41:66:8f:30:2c:ea:85:
03:a2:0f:b1:65:08:a2:a8:93:a7:8b:08:4b:5e:55:6b:5a:83:
48:b7:a4:e3:2d:17:c2:34:fe:34:34:47:ed:27:f7:b4:3e:be:
87:d8:41:0d:74:3e:ff:b7:3e:22:f3:12:d0:ae:b9:19:c1:72:
af:ba:bb:f4:4c:a2:d0:14:1a:6b:75:8f:12:2c:89:60:79:23:
c7:4c:55:f1:c3:84:d7:84:dc:86:d2:f9:9c:99:7b:fb:61:18:
1f:77:97:86:63:57:f2:67:61:61:5d:ee:43:78:08:9c:f8:cf:
8c:bb:53:0f:c4:ef:ac:1b:37:3d:cd:21:40:be:d4:28:f8:2b:
3a:1a:af:a4:57:59:dd:84:79:a1:77:f7:23:99:ab:47:c6:85:
f3:d5:20:17:26:b2:52:43:81:72:95:18:e9:cb:61:63:cb:15:
01:a3:70:2b:ba:ed:38:63:7d:a9:12:aa:bd:8a:30:79:78:84:
7f:fd:61:30:25:d6:4d:61:4a:97:ef:87:1e:1c:a4:64:5c:8e:
0a:98:31:26
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALToMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNTA2MDM1MTI4WhcNMjQwNjExMDM1MTI4WjAYMRYw
FAYDVQQDEw02NjM4NTNjNC1jNzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAve+BK7WsGi/7B+ES8YodOhqA0YAsBWhk/A1GcAHWfMXstEq+NZUaSrZN
czGs+yrw8/AQP7zhWC+OvvITm0eaI5e7114XKtkf8ExPqY1u4Ior6GTGGJb1tQ0F
MvxlD5rQ95DtV5s+r/lNRFxyGNqe8we/XH1LOJgoHtf+XftTqTGqk9H9Yw6TaWL2
1cdFLI51dZcLPIqBNeeAiizO9zmokpgKct2yVWPXj2x+7jSGLMhQLd3XoH+gnqJB
Pyqv7UkFiZCKsduIETd+Keql89lFFnJEpFgwPyAyddCnpFRZDkUB3o7DQVgx+fl4
JnYtRlrx7vP90SHgepMcIBG3wEUY9QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFIwv
uuBv7iHY17bq7oTj6vMEP4hMMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FQ0ZBQzI4QTBCNUIxMUVGQTNFQTBDRjYwMDcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsuMMA0GCSqGSIb3DQEB
CwUAA4IBAQAVj7E58oIEuvFjbEYd3M9Umzn5EaOnsSyM+mrD8L3yH8ZOYL68KMoh
sDPt/uuHukFmjzAs6oUDog+xZQiiqJOniwhLXlVrWoNIt6TjLRfCNP40NEftJ/e0
Pr6H2EENdD7/tz4i8xLQrrkZwXKvurv0TKLQFBprdY8SLIlgeSPHTFXxw4TXhNyG
0vmcmXv7YRgfd5eGY1fyZ2FhXe5DeAic+M+Mu1MPxO+sGzc9zSFAvtQo+Cs6Gq+k
V1ndhHmhd/cjmatHxoXz1SAXJrJSQ4FylRjpy2FjyxUBo3Aruu04Y32pEqq9ijB5
eIR//WEwJdZNYUqX74ceHKRkXI4KmDEm
-----END CERTIFICATE-----
Generated at Mon May 20 03:21:32 2024 by rpki-client on console-ams.rpki-client.org