Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18867A4AE75111EEA292D896775412E6.roa
File: 18867A4AE75111EEA292D896775412E6.roa (raw, json)
Hash identifier: 5iz3KhWeFoUx/khIqZmIZTYEHOPXSgrl3mVGO7Ct5zk=
Subject key identifier: 9B:40:E5:F3:54:4A:B2:93:8D:66:05:EF:B8:1F:60:ED:4A:2E:19:9B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A471
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18867A4AE75111EEA292D896775412E6.roa
Signing time: Thu 21 Mar 2024 07:03:19 +0000
ROA not before: Thu 21 Mar 2024 07:03:15 +0000
ROA not after: Tue 23 Apr 2024 07:03:15 +0000
asID: 44559
IP address blocks: 154.220.128.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42097 (0xa471)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 07:03:15 2024 GMT
Not After : Apr 23 07:03:15 2024 GMT
Subject: CN=65fbdbb6-4975
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:3a:94:75:9d:0f:d5:31:27:d3:90:53:27:61:
23:1a:78:46:f3:01:12:72:9a:2c:e0:b1:b7:39:c2:
a8:b5:27:f6:75:2e:4d:24:ab:23:0f:47:10:63:12:
ed:79:e2:07:83:5e:61:76:a7:9f:8f:9b:bc:cf:68:
b4:a4:84:e9:eb:d8:1c:0f:d5:d6:39:90:02:1d:1c:
71:eb:ae:fb:e7:5c:bc:17:95:a2:07:a4:45:9d:14:
ec:b5:49:03:6d:1b:7d:08:11:92:a5:8e:bf:eb:3d:
f1:4e:bf:c9:10:2b:42:35:8e:44:d6:56:86:98:b3:
16:56:26:e7:f3:93:27:e8:dd:89:33:4d:77:7a:6b:
44:1c:7a:08:87:52:1d:e8:09:53:d5:82:36:7b:f8:
1f:61:de:ad:54:e2:3c:e9:51:8f:7d:bd:1b:be:59:
a8:da:3d:d1:d0:e7:0e:c5:ff:95:a3:f5:22:ee:66:
95:6d:ff:61:e2:60:72:7f:21:6e:bd:0e:a4:6b:53:
0b:52:e0:e0:fb:e9:18:be:f6:5b:a4:bc:9b:59:18:
71:98:18:e4:e3:82:91:90:3d:bd:aa:f2:c9:01:af:
e6:b6:a3:29:16:50:51:de:22:e8:ad:30:2e:72:a5:
1e:9e:87:bf:31:c1:1e:a4:35:2d:e5:13:44:9c:19:
1e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:40:E5:F3:54:4A:B2:93:8D:66:05:EF:B8:1F:60:ED:4A:2E:19:9B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18867A4AE75111EEA292D896775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.128.0/24
Signature Algorithm: sha256WithRSAEncryption
87:f1:31:30:e8:4b:74:2e:57:4e:34:b7:3e:67:18:05:7e:b4:
b2:03:84:64:77:28:d7:07:5c:d0:b6:ba:9e:a7:62:43:49:10:
20:e2:7f:ab:e6:60:00:93:5e:fb:de:97:e5:79:aa:cf:f5:fa:
59:39:8c:7f:ed:8c:ca:b5:d8:bb:9b:31:6d:e4:81:00:96:87:
55:c5:1b:52:34:bf:fc:f8:4e:bd:d0:5b:57:8a:b2:99:4c:7d:
fe:bc:75:5b:06:83:0b:92:4d:eb:c8:94:3c:05:23:21:6e:c0:
9b:c4:0f:b4:be:85:af:bd:0b:13:ac:2c:90:1f:e2:24:0f:21:
b8:d6:38:58:08:5e:f0:21:fd:3c:dc:0d:37:1d:1a:f4:52:a4:
97:0e:35:85:15:24:3f:2f:a4:23:37:85:1c:c5:69:22:6f:9d:
ae:d7:89:03:ba:55:ee:57:81:43:a0:8c:75:89:31:35:2f:31:
00:b4:d8:0c:ed:09:00:11:e2:18:c8:68:62:57:81:be:36:c8:
4b:70:20:19:f0:12:6a:69:ec:2b:ae:25:eb:5c:0f:0e:f6:00:
2d:f5:1e:79:85:e6:7e:ad:02:6a:07:32:4f:63:64:95:28:4b:
9a:4d:db:08:5f:c7:93:13:8c:44:04:b4:dc:05:a0:30:cf:45:
c3:7e:32:b2
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKRxMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMDcwMzE1WhcNMjQwNDIzMDcwMzE1WjAYMRYw
FAYDVQQDEw02NWZiZGJiNi00OTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2DqUdZ0P1TEn05BTJ2EjGnhG8wEScpos4LG3OcKotSf2dS5NJKsjD0cQ
YxLteeIHg15hdqefj5u8z2i0pITp69gcD9XWOZACHRxx667751y8F5WiB6RFnRTs
tUkDbRt9CBGSpY6/6z3xTr/JECtCNY5E1laGmLMWVibn85Mn6N2JM013emtEHHoI
h1Id6AlT1YI2e/gfYd6tVOI86VGPfb0bvlmo2j3R0OcOxf+Vo/Ui7maVbf9h4mBy
fyFuvQ6ka1MLUuDg++kYvvZbpLybWRhxmBjk44KRkD29qvLJAa/mtqMpFlBR3iLo
rTAucqUenoe/McEepDUt5RNEnBke4wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJtA
5fNUSrKTjWYF77gfYO1KLhmbMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xODg2N0E0QUU3NTExMUVFQTI5MkQ4OTY3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtyAMA0GCSqGSIb3DQEB
CwUAA4IBAQCH8TEw6Et0LldONLc+ZxgFfrSyA4RkdyjXB1zQtrqep2JDSRAg4n+r
5mAAk1773pflearP9fpZOYx/7YzKtdi7mzFt5IEAlodVxRtSNL/8+E690FtXirKZ
TH3+vHVbBoMLkk3ryJQ8BSMhbsCbxA+0voWvvQsTrCyQH+IkDyG41jhYCF7wIf08
3A03HRr0UqSXDjWFFSQ/L6QjN4UcxWkib52u14kDulXuV4FDoIx1iTE1LzEAtNgM
7QkAEeIYyGhiV4G+NshLcCAZ8BJqaewrriXrXA8O9gAt9R55heZ+rQJqBzJPY2SV
KEuaTdsIX8eTE4xEBLTcBaAwz0XDfjKy
-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:14 2024 by rpki-client on console-ams.rpki-client.org