Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44268BB0E78611EE825E84B5775412E6.roa
File: 44268BB0E78611EE825E84B5775412E6.roa (raw, json)
Hash identifier: N6MuPrWaWQZNoeMF80tLBJoXQA8Ysre5cv2OOxtGe6U=
Subject key identifier: 64:55:5C:80:20:96:81:D8:D8:3E:83:57:9F:8F:0F:5C:9C:EC:99:FB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A5A7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44268BB0E78611EE825E84B5775412E6.roa
Signing time: Thu 21 Mar 2024 13:23:55 +0000
ROA not before: Thu 21 Mar 2024 13:23:51 +0000
ROA not after: Tue 23 Apr 2024 13:23:51 +0000
asID: 44559
IP address blocks: 154.210.73.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42407 (0xa5a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 13:23:51 2024 GMT
Not After : Apr 23 13:23:51 2024 GMT
Subject: CN=65fc34eb-426a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b9:74:73:00:1a:98:34:10:24:4a:64:0f:0b:
02:eb:7b:e4:a3:66:9c:94:47:5b:ae:b9:c2:5c:35:
0c:e8:7c:74:de:d2:33:59:1e:ce:bb:b5:d9:41:e4:
36:6f:ae:41:d3:17:4b:c7:7b:e9:a7:bc:e9:47:74:
db:05:4a:0b:ef:ef:79:83:0f:35:f8:c2:16:03:90:
a2:45:c9:0f:6a:06:86:f7:e3:91:92:2d:78:c1:8d:
7d:73:73:8a:9e:d4:bf:6a:1f:6f:1a:94:16:f0:ce:
5f:dd:e3:8e:81:6c:b1:50:d2:90:29:58:cf:3c:49:
b7:82:95:56:52:c5:ff:0c:f5:97:a7:a3:7a:38:d3:
06:78:72:f4:2f:28:52:bc:3b:0b:6d:e4:d9:a2:d0:
af:0b:6d:70:63:03:31:40:fb:e1:d1:77:51:4e:c6:
2d:a1:76:cb:61:12:6c:2a:bd:6f:28:69:ae:19:ea:
d6:63:af:33:8f:47:cb:9d:b1:f6:c1:d8:0e:fe:86:
30:af:c5:35:c4:79:25:f4:c4:cc:85:7c:2c:10:8c:
fc:4c:0a:15:8f:d4:4f:14:15:32:1e:01:c1:2a:e3:
81:62:f7:6a:d3:96:6c:ae:32:49:50:f6:10:cd:f7:
04:7c:f0:5e:65:ba:1a:37:3b:1e:2b:64:84:af:66:
0c:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:55:5C:80:20:96:81:D8:D8:3E:83:57:9F:8F:0F:5C:9C:EC:99:FB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44268BB0E78611EE825E84B5775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.73.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:67:dd:53:26:6d:6d:cd:7b:e2:ff:46:ca:f5:b2:12:22:c9:
27:98:42:10:02:d6:a1:04:a5:2b:0a:be:94:5a:6f:3c:6f:3c:
c1:9b:a0:68:ad:4a:d7:77:5b:f1:b4:8b:ec:35:df:2d:11:ad:
26:24:c0:31:0e:1b:a4:ac:d0:32:e4:72:84:74:54:2f:7a:b1:
c4:ad:b8:21:9d:96:a5:52:3b:e5:8f:43:a4:84:bf:51:88:77:
0c:3c:37:bc:a3:86:40:3b:0f:97:dc:ec:d4:d7:e1:d5:2f:20:
e7:3b:11:f3:87:81:3b:b9:82:35:37:34:cd:1f:10:19:ed:36:
91:2a:f4:d8:11:cb:8f:70:98:3c:2d:b6:c7:aa:e5:63:e7:83:
3f:0b:b1:8e:53:6a:de:0a:57:b0:d6:61:bc:f3:29:59:43:09:
e4:62:ec:43:ed:37:bb:0c:5d:ca:97:26:3c:db:29:42:cb:da:
0b:fb:e8:e1:82:a2:50:47:7d:6a:97:7b:49:d8:13:27:87:0d:
75:96:58:f4:81:a6:64:1e:f0:2d:fc:d1:27:ca:b2:47:9c:f1:
2a:f2:81:74:ad:99:45:49:30:18:b9:60:6d:df:43:ea:0d:d0:
f0:fa:fd:c9:90:54:0a:8d:7a:74:50:08:74:3d:fe:67:48:d9:
00:f7:46:e0
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKWnMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMTMyMzUxWhcNMjQwNDIzMTMyMzUxWjAYMRYw
FAYDVQQDEw02NWZjMzRlYi00MjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAybl0cwAamDQQJEpkDwsC63vko2aclEdbrrnCXDUM6Hx03tIzWR7Ou7XZ
QeQ2b65B0xdLx3vpp7zpR3TbBUoL7+95gw81+MIWA5CiRckPagaG9+ORki14wY19
c3OKntS/ah9vGpQW8M5f3eOOgWyxUNKQKVjPPEm3gpVWUsX/DPWXp6N6ONMGeHL0
LyhSvDsLbeTZotCvC21wYwMxQPvh0XdRTsYtoXbLYRJsKr1vKGmuGerWY68zj0fL
nbH2wdgO/oYwr8U1xHkl9MTMhXwsEIz8TAoVj9RPFBUyHgHBKuOBYvdq05ZsrjJJ
UPYQzfcEfPBeZboaNzseK2SEr2YMcwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGRV
XIAgloHY2D6DV5+PD1yc7Jn7MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC80NDI2OEJCMEU3ODYxMUVFODI1RTg0QjU3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtJJMA0GCSqGSIb3DQEB
CwUAA4IBAQAvZ91TJm1tzXvi/0bK9bISIsknmEIQAtahBKUrCr6UWm88bzzBm6Bo
rUrXd1vxtIvsNd8tEa0mJMAxDhukrNAy5HKEdFQverHErbghnZalUjvlj0OkhL9R
iHcMPDe8o4ZAOw+X3OzU1+HVLyDnOxHzh4E7uYI1NzTNHxAZ7TaRKvTYEcuPcJg8
LbbHquVj54M/C7GOU2reClew1mG88ylZQwnkYuxD7Te7DF3KlyY82ylCy9oL++jh
gqJQR31ql3tJ2BMnhw11llj0gaZkHvAt/NEnyrJHnPEq8oF0rZlFSTAYuWBt30Pq
DdDw+v3JkFQKjXp0UAh0Pf5nSNkA90bg
-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:18 2024 by rpki-client on console-ams.rpki-client.org