Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D5ADF3EF91811EDBFEAE41A4AD9E6FC.roa
File: 1D5ADF3EF91811EDBFEAE41A4AD9E6FC.roa (raw, json)
Hash identifier: e6ZSRbXR8ev4/6OReqk3OOOHFcaEScq0ToL9W4qalyI=
Subject key identifier: 3E:2E:84:F6:40:70:9A:12:05:F0:4E:E7:AD:26:0F:BC:A8:89:23:E8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 264E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D5ADF3EF91811EDBFEAE41A4AD9E6FC.roa
Signing time: Tue 23 May 2023 03:15:49 +0000
ROA not before: Tue 23 May 2023 03:15:45 +0000
ROA not after: Tue 20 Aug 2024 03:15:45 +0000
asID: 399674
IP address blocks: 154.205.152.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9806 (0x264e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 23 03:15:45 2023 GMT
Not After : Aug 20 03:15:45 2024 GMT
Subject: CN=646c2fe4-8b82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:74:1d:33:74:ca:6f:a8:c7:94:28:53:5d:5a:
4f:08:95:60:ef:ea:4f:38:e4:54:c5:fb:6d:5a:a0:
e9:c3:00:be:1e:8f:ee:12:c6:a8:17:04:05:1e:d3:
52:be:e9:73:23:b4:46:c0:74:45:a0:ef:9c:98:69:
4b:33:34:85:23:11:e9:0b:59:3a:18:80:ac:0b:9c:
d4:ab:60:12:43:ec:9c:d9:53:31:df:76:7a:8a:16:
bc:df:c7:8d:cf:c9:2a:27:3a:ba:10:07:37:84:15:
0d:fe:1c:39:f5:9b:9c:c9:8e:94:1f:42:28:91:45:
38:68:8a:4d:aa:d9:57:57:21:35:f6:61:86:0a:f8:
99:e6:20:66:f1:cd:96:c7:93:7b:76:8b:de:56:a8:
4e:fa:8f:aa:d6:0a:1b:c7:eb:60:1e:33:95:4d:9a:
0c:fd:e0:27:af:6d:d5:35:e6:47:03:dc:b9:d9:b9:
b0:3a:f0:b5:86:af:4a:f1:2a:af:40:85:31:ee:70:
93:3e:39:0f:bd:52:d4:f4:d7:65:f0:b0:00:43:46:
95:1f:6c:22:f0:8e:88:eb:ef:97:d0:a4:64:22:7a:
64:d0:3c:e8:06:58:55:aa:82:e6:bd:e0:ef:18:0f:
10:83:7a:36:6e:23:a0:82:cd:14:64:e5:c7:af:5f:
ee:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:2E:84:F6:40:70:9A:12:05:F0:4E:E7:AD:26:0F:BC:A8:89:23:E8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D5ADF3EF91811EDBFEAE41A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.152.0/21
Signature Algorithm: sha256WithRSAEncryption
03:07:a5:30:ba:71:90:4f:b7:07:55:47:c4:90:8e:10:79:c9:
06:6b:3a:f7:50:30:2d:c8:28:1e:7a:97:c1:14:e7:e2:ce:46:
93:50:43:6a:3b:48:9a:4c:1d:46:49:4b:1d:b4:ba:06:26:fc:
9f:16:e7:fa:34:82:8c:af:b5:ce:05:42:b1:1b:92:e3:fe:83:
b7:2a:57:27:a0:b6:20:d4:b3:be:5b:6c:ab:81:ae:91:99:a1:
44:d9:ba:49:3e:58:8f:17:68:1d:b3:30:4e:c2:bf:e2:fb:33:
06:50:5a:19:16:84:bc:9b:b0:db:4e:e3:4b:5c:f6:ec:e8:8c:
ed:de:59:c5:2c:08:d9:ee:da:61:2e:4a:a7:dc:9c:b0:6a:0a:
70:4c:21:74:9c:5b:0b:53:d0:30:bc:69:70:43:57:dd:a3:96:
30:6e:60:fd:92:d5:91:9c:76:7c:cf:58:7c:ac:12:9e:b9:83:
f5:f6:c5:cc:b3:26:7a:78:17:d1:42:92:94:1f:0c:04:f6:6c:
e9:2d:68:4f:b6:1c:0c:4b:b0:dd:5c:f8:46:af:69:37:3f:5b:
99:66:30:b2:f0:db:06:56:87:42:d8:70:33:0c:89:b1:b7:77:
b1:15:bb:10:ec:2d:b8:16:9b:d7:d3:f7:4c:a6:3f:1b:1b:55:
a5:a7:1b:61
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICJk4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA1MjMwMzE1NDVaFw0yNDA4MjAwMzE1NDVaMBgxFjAU
BgNVBAMTDTY0NmMyZmU0LThiODIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDcdB0zdMpvqMeUKFNdWk8IlWDv6k845FTF+21aoOnDAL4ej+4SxqgXBAUe
01K+6XMjtEbAdEWg75yYaUszNIUjEekLWToYgKwLnNSrYBJD7JzZUzHfdnqKFrzf
x43PySonOroQBzeEFQ3+HDn1m5zJjpQfQiiRRThoik2q2VdXITX2YYYK+JnmIGbx
zZbHk3t2i95WqE76j6rWChvH62AeM5VNmgz94CevbdU15kcD3LnZubA68LWGr0rx
Kq9AhTHucJM+OQ+9UtT012XwsABDRpUfbCLwjojr75fQpGQiemTQPOgGWFWqgua9
4O8YDxCDejZuI6CCzRRk5cevX+6HAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUPi6E
9kBwmhIF8E7nrSYPvKiJI+gwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzFENUFERjNFRjkxODExRURCRkVBRTQxQTRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAOazZgwDQYJKoZIhvcNAQEL
BQADggEBAAMHpTC6cZBPtwdVR8SQjhB5yQZrOvdQMC3IKB56l8EU5+LORpNQQ2o7
SJpMHUZJSx20ugYm/J8W5/o0goyvtc4FQrEbkuP+g7cqVyegtiDUs75bbKuBrpGZ
oUTZukk+WI8XaB2zME7Cv+L7MwZQWhkWhLybsNtO40tc9uzojO3eWcUsCNnu2mEu
SqfcnLBqCnBMIXScWwtT0DC8aXBDV92jljBuYP2S1ZGcdnzPWHysEp65g/X2xcyz
Jnp4F9FCkpQfDAT2bOktaE+2HAxLsN1c+EavaTc/W5lmMLLw2wZWh0LYcDMMibG3
d7EVuxDsLbgWm9fT90ymPxsbVaWnG2E=
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:17 2024 by rpki-client on console-fra.rpki-client.org