Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3A136B88F7C211EE88ABA039017001B1.roa
File: 3A136B88F7C211EE88ABA039017001B1.roa (raw, json)
Hash identifier: j3FfCH2rqDmBoqVxOMzm3fR+gyzP/PDCczxaz94vADg=
Subject key identifier: 95:F2:1E:D6:91:3D:88:8A:31:E7:1B:26:7C:CF:F9:06:E4:27:58:EB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB39
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3A136B88F7C211EE88ABA039017001B1.roa
Signing time: Thu 11 Apr 2024 05:13:27 +0000
ROA not before: Thu 11 Apr 2024 05:13:23 +0000
ROA not after: Sun 19 May 2024 05:13:23 +0000
asID: 138915
IP address blocks: 154.93.40.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43833 (0xab39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 11 05:13:23 2024 GMT
Not After : May 19 05:13:23 2024 GMT
Subject: CN=66177176-edbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:2d:16:02:87:e1:e7:5d:29:27:8a:27:ca:10:
dd:15:40:44:6d:9f:5e:c0:4c:32:4b:a4:7b:c0:81:
45:27:29:d9:04:5f:64:ae:88:68:f1:72:6e:6b:d8:
73:27:e2:86:24:7c:92:63:7f:19:55:35:cd:1a:d2:
15:24:3c:96:05:b6:df:89:4e:9b:bf:17:ea:bf:e9:
83:33:4b:30:90:e1:b1:98:e1:11:ce:4b:1e:85:42:
2f:d0:5c:df:d7:90:38:38:e4:5a:45:53:01:8d:2e:
ba:9d:81:ab:fb:5a:aa:ee:12:2d:92:50:9a:95:6b:
59:4e:fc:f5:37:4d:7d:67:f3:43:7a:04:76:02:90:
80:b5:fb:93:2b:2e:4c:0c:0a:ab:23:5e:ea:cf:72:
b5:c8:7d:91:91:0d:aa:33:ff:e7:ad:e9:4a:0f:1b:
78:e9:0b:ff:a2:f5:33:8f:d8:b5:e7:ab:ed:f2:3d:
ed:f7:64:06:0c:a9:0a:41:5d:15:92:08:9a:08:ee:
34:74:26:e8:ea:fe:12:15:1f:cf:66:f5:3b:f2:c1:
ef:3c:fa:f3:fc:f8:e9:8d:43:e7:38:ea:1d:96:4b:
e4:42:36:2c:67:e6:9c:9a:b1:09:e3:fd:84:3a:e2:
0d:ad:33:db:f3:b6:02:7c:ee:3f:d9:fb:f6:3b:a6:
fd:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:F2:1E:D6:91:3D:88:8A:31:E7:1B:26:7C:CF:F9:06:E4:27:58:EB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3A136B88F7C211EE88ABA039017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.40.0/23
Signature Algorithm: sha256WithRSAEncryption
8b:db:52:7b:3a:20:38:8f:d1:10:33:bb:15:3d:6a:a3:83:63:
0a:ac:36:48:6a:13:b9:6d:ca:b6:09:18:c3:39:04:eb:3f:a0:
e0:61:10:a7:ac:24:e7:e1:ad:46:83:90:72:b0:b6:0d:1c:4a:
3f:f1:4d:44:3a:fb:e1:51:fd:0e:98:f6:a0:ce:a8:c1:4b:90:
30:93:b9:c2:cd:ff:12:70:07:15:a5:0c:de:51:d0:5d:95:4b:
97:cc:7d:54:2d:05:ac:81:ec:e6:c0:1f:fc:36:18:ff:37:5a:
90:ae:81:d9:a9:09:1b:2f:19:66:ea:9f:dd:16:56:c3:4a:be:
8d:4b:fe:3c:d2:ce:15:1b:e5:b9:ff:de:21:f9:87:ae:f7:8b:
ab:0b:84:2f:59:c2:85:7d:51:34:3f:f6:7b:ff:52:f3:2c:be:
c4:53:95:5c:0c:77:85:83:03:b7:f9:1d:0f:3a:a2:b6:6a:f6:
2a:53:71:60:92:c0:9a:3b:e7:0c:de:23:54:82:cd:9d:fa:71:
d2:25:d0:62:f6:4f:0b:8f:79:ba:86:aa:cd:ac:ae:b8:28:53:
b1:3c:c1:6f:d0:0f:3d:a7:ce:d6:73:7b:2e:ff:5f:0a:ed:53:
13:c1:21:1c:fe:0b:9d:55:63:b8:12:cd:4a:cc:5f:0b:56:6d:
0b:34:99:65
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKs5MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDExMDUxMzIzWhcNMjQwNTE5MDUxMzIzWjAYMRYw
FAYDVQQDEw02NjE3NzE3Ni1lZGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAty0WAofh510pJ4onyhDdFUBEbZ9ewEwyS6R7wIFFJynZBF9kroho8XJu
a9hzJ+KGJHySY38ZVTXNGtIVJDyWBbbfiU6bvxfqv+mDM0swkOGxmOERzksehUIv
0Fzf15A4OORaRVMBjS66nYGr+1qq7hItklCalWtZTvz1N019Z/NDegR2ApCAtfuT
Ky5MDAqrI17qz3K1yH2RkQ2qM//nrelKDxt46Qv/ovUzj9i156vt8j3t92QGDKkK
QV0VkgiaCO40dCbo6v4SFR/PZvU78sHvPPrz/PjpjUPnOOodlkvkQjYsZ+acmrEJ
4/2EOuINrTPb87YCfO4/2fv2O6b9sQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJXy
HtaRPYiKMecbJnzP+QbkJ1jrMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zQTEzNkI4OEY3QzIxMUVFODhBQkEwMzkwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBml0oMA0GCSqGSIb3DQEB
CwUAA4IBAQCL21J7OiA4j9EQM7sVPWqjg2MKrDZIahO5bcq2CRjDOQTrP6DgYRCn
rCTn4a1Gg5BysLYNHEo/8U1EOvvhUf0OmPagzqjBS5Awk7nCzf8ScAcVpQzeUdBd
lUuXzH1ULQWsgezmwB/8Nhj/N1qQroHZqQkbLxlm6p/dFlbDSr6NS/480s4VG+W5
/94h+Yeu94urC4QvWcKFfVE0P/Z7/1LzLL7EU5VcDHeFgwO3+R0POqK2avYqU3Fg
ksCaO+cM3iNUgs2d+nHSJdBi9k8Lj3m6hqrNrK64KFOxPMFv0A89p87Wc3su/18K
7VMTwSEc/gudVWO4Es1KzF8LVm0LNJll
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:06 2024 by rpki-client on console-ams.rpki-client.org