Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FD2B88EE0B5411EF9B25EF39017001B1.roa
File: FD2B88EE0B5411EF9B25EF39017001B1.roa (raw, json)
Hash identifier: uoXt6VuGSIphhrt0w4tpS2SqQ9BfDI3l/L6Q3JlVMfM=
Subject key identifier: 50:01:6F:E7:63:1C:93:58:64:37:E9:FB:FF:82:48:16:04:03:6B:3D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B4CE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FD2B88EE0B5411EF9B25EF39017001B1.roa
Signing time: Mon 06 May 2024 03:01:52 +0000
ROA not before: Mon 06 May 2024 03:01:49 +0000
ROA not after: Tue 11 Jun 2024 03:01:49 +0000
asID: 63139
IP address blocks: 154.203.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46286 (0xb4ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 03:01:49 2024 GMT
Not After : Jun 11 03:01:49 2024 GMT
Subject: CN=66384820-2c7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ab:57:7b:31:0f:c8:7d:9c:7c:2f:07:30:81:
fb:e3:62:99:50:2a:76:24:24:ba:de:5b:8d:39:e8:
d2:aa:2f:41:38:20:d6:e7:b4:da:04:33:dd:5b:9d:
44:40:96:f7:67:3c:e2:e9:9e:f5:13:36:d0:33:55:
a0:d5:15:02:27:f5:d2:db:b7:94:1b:f6:67:bb:c2:
02:7e:fa:71:4d:e9:8f:50:a2:bc:6f:2b:a1:5c:77:
12:e6:fe:42:1b:9f:ae:d9:df:1e:0c:6f:81:d7:e1:
85:f5:92:7f:6f:f9:44:57:c2:08:75:83:16:a2:95:
dd:96:36:eb:45:a6:72:6c:f2:5b:d1:e8:2b:41:54:
8e:c8:6b:7a:5d:dd:ea:bc:71:c7:62:ee:41:cf:00:
c9:4d:3b:2f:be:81:b5:4c:8f:41:ee:0d:3a:cc:e8:
2a:25:79:65:b9:cc:3a:c7:4d:68:ae:46:44:28:6b:
50:1a:19:1b:ca:cd:0d:d4:4b:89:d2:c0:fb:c6:1f:
f8:b2:01:ac:a4:ba:40:cc:2c:5b:84:6d:40:06:99:
e7:86:3a:01:ea:f5:42:5d:9d:8d:37:2f:7b:1f:59:
ec:27:8a:4b:8f:ee:3e:d9:9d:b0:fe:bb:97:1d:19:
15:6c:84:ec:72:af:0f:52:e7:d8:0d:0a:a3:a5:e4:
70:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:01:6F:E7:63:1C:93:58:64:37:E9:FB:FF:82:48:16:04:03:6B:3D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FD2B88EE0B5411EF9B25EF39017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.169.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:3f:f1:cd:c4:3f:c9:bf:2f:75:02:02:b1:9d:15:6d:26:d4:
95:9e:31:fa:d8:85:98:6b:33:10:00:26:fc:cc:54:1a:81:0f:
38:f7:39:04:d1:0b:59:9d:aa:32:a7:e1:4d:c5:5f:1b:04:af:
e5:58:80:8e:3f:1b:a6:8c:b2:48:65:c1:e7:dc:a2:0b:b8:58:
8a:f5:b4:69:1d:97:96:a1:4e:01:ae:71:e7:20:43:61:a9:25:
17:50:4f:23:c5:b2:44:aa:2e:1e:54:3b:b8:d3:62:38:51:db:
a6:1c:b0:35:b5:e4:f6:a1:54:73:b6:92:54:48:25:f7:a1:4d:
22:76:08:9f:89:85:4b:19:72:eb:9d:25:ad:f4:dd:6b:42:f7:
40:dd:31:c8:f4:10:7f:11:91:00:ea:ce:2e:55:14:a3:b4:e3:
04:5e:1b:5c:6c:54:d3:f3:17:31:69:8b:71:d6:21:d0:a4:00:
df:87:47:92:e4:2c:b4:f1:47:6c:42:3c:83:02:c4:3b:d8:3b:
44:2d:88:c5:02:3d:11:cf:4b:61:e0:7f:25:b1:04:88:7d:e0:
60:e0:ff:ab:28:1d:64:9f:bf:57:d9:ea:7f:d1:71:d9:94:2b:
21:4e:02:55:61:bd:a5:9d:77:2f:49:79:52:0f:f9:bc:6b:5f:
65:b3:16:18
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALTOMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNTA2MDMwMTQ5WhcNMjQwNjExMDMwMTQ5WjAYMRYw
FAYDVQQDEw02NjM4NDgyMC0yYzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsatXezEPyH2cfC8HMIH742KZUCp2JCS63luNOejSqi9BOCDW57TaBDPd
W51EQJb3Zzzi6Z71EzbQM1Wg1RUCJ/XS27eUG/Znu8ICfvpxTemPUKK8byuhXHcS
5v5CG5+u2d8eDG+B1+GF9ZJ/b/lEV8IIdYMWopXdljbrRaZybPJb0egrQVSOyGt6
Xd3qvHHHYu5BzwDJTTsvvoG1TI9B7g06zOgqJXllucw6x01orkZEKGtQGhkbys0N
1EuJ0sD7xh/4sgGspLpAzCxbhG1ABpnnhjoB6vVCXZ2NNy97H1nsJ4pLj+4+2Z2w
/ruXHRkVbITscq8PUufYDQqjpeRwUQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFAB
b+djHJNYZDfp+/+CSBYEA2s9MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GRDJCODhFRTBCNTQxMUVGOUIyNUVGMzkwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsupMA0GCSqGSIb3DQEB
CwUAA4IBAQDLP/HNxD/Jvy91AgKxnRVtJtSVnjH62IWYazMQACb8zFQagQ849zkE
0QtZnaoyp+FNxV8bBK/lWICOPxumjLJIZcHn3KILuFiK9bRpHZeWoU4BrnHnIENh
qSUXUE8jxbJEqi4eVDu402I4UdumHLA1teT2oVRztpJUSCX3oU0idgifiYVLGXLr
nSWt9N1rQvdA3THI9BB/EZEA6s4uVRSjtOMEXhtcbFTT8xcxaYtx1iHQpADfh0eS
5Cy08UdsQjyDAsQ72DtELYjFAj0Rz0th4H8lsQSIfeBg4P+rKB1kn79X2ep/0XHZ
lCshTgJVYb2lnXcvSXlSD/m8a19lsxYY
-----END CERTIFICATE-----
Generated at Mon May 20 03:18:27 2024 by rpki-client on console-fra.rpki-client.org