Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0AF821F453A311EE937B6D6A4AD9E6FC.roa
File: 0AF821F453A311EE937B6D6A4AD9E6FC.roa (raw, json)
Hash identifier: +4f8n5OOEAiQiTzE4IwmpG7JVKBbEdHxFprLSTKZBg0=
Subject key identifier: 3D:61:B6:8E:DD:08:CB:03:AD:D2:F5:48:0A:FF:FC:67:52:06:45:E2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3DA7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0AF821F453A311EE937B6D6A4AD9E6FC.roa
Signing time: Fri 15 Sep 2023 08:37:02 +0000
ROA not before: Fri 15 Sep 2023 08:36:59 +0000
ROA not after: Sat 08 Jun 2024 08:36:59 +0000
asID: 136970
IP address blocks: 154.209.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15783 (0x3da7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 08:36:59 2023 GMT
Not After : Jun 8 08:36:59 2024 GMT
Subject: CN=650417ae-ea2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:6a:88:81:35:6e:0e:6f:50:bf:e9:9c:03:9a:
71:f4:08:83:8c:84:26:30:a6:7c:2c:d6:6c:bd:35:
92:fe:79:d8:87:be:33:1a:e4:c7:49:23:61:2f:b3:
1e:6d:7c:2d:ae:b2:29:16:d2:1e:2e:e2:9e:fb:bd:
be:18:94:7e:19:be:12:06:ce:a9:8d:79:9f:19:d7:
2e:a4:e1:d3:3e:6c:69:5a:67:8a:76:75:34:06:62:
b6:da:0f:17:17:13:db:10:6e:00:03:a1:c0:57:50:
fb:6f:e9:c3:e8:09:10:55:7b:e1:db:13:1a:10:4c:
10:13:b1:aa:e9:9a:bf:64:06:9e:2a:3a:7b:10:8b:
aa:80:41:fa:b6:2b:9c:f4:ff:fe:32:76:0d:0a:eb:
39:0b:61:53:7f:32:ba:28:92:b7:1f:3f:30:62:f4:
fa:d1:d6:39:60:bf:5e:0b:30:19:42:ad:b3:d6:e0:
da:db:e2:0c:6c:2c:1b:6b:7a:ee:71:88:55:53:0b:
2c:09:a1:fc:9e:c2:e2:45:15:df:15:50:aa:4b:dd:
1c:74:e7:63:61:7c:ca:92:c5:a4:bb:1c:e1:8b:7a:
44:97:e5:1b:75:70:f5:66:8f:f7:85:e7:34:2a:61:
73:8d:b9:46:5d:f9:db:a2:a3:13:cb:29:b5:a9:0e:
e8:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:61:B6:8E:DD:08:CB:03:AD:D2:F5:48:0A:FF:FC:67:52:06:45:E2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0AF821F453A311EE937B6D6A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.7.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:1a:18:eb:c8:93:68:be:dc:fd:07:d4:ee:6e:82:19:98:88:
7a:d6:89:9b:97:44:ec:0a:5c:36:5b:8d:67:7a:94:cd:80:91:
b9:1e:49:05:d8:4d:3c:e7:ee:14:9e:cb:84:e9:73:7b:c0:fb:
6e:06:00:95:84:5c:3a:15:69:5f:b9:50:8b:32:18:3d:3c:08:
56:5f:65:b6:f8:8f:3b:1a:c3:5f:4f:9f:b5:ed:e8:99:7f:52:
dd:a0:80:39:e4:48:4d:7c:c3:e2:be:5c:00:db:b8:39:f7:9a:
1a:d7:53:d7:ae:c8:7d:77:a1:94:1d:9c:a3:92:5e:67:f8:18:
6c:bb:e7:45:cb:f3:ad:11:67:a5:c6:66:86:8c:38:4c:2b:77:
c3:b4:cb:43:e0:a4:76:2c:3d:a5:72:c9:4f:2a:3c:19:e1:df:
56:60:e2:18:d7:15:fe:10:4f:9d:07:18:fe:bd:ae:69:8e:bf:
df:85:b1:80:83:05:22:5e:c7:3f:9e:1d:88:c3:61:e3:8c:74:
78:36:f8:16:4a:dd:19:82:d9:a7:df:41:34:bd:f0:3f:3d:36:
6f:38:39:7d:3d:ec:37:10:73:02:5d:8c:d1:12:7c:46:9a:33:
8b:47:ca:fe:7d:79:0c:47:05:6d:aa:3b:04:04:59:8e:fb:54:
2b:09:f8:59
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICPacwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA5MTUwODM2NTlaFw0yNDA2MDgwODM2NTlaMBgxFjAU
BgNVBAMTDTY1MDQxN2FlLWVhMmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDkaoiBNW4Ob1C/6ZwDmnH0CIOMhCYwpnws1my9NZL+ediHvjMa5MdJI2Ev
sx5tfC2usikW0h4u4p77vb4YlH4ZvhIGzqmNeZ8Z1y6k4dM+bGlaZ4p2dTQGYrba
DxcXE9sQbgADocBXUPtv6cPoCRBVe+HbExoQTBATsarpmr9kBp4qOnsQi6qAQfq2
K5z0//4ydg0K6zkLYVN/MrookrcfPzBi9PrR1jlgv14LMBlCrbPW4Nrb4gxsLBtr
eu5xiFVTCywJofyewuJFFd8VUKpL3Rx052NhfMqSxaS7HOGLekSX5Rt1cPVmj/eF
5zQqYXONuUZd+duioxPLKbWpDui/AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUPWG2
jt0IywOt0vVICv/8Z1IGReIwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzBBRjgyMUY0NTNBMzExRUU5MzdCNkQ2QTRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACa0QcwDQYJKoZIhvcNAQEL
BQADggEBAK0aGOvIk2i+3P0H1O5ughmYiHrWiZuXROwKXDZbjWd6lM2AkbkeSQXY
TTzn7hSey4Tpc3vA+24GAJWEXDoVaV+5UIsyGD08CFZfZbb4jzsaw19Pn7Xt6Jl/
Ut2ggDnkSE18w+K+XADbuDn3mhrXU9euyH13oZQdnKOSXmf4GGy750XL860RZ6XG
ZoaMOEwrd8O0y0PgpHYsPaVyyU8qPBnh31Zg4hjXFf4QT50HGP69rmmOv9+FsYCD
BSJexz+eHYjDYeOMdHg2+BZK3RmC2affQTS98D89Nm84OX097DcQcwJdjNESfEaa
M4tHyv59eQxHBW2qOwQEWY77VCsJ+Fk=
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:15 2024 by rpki-client on console-fra.rpki-client.org