Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/502AB316E75211EEADFA439F775412E6.roa
File: 502AB316E75211EEADFA439F775412E6.roa (raw, json)
Hash identifier: zK0GCN1wxy75ljZ3wmdEDSbPNekD1lWJwIUASc3cWzg=
Subject key identifier: B7:0B:CF:D9:A6:B4:63:54:A5:A5:F9:B0:D3:32:2F:84:32:4D:7E:76
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A47D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/502AB316E75211EEADFA439F775412E6.roa
Signing time: Thu 21 Mar 2024 07:12:01 +0000
ROA not before: Thu 21 Mar 2024 07:11:58 +0000
ROA not after: Tue 23 Apr 2024 07:11:58 +0000
asID: 44559
IP address blocks: 154.218.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42109 (0xa47d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 07:11:58 2024 GMT
Not After : Apr 23 07:11:58 2024 GMT
Subject: CN=65fbddc1-0517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:df:de:27:99:bd:d6:63:bf:6b:ec:75:8f:ee:
0e:1a:20:8b:7f:15:d2:30:ac:d6:71:e8:d3:e7:b4:
ba:2c:16:83:a6:25:32:c8:56:99:3f:1a:ff:80:ab:
02:39:84:df:47:5f:0b:6a:2e:2f:2d:17:74:3d:0f:
0c:12:98:f3:e4:71:7e:d9:21:6f:01:c0:11:64:69:
68:19:15:24:33:42:00:3c:f0:49:16:85:48:f5:92:
cc:98:b0:cf:a7:2d:53:f6:13:92:b8:66:00:ca:83:
d6:c6:8e:8d:e6:8d:bb:b9:cc:e7:8b:d5:f4:08:10:
8e:54:04:e6:07:34:d4:90:4e:db:80:33:19:ef:23:
b9:4f:81:05:0d:c7:0a:f9:56:56:30:ad:2e:12:1e:
d7:76:ad:a8:85:99:81:3d:54:b4:3b:29:a3:88:65:
fb:22:ec:01:cd:00:ee:18:48:96:fb:6d:96:40:44:
c3:19:62:1d:f6:f9:0d:42:cc:e3:ae:d4:1d:d4:e9:
62:8b:4c:fe:e8:d7:e3:53:a1:10:78:be:90:08:ea:
e3:60:48:81:01:5f:a8:f2:38:d4:05:bf:95:e7:8e:
77:df:d7:6d:ec:81:34:db:a8:62:27:44:4b:bd:b2:
1d:e1:14:39:29:87:70:ca:05:c7:82:cb:25:67:98:
f3:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:0B:CF:D9:A6:B4:63:54:A5:A5:F9:B0:D3:32:2F:84:32:4D:7E:76
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/502AB316E75211EEADFA439F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.58.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:44:74:8c:5e:b1:46:7e:b0:c2:d7:e2:9c:c3:d1:23:f0:40:
5c:e4:df:87:52:7c:38:10:c2:e3:92:42:06:3b:50:1d:d8:95:
54:6b:37:b1:ef:21:d2:7f:47:4d:4f:2b:35:0a:29:29:d0:8a:
04:84:07:41:37:f5:7f:6c:73:aa:5b:03:be:2e:34:ab:81:7c:
da:94:0c:a6:0c:a3:8b:b2:d6:37:ce:09:6b:a3:64:66:26:4c:
4e:96:c3:92:d3:ce:ca:64:99:b7:32:93:5f:09:c3:94:96:8a:
ad:47:4b:3a:12:66:cd:56:a6:4c:98:cd:32:38:81:a4:e5:ae:
3b:23:27:6b:bd:5f:9b:a9:50:28:43:a3:cb:5f:66:ca:bd:86:
59:69:7d:ff:55:44:66:16:f7:a8:6f:b4:44:20:e9:52:26:c3:
c4:a0:0a:f4:90:3a:27:85:11:dc:77:bd:27:e6:0b:4e:35:a7:
ce:7e:2c:4e:54:6f:54:c5:11:2f:54:eb:c0:28:89:58:d3:4a:
dc:59:bb:8e:e7:03:7f:d0:3e:c8:86:b1:82:a0:7c:ba:78:23:
2e:7b:51:01:a3:56:e8:bb:fb:08:84:49:e1:4d:16:69:31:13:
96:bb:57:9f:19:d9:ba:fe:cb:cf:b4:91:50:91:a7:ae:99:35:
8a:ed:d6:10
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKR9MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMDcxMTU4WhcNMjQwNDIzMDcxMTU4WjAYMRYw
FAYDVQQDEw02NWZiZGRjMS0wNTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA09/eJ5m91mO/a+x1j+4OGiCLfxXSMKzWcejT57S6LBaDpiUyyFaZPxr/
gKsCOYTfR18Lai4vLRd0PQ8MEpjz5HF+2SFvAcARZGloGRUkM0IAPPBJFoVI9ZLM
mLDPpy1T9hOSuGYAyoPWxo6N5o27uczni9X0CBCOVATmBzTUkE7bgDMZ7yO5T4EF
DccK+VZWMK0uEh7Xdq2ohZmBPVS0OymjiGX7IuwBzQDuGEiW+22WQETDGWId9vkN
QszjrtQd1Olii0z+6NfjU6EQeL6QCOrjYEiBAV+o8jjUBb+V545339dt7IE026hi
J0RLvbId4RQ5KYdwygXHgsslZ5jzHQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFLcL
z9mmtGNUpaX5sNMyL4QyTX52MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81MDJBQjMxNkU3NTIxMUVFQURGQTQzOUY3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmto6MA0GCSqGSIb3DQEB
CwUAA4IBAQDGRHSMXrFGfrDC1+Kcw9Ej8EBc5N+HUnw4EMLjkkIGO1Ad2JVUazex
7yHSf0dNTys1Cikp0IoEhAdBN/V/bHOqWwO+LjSrgXzalAymDKOLstY3zglro2Rm
JkxOlsOS087KZJm3MpNfCcOUloqtR0s6EmbNVqZMmM0yOIGk5a47IydrvV+bqVAo
Q6PLX2bKvYZZaX3/VURmFveob7REIOlSJsPEoAr0kDonhRHcd70n5gtONafOfixO
VG9UxREvVOvAKIlY00rcWbuO5wN/0D7IhrGCoHy6eCMue1EBo1bou/sIhEnhTRZp
MROWu1efGdm6/svPtJFQkaeumTWK7dYQ
-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:19 2024 by rpki-client on console-ams.rpki-client.org