Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A3CC350E75911EEBD0D3356775412E6.roa
File: 1A3CC350E75911EEBD0D3356775412E6.roa (raw, json)
Hash identifier: D1S1prxoSSuqihgf5lP+bj8NwBbiWf3R/hJm05Xx30g=
Subject key identifier: 5C:D2:A2:37:25:DF:65:34:A2:08:BA:FD:A2:B2:86:42:33:20:0C:7A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A4BF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A3CC350E75911EEBD0D3356775412E6.roa
Signing time: Thu 21 Mar 2024 08:00:37 +0000
ROA not before: Thu 21 Mar 2024 08:00:34 +0000
ROA not after: Tue 23 Apr 2024 08:00:34 +0000
asID: 44559
IP address blocks: 154.211.57.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42175 (0xa4bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 08:00:34 2024 GMT
Not After : Apr 23 08:00:34 2024 GMT
Subject: CN=65fbe925-8348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:a4:53:31:b9:18:2f:b9:11:fc:62:f4:e9:0c:
5e:9e:35:09:36:3d:1f:a9:51:ac:1b:98:a5:3c:53:
b2:ef:49:8d:01:77:6d:cc:72:c6:ba:8a:38:80:33:
a2:31:5b:30:12:a7:2d:a8:cb:a3:4b:69:cd:50:95:
74:b2:fa:2a:06:06:fa:0f:f0:16:de:63:57:2a:20:
89:b0:69:8b:15:57:ef:17:2e:a9:c7:9a:4e:a9:a6:
97:c8:7a:e0:ad:12:3c:fe:08:e0:89:2b:89:88:c9:
e6:68:02:98:68:a7:90:66:55:23:63:17:5c:f6:9d:
64:36:8e:c7:96:fa:72:58:75:b0:35:10:85:50:c8:
c8:5f:41:78:96:03:49:d8:3e:2a:75:37:31:5d:a4:
30:88:f3:f6:50:08:c4:51:9f:d9:5c:31:0c:c6:79:
fe:27:18:7e:c9:a8:be:06:05:3f:53:40:0f:e0:37:
24:7e:95:8e:96:37:32:ea:42:01:a6:ea:df:bc:9a:
b9:50:52:a4:5b:4e:d1:b7:90:fa:05:e8:3b:3a:aa:
9a:b9:76:10:b3:30:3f:cf:3a:f5:fa:f8:65:5c:f9:
4e:5a:78:3f:c2:69:a5:2f:9c:b8:76:96:a4:17:f3:
b0:36:cb:ef:6d:f7:36:7a:72:a8:7b:77:b1:f3:87:
48:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:D2:A2:37:25:DF:65:34:A2:08:BA:FD:A2:B2:86:42:33:20:0C:7A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A3CC350E75911EEBD0D3356775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.57.0/24
Signature Algorithm: sha256WithRSAEncryption
34:b1:3e:67:90:e6:85:49:2d:3f:a2:f6:19:a1:99:f6:77:5c:
a6:b2:ab:95:ec:ce:1a:54:ce:8c:7a:50:26:5a:37:3c:a3:04:
ce:a2:82:7a:29:a1:88:17:f8:0c:3d:33:65:a0:36:0c:3d:d1:
b6:41:3e:78:62:25:0b:9c:de:c8:7f:7d:aa:d7:4f:80:d2:ce:
b3:c8:ce:6e:a4:2f:cf:65:2f:8f:bf:54:5c:9d:a4:25:3c:48:
42:9a:b5:40:61:70:8e:40:1f:7e:d9:b5:fd:e1:24:d8:6b:e4:
6f:12:a7:9e:88:b4:e6:34:7c:90:7b:e4:29:bc:ae:16:5c:27:
4d:72:45:4b:bd:37:6f:33:60:51:52:5b:c8:6f:28:3d:4a:ba:
69:0b:d8:e0:1a:2a:bc:b6:6b:74:f2:ed:8e:8c:67:ff:5b:65:
cb:23:07:81:7c:06:e5:57:3c:69:82:44:3b:c8:3d:7c:48:8a:
22:8e:c8:4a:83:66:7b:54:fa:7d:8f:8b:c0:11:90:a2:e5:8e:
0c:f7:56:47:78:4f:25:8c:12:68:5e:f5:8c:08:ef:20:e6:40:
cf:3a:e9:c4:1c:b7:d5:63:a0:ca:d8:f3:7e:fe:42:33:18:01:
8f:5a:96:39:98:74:80:64:a5:56:c0:52:64:2e:df:a3:44:aa:
26:84:d8:60
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKS/MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMDgwMDM0WhcNMjQwNDIzMDgwMDM0WjAYMRYw
FAYDVQQDEw02NWZiZTkyNS04MzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3aRTMbkYL7kR/GL06QxenjUJNj0fqVGsG5ilPFOy70mNAXdtzHLGuoo4
gDOiMVswEqctqMujS2nNUJV0svoqBgb6D/AW3mNXKiCJsGmLFVfvFy6px5pOqaaX
yHrgrRI8/gjgiSuJiMnmaAKYaKeQZlUjYxdc9p1kNo7HlvpyWHWwNRCFUMjIX0F4
lgNJ2D4qdTcxXaQwiPP2UAjEUZ/ZXDEMxnn+Jxh+yai+BgU/U0AP4DckfpWOljcy
6kIBpurfvJq5UFKkW07Rt5D6Beg7OqqauXYQszA/zzr1+vhlXPlOWng/wmmlL5y4
dpakF/OwNsvvbfc2enKoe3ex84dI4QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFzS
ojcl32U0ogi6/aKyhkIzIAx6MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xQTNDQzM1MEU3NTkxMUVFQkQwRDMzNTY3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtM5MA0GCSqGSIb3DQEB
CwUAA4IBAQA0sT5nkOaFSS0/ovYZoZn2d1ymsquV7M4aVM6MelAmWjc8owTOooJ6
KaGIF/gMPTNloDYMPdG2QT54YiULnN7If32q10+A0s6zyM5upC/PZS+Pv1RcnaQl
PEhCmrVAYXCOQB9+2bX94STYa+RvEqeeiLTmNHyQe+QpvK4WXCdNckVLvTdvM2BR
UlvIbyg9SrppC9jgGiq8tmt08u2OjGf/W2XLIweBfAblVzxpgkQ7yD18SIoijshK
g2Z7VPp9j4vAEZCi5Y4M91ZHeE8ljBJoXvWMCO8g5kDPOunEHLfVY6DK2PN+/kIz
GAGPWpY5mHSAZKVWwFJkLt+jRKomhNhg
-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:13 2024 by rpki-client on console-fra.rpki-client.org