Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5C18170682B511EE9A52C6204AD9E6FC.roa
File: 5C18170682B511EE9A52C6204AD9E6FC.roa (raw, json)
Hash identifier: Wc/kF3pXy1TOTxBQN5aHU5sSGNNBwNo7lXGyoLXR/Lg=
Subject key identifier: 73:21:0A:17:ED:0B:4C:C8:2A:25:94:4C:AC:5C:DD:9E:DA:AC:11:36
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4FA8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5C18170682B511EE9A52C6204AD9E6FC.roa
Signing time: Tue 14 Nov 2023 06:16:34 +0000
ROA not before: Tue 14 Nov 2023 06:16:31 +0000
ROA not after: Tue 12 Nov 2024 06:16:31 +0000
asID: 397630
IP address blocks: 154.201.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20392 (0x4fa8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 06:16:31 2023 GMT
Not After : Nov 12 06:16:31 2024 GMT
Subject: CN=655310c2-45b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c9:5c:3a:d1:a9:e4:dd:b6:2a:a0:2e:ce:30:
34:c2:2e:6a:29:ea:04:a4:97:b3:8a:31:9d:c7:a3:
62:88:8f:cb:e2:6a:68:c2:fa:82:df:92:82:6b:02:
03:fe:84:23:74:f9:1e:5e:ff:1d:8e:8c:87:5c:a9:
ac:84:a7:88:e0:85:86:cf:e4:7b:ea:6e:94:87:4d:
00:82:02:e8:d9:38:ed:b7:88:7b:01:7c:f6:a6:3a:
a6:09:6d:ce:41:66:bc:05:2e:13:6c:66:a2:a5:68:
70:ec:0e:3c:aa:f8:d4:92:5f:ba:d2:ec:4a:e1:1b:
2e:39:5f:19:c6:4a:8f:8b:b6:87:26:ca:60:3c:6f:
51:f7:d1:81:9a:d6:0a:d3:de:d4:27:45:77:06:10:
19:08:b9:27:94:ad:24:ca:47:26:30:80:4b:7c:c3:
7a:83:4e:3a:a3:94:b3:81:a7:53:4b:99:86:36:c5:
2d:f8:e7:1e:c4:48:99:ed:73:0b:02:32:b9:8f:6b:
ca:14:00:20:8c:b0:40:12:b3:bb:96:06:71:83:d9:
21:6a:f6:58:71:c9:cc:3c:39:75:ac:49:18:fc:7c:
b2:00:ac:80:b2:4a:72:ec:62:23:30:35:8e:69:60:
77:d2:5a:56:d3:94:cc:a5:79:b3:5c:95:ed:b1:fd:
f8:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:21:0A:17:ED:0B:4C:C8:2A:25:94:4C:AC:5C:DD:9E:DA:AC:11:36
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5C18170682B511EE9A52C6204AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.40.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:39:92:ac:23:34:08:54:3b:36:94:e0:53:5e:7c:d4:0d:cf:
ad:ee:f3:31:ae:4a:76:8e:73:0f:56:a2:72:a0:84:36:96:b1:
b2:0b:fb:31:aa:50:ba:8c:e5:b2:47:e1:0c:15:8c:68:7c:ee:
1f:2b:5b:6a:37:25:b4:02:df:d1:d1:0e:be:d9:5b:08:12:13:
b9:20:b2:32:7e:75:c2:8d:d7:9c:64:e6:8f:fc:f2:17:49:28:
a6:a7:92:d4:35:43:1c:31:da:6f:f4:0f:57:b4:0f:fa:37:5c:
65:4c:9a:5d:31:ac:de:88:6b:e2:86:80:fd:c5:ab:f0:38:3d:
6f:ef:c6:08:8f:f7:74:36:a7:01:9e:f1:0a:41:ca:d8:57:9f:
dd:bd:5c:a1:fd:1a:8b:6a:07:ce:3d:70:d1:3c:27:0c:de:6a:
a3:9c:fc:45:0e:92:d2:47:0c:55:a3:e6:80:7e:c7:8b:38:b6:
2f:4e:3b:61:5b:7f:93:f3:44:a4:ee:8a:9b:54:56:24:00:e5:
3a:73:31:e8:dc:28:62:76:4f:97:45:0e:9d:a1:40:47:7c:87:
78:04:a3:f1:3b:07:e2:69:b1:38:c1:d3:5f:67:ce:e5:39:40:
d3:d5:d3:11:b5:82:c9:02:a0:68:19:74:ee:a7:64:92:42:d8:
99:45:33:83
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICT6gwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzExMTQwNjE2MzFaFw0yNDExMTIwNjE2MzFaMBgxFjAU
BgNVBAMTDTY1NTMxMGMyLTQ1YjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDXyVw60ank3bYqoC7OMDTCLmop6gSkl7OKMZ3Ho2KIj8viamjC+oLfkoJr
AgP+hCN0+R5e/x2OjIdcqayEp4jghYbP5HvqbpSHTQCCAujZOO23iHsBfPamOqYJ
bc5BZrwFLhNsZqKlaHDsDjyq+NSSX7rS7ErhGy45XxnGSo+LtocmymA8b1H30YGa
1grT3tQnRXcGEBkIuSeUrSTKRyYwgEt8w3qDTjqjlLOBp1NLmYY2xS345x7ESJnt
cwsCMrmPa8oUACCMsEASs7uWBnGD2SFq9lhxycw8OXWsSRj8fLIArICySnLsYiMw
NY5pYHfSWlbTlMylebNcle2x/fj/AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUcyEK
F+0LTMgqJZRMrFzdntqsETYwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzVDMTgxNzA2ODJCNTExRUU5QTUyQzYyMDRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaySgwDQYJKoZIhvcNAQEL
BQADggEBAEo5kqwjNAhUOzaU4FNefNQNz63u8zGuSnaOcw9WonKghDaWsbIL+zGq
ULqM5bJH4QwVjGh87h8rW2o3JbQC39HRDr7ZWwgSE7kgsjJ+dcKN15xk5o/88hdJ
KKanktQ1Qxwx2m/0D1e0D/o3XGVMml0xrN6Ia+KGgP3Fq/A4PW/vxgiP93Q2pwGe
8QpBythXn929XKH9GotqB849cNE8JwzeaqOc/EUOktJHDFWj5oB+x4s4ti9OO2Fb
f5PzRKTuiptUViQA5TpzMejcKGJ2T5dFDp2hQEd8h3gEo/E7B+JpsTjB019nzuU5
QNPV0xG1gskCoGgZdO6nZJJC2JlFM4M=
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:10 2024 by rpki-client on console-ams.rpki-client.org