Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/176BB1EEF00111EE9D0AF893775412E6.roa
File: 176BB1EEF00111EE9D0AF893775412E6.roa (raw, json)
Hash identifier: 3mC2zR3g4efDc3D/0Mz3pgkElFbrRziHahp0FADFYTE=
Subject key identifier: FF:CD:F7:DD:FF:74:39:E7:77:0E:BC:99:C3:CA:F8:E5:7E:AC:21:15
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A812
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/176BB1EEF00111EE9D0AF893775412E6.roa
Signing time: Mon 01 Apr 2024 08:23:17 +0000
ROA not before: Mon 01 Apr 2024 08:23:14 +0000
ROA not after: Sat 11 May 2024 08:23:14 +0000
asID: 18779
IP address blocks: 154.92.13.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43026 (0xa812)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 08:23:14 2024 GMT
Not After : May 11 08:23:14 2024 GMT
Subject: CN=660a6ef5-a48c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e9:10:56:32:e7:f8:6c:e3:fa:a7:30:9d:bb:
27:72:77:0c:66:42:bf:2e:47:49:0f:19:5d:de:e6:
a4:8d:f0:7e:83:cb:42:26:f4:59:de:0e:d5:17:da:
f3:75:ad:3e:2f:6a:c8:16:ec:9c:1d:bc:e8:c0:43:
b3:56:3a:3c:4b:55:f5:55:00:19:f0:72:89:38:0f:
9f:71:c6:fe:10:bb:6e:47:0e:aa:e2:7b:19:a0:88:
d2:2b:98:12:d2:cc:01:24:7a:55:d0:44:92:2a:d1:
61:c5:22:65:14:47:7e:89:cc:07:36:fd:b7:af:22:
65:2f:d3:c8:ed:10:5a:39:39:63:39:e7:5b:2f:48:
b8:b0:be:f1:26:25:3b:f4:64:8f:00:d2:7e:bf:f4:
52:a1:df:28:12:27:a3:75:d4:10:43:59:78:bc:4b:
b3:7a:7f:34:61:9a:cb:d9:57:55:1c:b2:fb:52:44:
e2:76:55:bf:7e:4d:e1:6a:11:e7:e9:84:5d:22:56:
93:b4:e4:15:71:15:26:c2:ab:39:8c:54:03:97:e8:
47:63:ed:18:05:77:75:95:38:a8:7c:06:c5:36:af:
03:9d:fb:0c:60:bc:90:9d:41:d9:c2:49:07:27:ca:
db:06:f2:2b:ad:97:89:e1:51:51:79:2b:36:3c:ae:
ed:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:CD:F7:DD:FF:74:39:E7:77:0E:BC:99:C3:CA:F8:E5:7E:AC:21:15
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/176BB1EEF00111EE9D0AF893775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.13.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:8f:85:67:b6:b2:c6:df:0b:19:91:e4:e4:ce:57:64:6a:4e:
10:f4:6f:25:49:6b:8b:5f:a0:20:1a:92:45:fb:b2:0a:c8:14:
80:f9:40:bd:9c:58:ee:61:f1:cf:e6:ed:17:c4:12:15:ce:05:
2a:4e:60:fe:dd:84:1e:94:ab:e6:9f:ad:38:69:b1:c3:aa:0d:
d0:0e:90:77:3f:ec:03:2a:6a:aa:75:20:d2:d1:bb:f1:d3:c8:
69:46:25:ff:63:9c:01:74:b2:f6:a7:fc:2b:7e:2c:aa:f5:40:
4e:05:9a:9e:1c:aa:45:92:54:3f:bd:56:34:3e:4d:f2:f4:3b:
cc:d4:a6:74:c6:9b:c1:80:d1:14:fc:67:d9:69:22:41:66:da:
5e:31:30:4c:28:1c:23:b4:22:73:24:90:52:10:ec:64:34:b5:
f2:c9:35:4f:f3:6b:9d:8b:04:b8:af:72:6e:e4:3c:36:cd:4a:
7d:d4:da:e3:dc:2d:0b:82:f9:9c:58:19:fa:17:9a:93:0d:ab:
28:86:e9:aa:87:9f:09:2f:17:ab:62:96:b8:3b:23:d3:76:cd:
c7:6d:aa:53:79:be:22:54:a4:aa:8a:89:4e:45:68:72:a3:e8:
ab:8d:db:ba:c1:f8:37:d2:a0:09:50:29:6a:c4:4c:55:50:2e:
94:1d:9e:90
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKgSMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDAxMDgyMzE0WhcNMjQwNTExMDgyMzE0WjAYMRYw
FAYDVQQDEw02NjBhNmVmNS1hNDhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAs+kQVjLn+Gzj+qcwnbsncncMZkK/LkdJDxld3uakjfB+g8tCJvRZ3g7V
F9rzda0+L2rIFuycHbzowEOzVjo8S1X1VQAZ8HKJOA+fccb+ELtuRw6q4nsZoIjS
K5gS0swBJHpV0ESSKtFhxSJlFEd+icwHNv23ryJlL9PI7RBaOTljOedbL0i4sL7x
JiU79GSPANJ+v/RSod8oEiejddQQQ1l4vEuzen80YZrL2VdVHLL7UkTidlW/fk3h
ahHn6YRdIlaTtOQVcRUmwqs5jFQDl+hHY+0YBXd1lTiofAbFNq8DnfsMYLyQnUHZ
wkkHJ8rbBvIrrZeJ4VFReSs2PK7tMwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFP/N
993/dDnndw68mcPK+OV+rCEVMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xNzZCQjFFRUYwMDExMUVFOUQwQUY4OTM3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlwNMA0GCSqGSIb3DQEB
CwUAA4IBAQAfj4VntrLG3wsZkeTkzldkak4Q9G8lSWuLX6AgGpJF+7IKyBSA+UC9
nFjuYfHP5u0XxBIVzgUqTmD+3YQelKvmn604abHDqg3QDpB3P+wDKmqqdSDS0bvx
08hpRiX/Y5wBdLL2p/wrfiyq9UBOBZqeHKpFklQ/vVY0Pk3y9DvM1KZ0xpvBgNEU
/GfZaSJBZtpeMTBMKBwjtCJzJJBSEOxkNLXyyTVP82udiwS4r3Ju5Dw2zUp91Nrj
3C0LgvmcWBn6F5qTDasohumqh58JLxerYpa4OyPTds3HbapTeb4iVKSqiolORWhy
o+irjdu6wfg30qAJUClqxExVUC6UHZ6Q
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:16 2024 by rpki-client on console-fra.rpki-client.org