Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/354F0DC2F91811ED85823D1B4AD9E6FC.roa
File: 354F0DC2F91811ED85823D1B4AD9E6FC.roa (raw, json)
Hash identifier: jXyGgk7TlHWK7M8Komlfpk+51HlLdNtdA2BVpwUFuck=
Subject key identifier: 7C:B1:D4:0F:C6:81:E2:CC:54:08:DF:D6:70:15:38:DD:30:A5:8F:D7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2650
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/354F0DC2F91811ED85823D1B4AD9E6FC.roa
Signing time: Tue 23 May 2023 03:16:29 +0000
ROA not before: Tue 23 May 2023 03:16:26 +0000
ROA not after: Tue 20 Aug 2024 03:16:26 +0000
asID: 399674
IP address blocks: 154.205.144.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9808 (0x2650)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 23 03:16:26 2023 GMT
Not After : Aug 20 03:16:26 2024 GMT
Subject: CN=646c300d-1b41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ca:35:19:e7:05:23:17:58:dc:ea:df:04:ee:
5e:be:fb:34:4e:04:ad:7a:42:7f:7c:56:7a:fd:a8:
c8:b4:32:20:4e:6c:44:c8:ae:aa:ea:3c:3d:7d:bf:
28:25:12:46:4f:31:9a:f3:bf:d4:03:0e:ef:b4:85:
24:5d:27:33:e0:7a:c3:84:16:40:8a:4c:11:c6:af:
ab:fb:cc:48:f0:de:86:d9:e5:fc:e4:97:c7:0f:9b:
70:a8:52:67:93:82:b4:39:ed:29:1a:82:f9:da:c2:
ad:64:83:72:bf:21:50:2d:cb:33:20:4b:17:a3:1a:
86:75:ec:cd:43:c6:36:69:23:cc:74:06:8b:f2:dd:
93:04:06:01:a9:5d:8f:83:dc:ee:07:f7:20:ce:6b:
a4:6d:61:ea:49:dd:08:e9:d7:c3:b0:d5:a2:b8:98:
58:f7:dc:8c:8d:49:7e:b9:15:87:ca:3d:39:a8:20:
69:49:f8:1d:65:66:da:29:31:47:82:f5:ac:42:ad:
63:47:cd:ff:ad:00:22:5c:c2:80:e0:30:61:34:e0:
9e:43:8f:48:a5:6e:db:bc:bb:4b:60:8c:0e:b6:ac:
99:52:c2:c2:06:01:b1:05:dc:42:48:64:8b:72:47:
dd:30:a8:33:c6:99:b0:51:ff:60:08:a7:07:52:8b:
f5:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:B1:D4:0F:C6:81:E2:CC:54:08:DF:D6:70:15:38:DD:30:A5:8F:D7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/354F0DC2F91811ED85823D1B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.144.0/21
Signature Algorithm: sha256WithRSAEncryption
67:2e:08:d7:ff:7b:d2:e1:ab:e3:e4:88:d4:29:fe:b9:d6:f5:
5d:02:62:80:e7:43:9f:56:c7:a9:ad:26:94:33:e1:16:64:78:
c6:6d:b4:8c:6e:c5:83:1f:c7:e1:b8:ab:00:d1:3a:8d:24:32:
22:5c:4d:93:33:d1:05:c2:17:27:8c:a8:52:25:f7:34:49:d9:
c0:6d:1b:1d:a3:6e:01:27:af:bd:e5:75:94:ec:3c:5f:1b:f4:
c0:f9:a1:a6:b4:03:f9:c2:cb:87:7c:7a:41:6b:e5:98:37:42:
fa:3b:ac:d9:40:4c:f1:10:2f:f2:e1:23:4c:91:02:3e:29:dd:
86:20:a4:25:a1:42:68:c3:dd:fb:bc:1a:11:5e:ee:1e:ea:55:
b0:13:6c:94:c9:d6:45:40:9f:b1:80:d4:cb:05:48:e8:9e:4d:
38:7e:af:48:f3:f4:38:e1:fc:95:0e:37:c3:c4:73:88:3d:72:
c5:ab:c3:3b:5e:78:37:d9:06:39:5f:7d:c3:1b:47:40:4d:bf:
d9:24:f5:9c:c4:93:a9:0b:87:cb:f5:b4:32:cb:98:c9:9c:56:
e3:09:f4:dd:ab:04:5d:3e:ec:d0:e3:81:a7:5a:ee:64:7c:46:
a9:b1:b3:06:67:91:47:89:8f:5f:2b:6f:c4:b6:66:5a:5b:54:
31:c4:fc:7f
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICJlAwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA1MjMwMzE2MjZaFw0yNDA4MjAwMzE2MjZaMBgxFjAU
BgNVBAMTDTY0NmMzMDBkLTFiNDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDeyjUZ5wUjF1jc6t8E7l6++zROBK16Qn98Vnr9qMi0MiBObETIrqrqPD19
vyglEkZPMZrzv9QDDu+0hSRdJzPgesOEFkCKTBHGr6v7zEjw3obZ5fzkl8cPm3Co
UmeTgrQ57Skagvnawq1kg3K/IVAtyzMgSxejGoZ17M1DxjZpI8x0Bovy3ZMEBgGp
XY+D3O4H9yDOa6RtYepJ3Qjp18Ow1aK4mFj33IyNSX65FYfKPTmoIGlJ+B1lZtop
MUeC9axCrWNHzf+tACJcwoDgMGE04J5Dj0ilbtu8u0tgjA62rJlSwsIGAbEF3EJI
ZItyR90wqDPGmbBR/2AIpwdSi/VnAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUfLHU
D8aB4sxUCN/WcBU43TClj9cwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzM1NEYwREMyRjkxODExRUQ4NTgyM0QxQjRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAOazZAwDQYJKoZIhvcNAQEL
BQADggEBAGcuCNf/e9Lhq+PkiNQp/rnW9V0CYoDnQ59Wx6mtJpQz4RZkeMZttIxu
xYMfx+G4qwDROo0kMiJcTZMz0QXCFyeMqFIl9zRJ2cBtGx2jbgEnr73ldZTsPF8b
9MD5oaa0A/nCy4d8ekFr5Zg3Qvo7rNlATPEQL/LhI0yRAj4p3YYgpCWhQmjD3fu8
GhFe7h7qVbATbJTJ1kVAn7GA1MsFSOieTTh+r0jz9Djh/JUON8PEc4g9csWrwzte
eDfZBjlffcMbR0BNv9kk9ZzEk6kLh8v1tDLLmMmcVuMJ9N2rBF0+7NDjgada7mR8
RqmxswZnkUeJj18rb8S2ZlpbVDHE/H8=
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:06 2024 by rpki-client on console-ams.rpki-client.org