Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1815DDEEDF6D11EEB42F514C775412E6.roa
File: 1815DDEEDF6D11EEB42F514C775412E6.roa (raw, json)
Hash identifier: WeNazq4oZoO4tvdgdAsPsq8Xm2t3pT1uXIxZVY+xfuw=
Subject key identifier: FD:48:4B:A2:BE:6E:31:AF:C4:1D:00:D1:70:FF:2A:FE:E6:D5:A0:F9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A05E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1815DDEEDF6D11EEB42F514C775412E6.roa
Signing time: Mon 11 Mar 2024 06:03:35 +0000
ROA not before: Mon 11 Mar 2024 06:03:29 +0000
ROA not after: Sat 19 Oct 2024 06:03:29 +0000
asID: 135423
IP address blocks: 154.205.20.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41054 (0xa05e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 11 06:03:29 2024 GMT
Not After : Oct 19 06:03:29 2024 GMT
Subject: CN=65ee9eb6-8bd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:2e:36:f6:c7:94:ed:49:07:9d:21:1c:d9:9f:
a3:f1:06:13:16:32:fa:3c:de:a5:77:cc:86:f3:15:
c2:dd:70:e0:25:d6:25:8d:a0:24:30:4c:bf:ba:c2:
56:9b:0d:3d:36:ca:b2:96:7e:2f:35:d0:7f:5d:c9:
c9:b1:7d:1c:a8:f4:d3:5d:34:15:f0:dd:3e:01:72:
ec:fb:14:79:f4:1f:94:3e:59:d1:18:9c:bd:8a:94:
6a:bb:3f:46:75:93:3c:aa:31:80:e1:69:bd:b3:d5:
53:0a:85:1e:89:23:a5:c2:86:c4:c2:74:3d:9a:b5:
a5:e4:5f:dd:9d:b0:e5:c8:08:43:02:a1:65:2e:f6:
2f:e8:fe:a5:c2:7c:dd:2e:09:9f:9c:5a:e2:42:8a:
74:74:0d:0d:ce:a6:07:14:53:a4:fd:18:46:79:7d:
c8:58:21:a5:50:b6:91:cc:9b:8c:b4:86:e1:b2:5e:
c1:7b:d7:c4:50:31:03:4d:2b:f2:60:14:5b:40:ef:
29:91:cc:1f:25:41:4e:6e:1e:30:7b:32:4d:28:39:
af:d5:bd:65:b8:d7:b3:75:ac:e1:68:b6:3e:d3:62:
1b:6b:cb:ae:2c:4b:86:39:3f:b4:02:41:48:d8:b9:
0f:bd:10:7e:bf:c8:bd:ae:7f:50:18:e6:1e:cd:92:
a2:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:48:4B:A2:BE:6E:31:AF:C4:1D:00:D1:70:FF:2A:FE:E6:D5:A0:F9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1815DDEEDF6D11EEB42F514C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.20.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:fa:f8:78:75:a9:50:9f:44:6f:be:99:42:2c:7b:6e:54:ed:
45:d6:b8:84:d2:fa:7c:96:b0:a6:e8:4f:80:8d:52:1a:ac:d7:
6f:f4:51:97:1a:e7:df:ad:14:8f:d7:a3:08:a9:14:3f:48:7d:
bd:57:61:b1:0f:e4:5f:1f:a2:6c:44:14:41:7b:d8:61:e8:83:
6d:7b:28:02:b8:bd:89:f1:03:80:46:02:65:6f:c4:69:9f:12:
5a:37:19:d7:c4:41:b0:ff:8f:2a:03:45:81:39:c9:a5:9b:e0:
22:60:dd:fd:97:84:fc:0b:a6:75:71:1a:16:01:ea:8c:54:d6:
58:5c:e8:a8:12:08:2f:77:ad:56:ce:ac:0a:0a:85:7a:99:ef:
b6:52:86:98:a5:b3:a6:3c:f3:01:cd:d6:09:6a:07:d6:70:90:
f4:ba:c5:07:28:ae:05:f9:c3:a2:91:b4:0d:9f:8e:5c:78:ca:
c9:74:04:30:e6:21:92:30:29:4f:26:c9:89:45:bf:c2:cc:21:
65:eb:75:11:57:a2:e9:68:59:43:c0:72:29:5e:a1:12:2f:d3:
c9:93:fd:11:44:81:76:20:95:d4:90:50:3b:b0:71:ae:b5:a6:
ba:19:f1:ee:d7:25:fd:76:6f:14:0a:05:0d:22:39:80:7c:21:
de:88:5f:44
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKBeMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzExMDYwMzI5WhcNMjQxMDE5MDYwMzI5WjAYMRYw
FAYDVQQDEw02NWVlOWViNi04YmQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyi429seU7UkHnSEc2Z+j8QYTFjL6PN6ld8yG8xXC3XDgJdYljaAkMEy/
usJWmw09Nsqyln4vNdB/XcnJsX0cqPTTXTQV8N0+AXLs+xR59B+UPlnRGJy9ipRq
uz9GdZM8qjGA4Wm9s9VTCoUeiSOlwobEwnQ9mrWl5F/dnbDlyAhDAqFlLvYv6P6l
wnzdLgmfnFriQop0dA0NzqYHFFOk/RhGeX3IWCGlULaRzJuMtIbhsl7Be9fEUDED
TSvyYBRbQO8pkcwfJUFObh4wezJNKDmv1b1luNezdazhaLY+02Iba8uuLEuGOT+0
AkFI2LkPvRB+v8i9rn9QGOYezZKifQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFP1I
S6K+bjGvxB0A0XD/Kv7m1aD5MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xODE1RERFRURGNkQxMUVFQjQyRjUxNEM3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms0UMA0GCSqGSIb3DQEB
CwUAA4IBAQBc+vh4dalQn0RvvplCLHtuVO1F1riE0vp8lrCm6E+AjVIarNdv9FGX
GuffrRSP16MIqRQ/SH29V2GxD+RfH6JsRBRBe9hh6INteygCuL2J8QOARgJlb8Rp
nxJaNxnXxEGw/48qA0WBOcmlm+AiYN39l4T8C6Z1cRoWAeqMVNZYXOioEggvd61W
zqwKCoV6me+2UoaYpbOmPPMBzdYJagfWcJD0usUHKK4F+cOikbQNn45ceMrJdAQw
5iGSMClPJsmJRb/CzCFl63URV6LpaFlDwHIpXqESL9PJk/0RRIF2IJXUkFA7sHGu
taa6GfHu1yX9dm8UCgUNIjmAfCHeiF9E
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:03 2024 by rpki-client on console-ams.rpki-client.org