Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/45356040F91A11EDB41CFB214AD9E6FC.roa
File: 45356040F91A11EDB41CFB214AD9E6FC.roa (raw, json)
Hash identifier: SPLEUCLrDKFaibio/CvcS3z5zTwZgZ/LDjefFLPb2q0=
Subject key identifier: 80:14:78:5A:D2:4C:8D:E2:50:60:BE:E5:B1:E9:10:1F:7D:2D:9E:D4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2668
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/45356040F91A11EDB41CFB214AD9E6FC.roa
Signing time: Tue 23 May 2023 03:31:14 +0000
ROA not before: Tue 23 May 2023 03:31:11 +0000
ROA not after: Mon 05 Aug 2024 03:31:11 +0000
asID: 58879
IP address blocks: 154.209.228.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9832 (0x2668)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 23 03:31:11 2023 GMT
Not After : Aug 5 03:31:11 2024 GMT
Subject: CN=646c3382-25c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:13:00:c7:58:c0:cb:7b:6b:ed:41:b4:a7:d8:
52:04:06:5b:6b:a4:98:e2:43:f7:e8:19:c2:30:81:
3f:72:53:75:23:84:29:d0:89:ed:54:9e:63:7c:eb:
2c:11:21:b1:43:06:e6:d0:a6:00:a4:ac:76:1b:7e:
a1:7d:9d:fa:b4:6f:b9:75:dd:eb:ad:e8:82:0c:6c:
aa:4a:0f:b7:22:af:8b:90:44:93:8c:00:62:89:a2:
7c:d0:a2:10:6c:fb:17:23:be:73:6d:d1:0a:de:cc:
b7:88:72:9c:51:c2:6b:66:62:d5:3a:0f:63:b2:07:
f2:b2:e1:f1:25:a6:36:ee:25:77:dc:1d:85:66:10:
dd:bc:e1:ea:64:05:f6:1e:69:86:46:f1:f2:11:3b:
a6:87:43:e9:36:e0:12:1c:40:8c:6f:46:00:9c:ba:
01:64:42:f3:3d:37:13:32:2b:2b:12:a3:97:b5:c9:
10:12:37:c2:34:ec:9e:31:8e:e3:5d:f0:6d:37:52:
39:e3:00:dd:ab:2c:4e:23:a0:59:e9:c2:c2:47:e8:
9c:ec:d2:02:3a:96:85:d1:72:91:77:55:9d:78:cf:
12:0f:7d:32:58:d2:81:9a:c3:57:39:5c:f3:92:f2:
d0:3c:6a:c1:f3:f8:d9:92:87:c2:14:3d:d5:30:04:
f5:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:14:78:5A:D2:4C:8D:E2:50:60:BE:E5:B1:E9:10:1F:7D:2D:9E:D4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/45356040F91A11EDB41CFB214AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.228.0/23
Signature Algorithm: sha256WithRSAEncryption
7e:73:f2:82:a2:65:27:1b:eb:df:0f:c8:b7:d6:1e:9c:a5:f0:
b7:b2:51:0b:ba:a4:ca:9b:fb:bf:b6:29:63:49:22:9c:32:6d:
9c:83:ad:ed:f1:49:a1:04:92:e0:43:e1:ed:54:0b:63:69:86:
f7:99:d3:c9:a4:93:45:96:f2:1f:6f:89:90:e8:64:57:78:c7:
61:0c:86:38:e9:d8:74:e2:bb:ca:d6:7d:6d:55:bf:af:6a:9e:
c4:63:60:95:f8:d6:c6:84:fc:e4:8f:5b:6f:a1:b7:05:b1:e1:
47:0e:02:48:3c:83:31:6a:95:12:af:e5:3b:8a:df:58:ee:5b:
d0:65:e4:53:37:38:ad:54:b5:21:5b:58:2e:7a:4a:ac:8d:f9:
68:d3:56:de:60:6f:26:59:66:fd:e3:c1:c8:9f:36:ca:8c:8b:
4d:97:36:c1:03:85:be:1f:11:04:91:eb:48:c7:6b:bd:1f:6c:
44:70:b8:45:8c:bb:fd:a2:bb:5e:bb:f9:38:6c:34:cd:9e:6d:
2e:32:db:24:bd:55:ea:ec:05:a9:2d:e5:38:fe:90:0b:ac:d3:
c9:10:d9:b7:2e:b4:27:ad:2f:bd:74:d6:d5:f0:bb:a4:09:49:
e0:ca:f8:08:e6:c9:04:4c:d0:45:9f:dc:fb:b8:2c:de:27:68:
67:02:60:c9
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICJmgwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA1MjMwMzMxMTFaFw0yNDA4MDUwMzMxMTFaMBgxFjAU
BgNVBAMTDTY0NmMzMzgyLTI1YzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCcEwDHWMDLe2vtQbSn2FIEBltrpJjiQ/foGcIwgT9yU3UjhCnQie1UnmN8
6ywRIbFDBubQpgCkrHYbfqF9nfq0b7l13eut6IIMbKpKD7cir4uQRJOMAGKJonzQ
ohBs+xcjvnNt0QrezLeIcpxRwmtmYtU6D2OyB/Ky4fElpjbuJXfcHYVmEN284epk
BfYeaYZG8fIRO6aHQ+k24BIcQIxvRgCcugFkQvM9NxMyKysSo5e1yRASN8I07J4x
juNd8G03UjnjAN2rLE4joFnpwsJH6Jzs0gI6loXRcpF3VZ14zxIPfTJY0oGaw1c5
XPOS8tA8asHz+NmSh8IUPdUwBPX9AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUgBR4
WtJMjeJQYL7lsekQH30tntQwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzQ1MzU2MDQwRjkxQTExRURCNDFDRkIyMTRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGa0eQwDQYJKoZIhvcNAQEL
BQADggEBAH5z8oKiZScb698PyLfWHpyl8LeyUQu6pMqb+7+2KWNJIpwybZyDre3x
SaEEkuBD4e1UC2NphveZ08mkk0WW8h9viZDoZFd4x2EMhjjp2HTiu8rWfW1Vv69q
nsRjYJX41saE/OSPW2+htwWx4UcOAkg8gzFqlRKv5TuK31juW9Bl5FM3OK1UtSFb
WC56SqyN+WjTVt5gbyZZZv3jwcifNsqMi02XNsEDhb4fEQSR60jHa70fbERwuEWM
u/2iu167+ThsNM2ebS4y2yS9VersBakt5Tj+kAus08kQ2bcutCetL7101tXwu6QJ
SeDK+AjmyQRM0EWf3Pu4LN4naGcCYMk=
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:22 2024 by rpki-client on console-fra.rpki-client.org