Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2E3C7508FD3411EE84A4DE17017001B1.roa
File: 2E3C7508FD3411EE84A4DE17017001B1.roa (raw, json)
Hash identifier: +OAfoiw5N6QS0arQTy2HQoNIAL/8Ib3/nvkQy+eUdGY=
Subject key identifier: 2C:18:40:DB:92:39:9E:03:0B:10:59:2D:F7:7A:A1:B0:ED:58:BE:56
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AE01
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2E3C7508FD3411EE84A4DE17017001B1.roa
Signing time: Thu 18 Apr 2024 03:31:45 +0000
ROA not before: Thu 18 Apr 2024 03:31:41 +0000
ROA not after: Sun 19 May 2024 03:31:41 +0000
asID: 29802
IP address blocks: 154.203.32.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44545 (0xae01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 18 03:31:41 2024 GMT
Not After : May 19 03:31:41 2024 GMT
Subject: CN=66209421-bb25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fb:52:0d:b9:5f:2c:7f:84:50:bb:ad:2f:01:
b1:82:3c:13:08:f0:71:95:29:28:c6:55:9b:b5:84:
7e:fa:75:17:3a:37:27:a3:ab:55:87:3a:e8:09:cb:
25:e2:2f:ce:67:0c:54:a1:68:e2:7c:a7:19:2d:10:
fa:72:3f:90:be:22:1e:be:74:dc:65:37:82:75:42:
29:60:59:d9:7b:1b:a7:64:cc:94:25:64:af:7e:f0:
59:f5:8d:f1:2a:3b:3a:ca:b4:0d:ca:14:4f:06:67:
30:5a:3a:f8:9b:50:27:ba:86:ba:72:1a:89:2d:7c:
ff:4c:59:ca:ad:56:a2:57:09:c1:91:1f:3a:57:87:
b5:fb:ad:83:95:12:e5:f8:59:e5:8f:d2:30:b3:77:
a6:9b:1e:ac:7d:b0:b5:bf:62:0b:eb:7f:86:fc:d6:
6d:e7:90:d3:a3:1f:32:df:a7:26:1e:fd:42:9a:05:
da:db:49:ba:47:5c:5d:9a:b8:47:0f:2d:6b:f0:d8:
0c:26:32:3b:d9:67:5f:0b:51:2d:58:3d:2e:c1:90:
17:6d:fe:09:bf:1e:dd:58:c9:61:d5:46:d9:c9:e1:
a4:a3:cb:da:df:fa:0e:b3:29:64:ca:0c:1d:1e:d6:
ce:5f:2a:fb:38:66:55:c3:a4:1b:33:d5:65:a5:0b:
98:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:18:40:DB:92:39:9E:03:0B:10:59:2D:F7:7A:A1:B0:ED:58:BE:56
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2E3C7508FD3411EE84A4DE17017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.32.0/22
Signature Algorithm: sha256WithRSAEncryption
46:17:fd:ec:42:78:2e:8d:a1:01:b3:fb:1a:d8:85:89:d5:d4:
8a:4d:9c:e3:fc:ed:05:ff:35:50:6c:ad:e2:29:94:e0:2c:b1:
7d:db:9e:d5:67:4c:06:3d:d2:44:e5:a3:ae:36:05:83:6d:3e:
8d:36:87:90:1e:cd:3f:50:29:e6:97:7e:78:3a:50:09:f6:5b:
38:df:6a:52:50:ce:30:67:d9:98:9e:c9:ab:2f:86:8c:ef:35:
cd:3e:d8:b8:cd:8e:1d:69:be:d7:7e:37:41:3e:ac:8b:90:98:
b9:ab:d1:46:39:a3:c4:80:9f:32:44:9f:74:eb:33:59:47:d1:
a2:2c:fe:2a:52:de:5d:ab:61:60:18:e6:34:4b:5f:82:57:71:
77:f4:68:18:e2:4d:a9:fe:0c:a7:7c:27:cc:40:5d:36:b5:e9:
f9:b1:81:b4:58:b1:68:50:a4:b4:ce:d8:0f:f9:f4:5b:e1:2a:
1c:78:9a:72:c2:a9:b6:e6:d0:f5:4a:a9:6f:e9:85:2c:97:0e:
2f:ba:7f:47:3b:7e:bf:b3:df:e9:85:45:56:12:40:4c:6f:8b:
61:15:5a:5f:11:3c:77:cf:f5:8e:5e:bb:66:f3:2d:fa:90:a1:
cf:b0:6c:35:af:95:02:b6:df:4a:44:95:58:b8:38:9a:f0:c5:
03:ff:1a:d8
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAK4BMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDE4MDMzMTQxWhcNMjQwNTE5MDMzMTQxWjAYMRYw
FAYDVQQDEw02NjIwOTQyMS1iYjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuPtSDblfLH+EULutLwGxgjwTCPBxlSkoxlWbtYR++nUXOjcno6tVhzro
Ccsl4i/OZwxUoWjifKcZLRD6cj+QviIevnTcZTeCdUIpYFnZexunZMyUJWSvfvBZ
9Y3xKjs6yrQNyhRPBmcwWjr4m1Anuoa6chqJLXz/TFnKrVaiVwnBkR86V4e1+62D
lRLl+Fnlj9Iws3emmx6sfbC1v2IL63+G/NZt55DTox8y36cmHv1CmgXa20m6R1xd
mrhHDy1r8NgMJjI72WdfC1EtWD0uwZAXbf4Jvx7dWMlh1UbZyeGko8va3/oOsylk
ygwdHtbOXyr7OGZVw6QbM9VlpQuYhwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCwY
QNuSOZ4DCxBZLfd6obDtWL5WMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yRTNDNzUwOEZEMzQxMUVFODRBNERFMTcwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmssgMA0GCSqGSIb3DQEB
CwUAA4IBAQBGF/3sQngujaEBs/sa2IWJ1dSKTZzj/O0F/zVQbK3iKZTgLLF9257V
Z0wGPdJE5aOuNgWDbT6NNoeQHs0/UCnml354OlAJ9ls432pSUM4wZ9mYnsmrL4aM
7zXNPti4zY4dab7XfjdBPqyLkJi5q9FGOaPEgJ8yRJ906zNZR9GiLP4qUt5dq2Fg
GOY0S1+CV3F39GgY4k2p/gynfCfMQF02ten5sYG0WLFoUKS0ztgP+fRb4SoceJpy
wqm25tD1Sqlv6YUslw4vun9HO36/s9/phUVWEkBMb4thFVpfETx3z/WOXrtm8y36
kKHPsGw1r5UCtt9KRJVYuDia8MUD/xrY
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:19 2024 by rpki-client on console-fra.rpki-client.org