Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2AE9F756F00811EE9B0EB64B775412E6.roa
File: 2AE9F756F00811EE9B0EB64B775412E6.roa (raw, json)
Hash identifier: uTQU8+ybjjtHRrTr4whbZaSWYJp2JaNJT6v7Q2dyBkY=
Subject key identifier: 43:7C:C2:86:48:2D:3E:93:4E:3E:2D:0A:6D:E4:59:A9:7D:1A:93:B1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A820
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2AE9F756F00811EE9B0EB64B775412E6.roa
Signing time: Mon 01 Apr 2024 09:13:57 +0000
ROA not before: Mon 01 Apr 2024 09:13:53 +0000
ROA not after: Sat 11 May 2024 09:13:53 +0000
asID: 138915
IP address blocks: 154.205.154.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43040 (0xa820)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 09:13:53 2024 GMT
Not After : May 11 09:13:53 2024 GMT
Subject: CN=660a7ad4-2725
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:13:32:94:22:75:d9:55:6a:78:c2:2e:d7:3f:
12:7d:66:f2:fd:48:d0:70:4a:2d:87:8e:d2:c3:ee:
43:ad:e9:f7:d2:ed:24:1e:13:82:d8:7e:60:f9:c4:
80:02:22:50:eb:3b:77:14:93:6d:6e:97:57:30:ec:
10:bd:70:be:a2:7a:73:4e:f9:55:c8:4f:91:a2:db:
9e:b1:8d:29:1d:b2:47:7a:98:41:a4:0c:4c:53:1e:
8e:cd:d2:6c:46:67:d1:ea:2b:73:16:9b:f1:4f:6e:
45:1f:9c:77:d7:fc:76:7a:2a:f1:ca:75:1d:13:b7:
ad:41:a8:d6:2f:f3:dc:74:02:9e:83:40:f0:fb:66:
35:25:27:ca:25:b6:74:d1:cb:ba:a8:47:d2:4b:9a:
62:0c:e5:69:b4:b8:98:aa:6f:ce:24:95:d4:87:f8:
d9:22:70:00:31:a8:b5:6a:33:43:b8:92:41:f4:b1:
d3:03:52:e4:bf:e6:bd:75:ac:84:66:cc:cf:12:0d:
e1:8b:38:21:a1:8f:b5:cf:d6:25:31:30:97:cd:58:
83:3c:39:cf:95:7d:e3:56:41:66:8a:84:15:bc:34:
77:5c:76:64:8b:05:22:33:6e:0f:bb:29:dc:dc:9f:
b2:c7:20:17:5f:93:4f:37:21:48:f9:56:33:de:4e:
10:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:7C:C2:86:48:2D:3E:93:4E:3E:2D:0A:6D:E4:59:A9:7D:1A:93:B1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2AE9F756F00811EE9B0EB64B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.154.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:18:73:a6:e4:05:6a:b7:b8:27:70:12:fe:e9:3c:9c:28:19:
69:17:14:9d:a1:cc:80:0a:31:3b:9d:e2:6f:26:a4:ba:35:1a:
e1:e2:d0:7d:38:31:e2:3a:d2:3e:d2:a1:8f:30:b0:93:24:16:
a9:9a:e9:39:a9:5a:be:c1:3a:a2:2a:ae:89:13:98:d9:67:28:
ee:56:4f:7f:4e:dc:67:d6:06:72:2e:ae:fb:62:4e:eb:16:4f:
2d:3c:e4:6d:37:1e:71:e5:4d:e0:62:cf:0d:e0:5f:37:1b:5c:
bc:d9:bf:8b:ca:03:4e:b3:33:ae:14:72:e6:95:18:71:fa:83:
4f:1d:56:11:48:a1:f6:ab:02:8c:e1:42:af:b1:f8:1f:d3:2f:
b7:e4:c7:41:a1:04:b9:71:0b:d3:c4:e5:fb:34:a2:12:4b:73:
77:5f:6e:5a:12:34:f0:bd:25:8a:3e:17:79:6c:c4:73:ad:cd:
57:ed:d3:96:7e:ac:6c:2c:e8:3e:d9:04:02:b9:3b:89:19:4c:
a2:8b:0a:ef:a2:66:c1:3e:80:ad:d7:d7:75:5e:42:74:62:db:
5f:98:03:a1:66:ce:03:ee:44:62:15:7b:38:24:2e:e4:25:3e:
63:75:ed:63:42:c7:db:02:75:bd:f5:78:c4:4b:11:2a:3c:5d:
94:28:0f:89
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKggMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDAxMDkxMzUzWhcNMjQwNTExMDkxMzUzWjAYMRYw
FAYDVQQDEw02NjBhN2FkNC0yNzI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArBMylCJ12VVqeMIu1z8SfWby/UjQcEoth47Sw+5Dren30u0kHhOC2H5g
+cSAAiJQ6zt3FJNtbpdXMOwQvXC+onpzTvlVyE+RotuesY0pHbJHephBpAxMUx6O
zdJsRmfR6itzFpvxT25FH5x31/x2eirxynUdE7etQajWL/PcdAKeg0Dw+2Y1JSfK
JbZ00cu6qEfSS5piDOVptLiYqm/OJJXUh/jZInAAMai1ajNDuJJB9LHTA1Lkv+a9
dayEZszPEg3hizghoY+1z9YlMTCXzViDPDnPlX3jVkFmioQVvDR3XHZkiwUiM24P
uync3J+yxyAXX5NPNyFI+VYz3k4Q5wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFEN8
woZILT6TTj4tCm3kWal9GpOxMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yQUU5Rjc1NkYwMDgxMUVFOUIwRUI2NEI3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms2aMA0GCSqGSIb3DQEB
CwUAA4IBAQBPGHOm5AVqt7gncBL+6TycKBlpFxSdocyACjE7neJvJqS6NRrh4tB9
ODHiOtI+0qGPMLCTJBapmuk5qVq+wTqiKq6JE5jZZyjuVk9/Ttxn1gZyLq77Yk7r
Fk8tPORtNx5x5U3gYs8N4F83G1y82b+LygNOszOuFHLmlRhx+oNPHVYRSKH2qwKM
4UKvsfgf0y+35MdBoQS5cQvTxOX7NKISS3N3X25aEjTwvSWKPhd5bMRzrc1X7dOW
fqxsLOg+2QQCuTuJGUyiiwrvombBPoCt19d1XkJ0YttfmAOhZs4D7kRiFXs4JC7k
JT5jde1jQsfbAnW99XjESxEqPF2UKA+J
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:05 2024 by rpki-client on console-ams.rpki-client.org