Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/209618FAE82611EE82C4559D775412E6.roa
File: 209618FAE82611EE82C4559D775412E6.roa (raw, json)
Hash identifier: zGETvX0nFaVsZSTxMkcTMFMok9uP/13qLnF4qFIUlxM=
Subject key identifier: 97:2C:4D:B3:35:54:6F:DA:B2:20:FC:06:14:0D:6E:21:39:27:8B:24
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A630
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/209618FAE82611EE82C4559D775412E6.roa
Signing time: Fri 22 Mar 2024 08:28:15 +0000
ROA not before: Fri 22 Mar 2024 08:28:11 +0000
ROA not after: Fri 26 Apr 2024 08:28:11 +0000
asID: 328608
IP address blocks: 154.194.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42544 (0xa630)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 22 08:28:11 2024 GMT
Not After : Apr 26 08:28:11 2024 GMT
Subject: CN=65fd411f-4321
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:f4:d5:c5:a2:e6:40:e3:eb:b0:47:19:51:57:
91:ce:34:86:b7:6b:e5:33:3b:ee:4f:82:08:b1:02:
66:92:fb:64:77:0c:61:5f:05:0d:02:f6:e7:9d:57:
64:1c:e2:d1:b9:54:ad:d4:09:87:3f:2b:96:38:22:
4d:f8:c2:ae:2e:62:bc:7c:fa:5a:89:52:03:16:d5:
fe:9b:42:3d:80:90:f3:27:a7:e5:03:84:3f:f4:0c:
69:3e:c2:cb:46:e0:ab:c8:9e:e7:48:4d:ff:ba:04:
b1:02:80:21:66:ce:35:0f:6a:61:f3:71:9b:bd:36:
4c:73:ae:70:7d:39:c3:f9:92:d7:a6:11:3f:f2:20:
6a:20:f6:3f:ad:af:0a:02:ea:35:17:92:ae:9a:98:
c1:47:fc:e9:68:40:3e:71:9d:26:92:e3:6d:66:da:
ce:fe:be:20:92:0e:11:72:2f:7b:f7:3c:e8:5d:7f:
fc:af:cf:60:de:16:e6:d2:1e:b0:f9:9e:64:16:ec:
09:d9:b8:ff:f3:9f:6d:2b:7c:28:e7:17:9b:21:35:
1d:9a:a3:74:1f:11:c5:f3:ba:e4:be:25:28:54:b6:
e5:47:b9:0c:bd:f5:13:50:01:ee:49:ec:a9:54:f9:
a9:4e:f7:c3:7b:9f:70:08:c5:cb:af:15:35:7a:cb:
1f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:2C:4D:B3:35:54:6F:DA:B2:20:FC:06:14:0D:6E:21:39:27:8B:24
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/209618FAE82611EE82C4559D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.35.0/24
Signature Algorithm: sha256WithRSAEncryption
35:a5:0b:46:0d:6b:51:7d:6b:87:a4:87:ce:e2:e1:b6:f8:3b:
9a:10:d9:33:4a:bb:75:28:c5:67:dd:cc:01:2b:ea:0e:f5:af:
2b:bb:a5:cf:07:7d:b1:64:6c:bc:81:63:85:c8:22:42:06:50:
23:b0:0a:d2:38:73:9e:01:d1:73:fb:af:0f:6a:25:d9:e6:79:
5b:3b:e0:36:91:64:3b:b4:df:15:d2:a5:bb:ae:42:56:b9:48:
cf:a0:25:63:12:56:b3:86:bc:82:f7:6b:73:eb:4f:8d:43:68:
fe:c7:8c:5e:05:e3:96:53:48:0d:77:06:ec:4a:e6:df:3c:d5:
5f:5e:3f:5f:77:48:3e:d2:f0:01:a9:09:29:52:74:02:15:b8:
c3:4f:62:76:63:84:dd:51:d4:cd:7c:08:c8:ae:a3:e5:af:a3:
ef:ed:48:c0:6e:3c:93:53:8c:63:b1:96:38:e3:a9:87:6b:c3:
d8:a9:5e:43:ef:56:6a:bb:c7:38:ef:41:c1:c2:66:35:43:79:
2f:b8:e8:9a:81:1f:6d:57:e1:52:59:b5:57:86:06:f9:fb:ad:
c4:22:ff:37:7e:4e:ae:34:0d:f0:63:84:ce:ff:dd:9b:ba:e7:
8e:07:3e:7c:cf:ef:74:42:4e:53:aa:23:e0:d2:74:07:f4:5d:
ec:c7:92:6b
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKYwMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIyMDgyODExWhcNMjQwNDI2MDgyODExWjAYMRYw
FAYDVQQDEw02NWZkNDExZi00MzIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3/TVxaLmQOPrsEcZUVeRzjSGt2vlMzvuT4IIsQJmkvtkdwxhXwUNAvbn
nVdkHOLRuVSt1AmHPyuWOCJN+MKuLmK8fPpaiVIDFtX+m0I9gJDzJ6flA4Q/9Axp
PsLLRuCryJ7nSE3/ugSxAoAhZs41D2ph83GbvTZMc65wfTnD+ZLXphE/8iBqIPY/
ra8KAuo1F5KumpjBR/zpaEA+cZ0mkuNtZtrO/r4gkg4Rci979zzoXX/8r89g3hbm
0h6w+Z5kFuwJ2bj/859tK3wo5xebITUdmqN0HxHF87rkviUoVLblR7kMvfUTUAHu
SeypVPmpTvfDe59wCMXLrxU1essfvwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJcs
TbM1VG/asiD8BhQNbiE5J4skMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yMDk2MThGQUU4MjYxMUVFODJDNDU1OUQ3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsIjMA0GCSqGSIb3DQEB
CwUAA4IBAQA1pQtGDWtRfWuHpIfO4uG2+DuaENkzSrt1KMVn3cwBK+oO9a8ru6XP
B32xZGy8gWOFyCJCBlAjsArSOHOeAdFz+68PaiXZ5nlbO+A2kWQ7tN8V0qW7rkJW
uUjPoCVjElazhryC92tz60+NQ2j+x4xeBeOWU0gNdwbsSubfPNVfXj9fd0g+0vAB
qQkpUnQCFbjDT2J2Y4TdUdTNfAjIrqPlr6Pv7UjAbjyTU4xjsZY446mHa8PYqV5D
71Zqu8c470HBwmY1Q3kvuOiagR9tV+FSWbVXhgb5+63EIv83fk6uNA3wY4TO/92b
uueOBz58z+90Qk5TqiPg0nQH9F3sx5Jr
-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:15 2024 by rpki-client on console-ams.rpki-client.org