Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01A70548F7BD11EE8E0D590D017001B1.roa
File: 01A70548F7BD11EE8E0D590D017001B1.roa (raw, json)
Hash identifier: WCzxdgPR9MjgYlP9xAb6rUt7r5+SLRJU/QT0XaNgudo=
Subject key identifier: 0A:45:13:05:F7:56:89:15:46:59:6C:81:E0:C8:00:2C:B3:3A:0A:D8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB03
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01A70548F7BD11EE8E0D590D017001B1.roa
Signing time: Thu 11 Apr 2024 04:36:04 +0000
ROA not before: Thu 11 Apr 2024 04:36:01 +0000
ROA not after: Sun 19 May 2024 04:36:01 +0000
asID: 138915
IP address blocks: 154.90.42.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43779 (0xab03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 11 04:36:01 2024 GMT
Not After : May 19 04:36:01 2024 GMT
Subject: CN=661768b4-0cce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:04:e2:1b:68:1f:b7:f2:21:3c:d2:34:02:54:
db:55:4a:64:aa:19:b0:9f:40:a0:39:8d:b0:87:6a:
a2:e7:4d:2c:a6:5e:a0:ae:97:c3:aa:9c:db:6c:19:
1c:6a:a1:77:bf:d3:cc:f4:2f:ee:c9:e8:0c:ad:79:
c2:8e:73:a4:42:e2:66:47:51:d4:52:c0:5e:2f:87:
23:5d:f6:49:38:e7:45:29:fb:dc:25:30:0e:21:81:
cf:39:ca:e3:6a:2d:e3:c1:f9:b4:67:10:80:6a:ee:
2e:ff:f5:b7:83:f3:7b:aa:75:3c:0e:22:b4:b5:0a:
d2:05:0b:78:b6:0c:0c:60:3f:42:1e:43:f9:fc:97:
6b:af:46:8c:bc:db:41:e9:ec:5b:c8:7c:15:6d:9e:
d1:d8:22:96:45:32:04:6a:be:88:8f:e1:89:4e:87:
58:46:c6:7a:9d:fd:17:b3:1e:42:4d:dc:1e:47:01:
e1:48:f0:3e:59:72:f1:4b:01:98:13:b6:8a:4a:05:
f3:1f:88:a0:f5:87:b4:f6:00:88:9b:8c:2a:91:ac:
48:eb:c2:1e:21:88:ec:dd:29:0f:d5:75:33:20:ef:
bd:ed:a8:6b:3d:b1:51:e0:cc:a2:9f:ad:ba:ba:b7:
4d:a0:dc:22:70:37:79:b9:b3:38:9f:d6:da:b3:31:
2f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:45:13:05:F7:56:89:15:46:59:6C:81:E0:C8:00:2C:B3:3A:0A:D8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01A70548F7BD11EE8E0D590D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.42.0/23
Signature Algorithm: sha256WithRSAEncryption
b5:0f:7b:36:f0:c8:61:82:21:00:53:e0:db:fd:66:06:c1:c7:
94:2f:71:4b:42:56:4c:1e:e2:f5:2b:b9:58:a7:50:f3:7a:43:
3b:21:0f:30:0e:14:ba:69:99:3d:41:d1:f4:3a:05:b3:7e:95:
81:90:dc:bf:e1:3f:07:79:07:8b:02:94:1e:da:2e:2f:98:72:
66:89:13:8e:17:9d:43:f2:52:fc:c2:93:0b:86:7d:a4:ab:5b:
94:6e:99:c0:14:b9:4b:30:16:18:bd:d8:f9:31:56:a3:b6:84:
f0:2e:cf:e8:46:e4:c9:05:d4:98:9e:25:53:b3:06:4a:60:a7:
3b:2f:07:be:7b:af:66:6c:dd:57:eb:68:e1:09:37:0f:8e:ef:
ec:c6:8f:cd:92:f4:9b:37:b2:51:4a:d1:3f:fd:ad:c8:2d:c0:
e0:38:27:4b:44:84:9f:40:e6:da:14:c9:de:b5:5a:05:93:02:
32:1a:63:92:ae:ce:12:70:9f:df:f1:19:05:40:3b:0b:c2:23:
04:94:33:0d:05:4e:8a:62:51:4e:ce:28:60:d5:de:64:12:bc:
3a:bd:41:af:f0:41:7b:1f:51:44:21:31:49:83:99:e4:3c:91:
f9:fe:a3:05:36:b1:ac:c5:ab:6c:d2:13:88:43:79:84:40:17:
bf:8a:92:3f
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKsDMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDExMDQzNjAxWhcNMjQwNTE5MDQzNjAxWjAYMRYw
FAYDVQQDEw02NjE3NjhiNC0wY2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2ATiG2gft/IhPNI0AlTbVUpkqhmwn0CgOY2wh2qi500spl6grpfDqpzb
bBkcaqF3v9PM9C/uyegMrXnCjnOkQuJmR1HUUsBeL4cjXfZJOOdFKfvcJTAOIYHP
Ocrjai3jwfm0ZxCAau4u//W3g/N7qnU8DiK0tQrSBQt4tgwMYD9CHkP5/Jdrr0aM
vNtB6exbyHwVbZ7R2CKWRTIEar6Ij+GJTodYRsZ6nf0Xsx5CTdweRwHhSPA+WXLx
SwGYE7aKSgXzH4ig9Ye09gCIm4wqkaxI68IeIYjs3SkP1XUzIO+97ahrPbFR4Myi
n626urdNoNwicDd5ubM4n9baszEvWQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFApF
EwX3VokVRllsgeDIACyzOgrYMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wMUE3MDU0OEY3QkQxMUVFOEUwRDU5MEQwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmloqMA0GCSqGSIb3DQEB
CwUAA4IBAQC1D3s28MhhgiEAU+Db/WYGwceUL3FLQlZMHuL1K7lYp1DzekM7IQ8w
DhS6aZk9QdH0OgWzfpWBkNy/4T8HeQeLApQe2i4vmHJmiROOF51D8lL8wpMLhn2k
q1uUbpnAFLlLMBYYvdj5MVajtoTwLs/oRuTJBdSYniVTswZKYKc7Lwe+e69mbN1X
62jhCTcPju/sxo/NkvSbN7JRStE//a3ILcDgOCdLRISfQObaFMnetVoFkwIyGmOS
rs4ScJ/f8RkFQDsLwiMElDMNBU6KYlFOzihg1d5kErw6vUGv8EF7H1FEITFJg5nk
PJH5/qMFNrGsxats0hOIQ3mEQBe/ipI/
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:01 2024 by rpki-client on console-ams.rpki-client.org