Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/03D2A74CF49211EEA96E635A775412E6.roa
File: 03D2A74CF49211EEA96E635A775412E6.roa (raw, json)
Hash identifier: DfQ/zEHOZAQd0x0B+42Kd3BSMAmzTUUw3qpWS75Ql5Y=
Subject key identifier: 6E:68:34:35:60:F2:C0:10:C1:EA:68:F1:65:B4:26:D0:64:CF:DB:01
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A9C2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/03D2A74CF49211EEA96E635A775412E6.roa
Signing time: Sun 07 Apr 2024 03:50:46 +0000
ROA not before: Sun 07 Apr 2024 03:50:43 +0000
ROA not after: Mon 13 May 2024 03:50:43 +0000
asID: 138915
IP address blocks: 154.206.84.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43458 (0xa9c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 03:50:43 2024 GMT
Not After : May 13 03:50:43 2024 GMT
Subject: CN=66121816-f94e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:53:1b:bc:5e:ce:6a:f8:be:03:b6:88:15:94:
4c:c8:17:e8:59:06:13:74:77:fc:83:70:2b:c8:89:
d6:82:02:d5:89:8e:80:58:a6:54:b9:24:ec:8a:6b:
e6:6a:8d:5d:2e:09:1c:18:b8:70:d1:7e:54:8f:fe:
45:89:5f:d6:7b:84:5c:e5:8b:27:d0:98:7f:b9:b4:
63:60:48:a0:b4:fd:08:8f:78:da:d7:bc:60:b7:42:
65:87:e5:76:04:40:68:f4:43:32:7c:8d:c1:c3:88:
b1:b9:1f:a7:85:88:95:62:d5:56:f4:23:7b:e7:e7:
60:99:d4:2a:65:56:d2:66:f6:5a:80:fb:42:48:38:
68:a4:e2:02:a7:3e:24:ef:59:d4:4e:93:32:db:f3:
63:a4:72:24:69:30:7d:04:0a:90:88:97:20:19:fc:
71:1f:4b:4e:53:4e:d8:42:11:58:ca:e2:d3:df:ab:
a2:f9:bb:3d:3e:51:f9:1b:d7:b8:19:7e:a8:a5:3e:
91:9f:fe:b9:55:6c:33:d8:65:68:6a:a4:b3:ed:7a:
d7:ad:81:cf:44:3b:20:e5:19:c4:92:f3:a4:d0:1a:
16:e4:48:6f:72:9c:6f:d3:ca:aa:47:3a:77:f3:b0:
86:c6:51:52:77:97:64:33:c1:c7:6e:a7:a1:7f:67:
9e:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:68:34:35:60:F2:C0:10:C1:EA:68:F1:65:B4:26:D0:64:CF:DB:01
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/03D2A74CF49211EEA96E635A775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.84.0/23
Signature Algorithm: sha256WithRSAEncryption
33:c3:8e:a8:62:a5:bf:7d:f0:03:42:e3:82:f9:09:8c:e0:f0:
95:b3:f6:b6:7c:d6:81:8f:a2:11:49:a9:13:61:5d:5d:24:0e:
12:cd:7e:55:de:63:21:28:9f:fe:5b:c9:41:58:49:87:8f:46:
ec:42:2a:28:ee:17:e8:0f:b6:74:9c:a1:d4:1e:c2:95:95:df:
71:f6:01:26:42:4c:cd:83:88:07:5d:fb:4f:9a:ee:5a:b0:90:
0e:81:37:44:87:93:ca:36:80:94:d4:f0:21:ea:a9:11:c1:87:
ea:74:1e:52:d6:42:d8:e3:60:6d:5d:53:b1:21:a0:d6:e5:41:
ca:fc:8c:84:11:68:58:fd:40:aa:30:a2:d9:90:17:f1:56:1f:
07:b0:ff:29:72:86:53:2f:07:1c:e9:a4:aa:22:0b:1f:22:bf:
62:d4:3f:bd:a0:2c:6f:d1:40:92:a9:b4:b0:3b:56:e4:e3:5d:
33:2a:7f:7f:21:a3:c9:5c:f9:6d:25:25:84:f2:22:ba:85:8c:
28:7b:04:8e:41:5f:a6:9b:1e:cc:b1:eb:ef:05:d0:b0:26:28:
56:f8:47:95:ab:7c:78:bb:db:76:3f:59:bc:5b:d6:af:51:c3:
96:f3:15:37:c0:2c:00:83:c4:81:4f:92:da:d4:15:3f:b1:f8:
1c:17:ce:f5
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKnCMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDA3MDM1MDQzWhcNMjQwNTEzMDM1MDQzWjAYMRYw
FAYDVQQDEw02NjEyMTgxNi1mOTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3lMbvF7Oavi+A7aIFZRMyBfoWQYTdHf8g3AryInWggLViY6AWKZUuSTs
imvmao1dLgkcGLhw0X5Uj/5FiV/We4Rc5Ysn0Jh/ubRjYEigtP0Ij3ja17xgt0Jl
h+V2BEBo9EMyfI3Bw4ixuR+nhYiVYtVW9CN75+dgmdQqZVbSZvZagPtCSDhopOIC
pz4k71nUTpMy2/NjpHIkaTB9BAqQiJcgGfxxH0tOU07YQhFYyuLT36ui+bs9PlH5
G9e4GX6opT6Rn/65VWwz2GVoaqSz7XrXrYHPRDsg5RnEkvOk0BoW5Ehvcpxv08qq
Rzp387CGxlFSd5dkM8HHbqehf2eenwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFG5o
NDVg8sAQwepo8WW0JtBkz9sBMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wM0QyQTc0Q0Y0OTIxMUVFQTk2RTYzNUE3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBms5UMA0GCSqGSIb3DQEB
CwUAA4IBAQAzw46oYqW/ffADQuOC+QmM4PCVs/a2fNaBj6IRSakTYV1dJA4SzX5V
3mMhKJ/+W8lBWEmHj0bsQioo7hfoD7Z0nKHUHsKVld9x9gEmQkzNg4gHXftPmu5a
sJAOgTdEh5PKNoCU1PAh6qkRwYfqdB5S1kLY42BtXVOxIaDW5UHK/IyEEWhY/UCq
MKLZkBfxVh8HsP8pcoZTLwcc6aSqIgsfIr9i1D+9oCxv0UCSqbSwO1bk410zKn9/
IaPJXPltJSWE8iK6hYwoewSOQV+mmx7MsevvBdCwJihW+EeVq3x4u9t2P1m8W9av
UcOW8xU3wCwAg8SBT5La1BU/sfgcF871
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:01 2024 by rpki-client on console-ams.rpki-client.org