Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D8951D0F91611ED96B97D144AD9E6FC.roa
File: 2D8951D0F91611ED96B97D144AD9E6FC.roa (raw, json)
Hash identifier: nL5wB3zZANf7T7EWwQDOZqCikny2UuqMSdnxytN863I=
Subject key identifier: 4E:AD:3C:DD:55:6E:24:CD:F6:2C:CC:EB:27:B1:E5:DC:86:3A:B7:C7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2628
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D8951D0F91611ED96B97D144AD9E6FC.roa
Signing time: Tue 23 May 2023 03:01:57 +0000
ROA not before: Tue 23 May 2023 03:01:53 +0000
ROA not after: Wed 15 May 2024 03:01:53 +0000
asID: 399674
IP address blocks: 154.94.208.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9768 (0x2628)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 23 03:01:53 2023 GMT
Not After : May 15 03:01:53 2024 GMT
Subject: CN=646c2ca5-47b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:da:14:47:b2:91:ec:a7:0d:87:f5:82:7c:c2:
ee:4d:54:bf:4d:16:07:60:ab:3d:f3:62:1d:ab:08:
79:97:75:2a:e0:22:db:b8:9b:08:ee:f6:ef:1a:c9:
ab:10:24:f8:51:48:2b:61:54:26:4f:40:39:6a:36:
41:ce:51:b3:6c:96:7b:88:dd:f8:0c:27:b8:b2:2b:
d1:4e:36:87:30:f6:8a:fc:fb:c2:69:81:bc:a7:18:
40:aa:60:13:bf:c7:98:95:cf:16:c1:58:a6:67:00:
5a:8b:91:74:09:88:cb:95:52:ed:07:d8:52:df:c6:
92:97:d6:09:b7:c7:a5:98:c0:92:6d:93:ed:76:14:
57:03:cd:34:f0:a3:e3:e9:0c:a1:6a:55:13:ba:ac:
a9:a9:30:94:ea:53:1c:8c:3e:8d:d7:ee:ff:be:1a:
83:eb:1e:5e:d1:d0:10:b4:f0:9f:51:29:a3:b1:de:
76:64:d4:e8:05:42:6c:92:40:24:5b:13:27:ef:e1:
de:e8:69:a8:40:23:6a:6e:0a:7f:fe:9e:ea:e0:3e:
31:62:4c:18:62:66:d7:11:7f:5f:6c:b1:a9:c4:b0:
53:c9:b1:5c:93:f4:77:70:1b:ba:c9:4f:78:6c:28:
b3:2c:13:31:e3:09:df:68:c2:80:07:10:bf:06:ae:
d4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:AD:3C:DD:55:6E:24:CD:F6:2C:CC:EB:27:B1:E5:DC:86:3A:B7:C7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D8951D0F91611ED96B97D144AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.208.0/20
Signature Algorithm: sha256WithRSAEncryption
41:e4:08:13:07:54:40:14:cf:4d:bf:91:d7:c0:65:98:59:ac:
28:70:27:33:2e:d1:91:4e:48:bf:f8:8e:2c:91:ff:d2:ae:9c:
0d:7f:df:29:c7:7d:8f:e8:a3:90:14:9c:bf:12:42:06:92:d5:
d3:f4:61:a2:e8:1d:ab:00:fa:98:81:04:b7:f7:d6:64:7c:ef:
ca:19:32:25:7f:22:14:28:27:de:3c:56:94:d2:19:f3:28:9c:
98:00:7f:56:d8:a1:f0:46:91:54:6c:11:6d:a3:cc:53:58:f5:
e5:58:67:60:13:79:88:60:29:a2:a8:7a:7a:f6:8a:e8:0a:85:
38:b3:6f:ec:a4:0d:a2:52:0c:23:f6:71:85:ab:d8:01:5a:0a:
0b:e8:ec:11:35:4c:65:ef:fc:df:6c:b6:ff:83:de:ba:59:31:
64:37:87:b3:56:81:a3:76:d5:cf:7b:42:bb:ac:95:f5:b5:bd:
dc:4c:eb:5f:05:5a:34:a6:1c:a4:3c:ad:ba:27:f5:ec:1d:40:
13:c0:8d:ce:d4:df:68:70:d0:05:be:9e:19:50:69:d5:29:8a:
28:fc:7a:2a:23:67:54:2e:26:e6:65:58:bd:88:a3:ef:05:ac:
4a:9a:cf:34:ae:cf:79:a5:1e:47:b2:19:49:ab:82:b1:64:77:
15:56:b1:25
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICJigwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA1MjMwMzAxNTNaFw0yNDA1MTUwMzAxNTNaMBgxFjAU
BgNVBAMTDTY0NmMyY2E1LTQ3YjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDr2hRHspHspw2H9YJ8wu5NVL9NFgdgqz3zYh2rCHmXdSrgItu4mwju9u8a
yasQJPhRSCthVCZPQDlqNkHOUbNslnuI3fgMJ7iyK9FONocw9or8+8JpgbynGECq
YBO/x5iVzxbBWKZnAFqLkXQJiMuVUu0H2FLfxpKX1gm3x6WYwJJtk+12FFcDzTTw
o+PpDKFqVRO6rKmpMJTqUxyMPo3X7v++GoPrHl7R0BC08J9RKaOx3nZk1OgFQmyS
QCRbEyfv4d7oaahAI2puCn/+nurgPjFiTBhiZtcRf19ssanEsFPJsVyT9HdwG7rJ
T3hsKLMsEzHjCd9owoAHEL8GrtQxAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUTq08
3VVuJM32LMzrJ7Hl3IY6t8cwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzJEODk1MUQwRjkxNjExRUQ5NkI5N0QxNDRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBASaXtAwDQYJKoZIhvcNAQEL
BQADggEBAEHkCBMHVEAUz02/kdfAZZhZrChwJzMu0ZFOSL/4jiyR/9KunA1/3ynH
fY/oo5AUnL8SQgaS1dP0YaLoHasA+piBBLf31mR878oZMiV/IhQoJ948VpTSGfMo
nJgAf1bYofBGkVRsEW2jzFNY9eVYZ2ATeYhgKaKoenr2iugKhTizb+ykDaJSDCP2
cYWr2AFaCgvo7BE1TGXv/N9stv+D3rpZMWQ3h7NWgaN21c97QruslfW1vdxM618F
WjSmHKQ8rbon9ewdQBPAjc7U32hw0AW+nhlQadUpiij8eiojZ1QuJuZlWL2Io+8F
rEqazzSuz3mlHkeyGUmrgrFkdxVWsSU=
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:19 2024 by rpki-client on console-fra.rpki-client.org