Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5DAE1644E9A611EE9C964061775412E6.roa
File: 5DAE1644E9A611EE9C964061775412E6.roa (raw, json)
Hash identifier: /LUCN7TSYanp9TcoWFQ6s90zD7mmNVl35A7ypyHGcM0=
Subject key identifier: 51:C1:74:F6:8C:E6:DD:34:E8:21:94:5F:6E:76:E2:D1:38:C6:57:A7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A64E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5DAE1644E9A611EE9C964061775412E6.roa
Signing time: Sun 24 Mar 2024 06:18:44 +0000
ROA not before: Sun 24 Mar 2024 06:18:41 +0000
ROA not after: Fri 26 Apr 2024 06:18:41 +0000
asID: 149513
IP address blocks: 154.201.94.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 06:18:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42574 (0xa64e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 24 06:18:41 2024 GMT
Not After : Apr 26 06:18:41 2024 GMT
Subject: CN=65ffc5c4-2e2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c6:df:48:36:90:40:2c:13:9e:e1:00:e4:8b:
bd:2d:ee:af:10:3f:1e:65:a7:a1:97:94:69:55:53:
81:22:89:c6:87:c7:a1:74:ce:93:48:9e:90:54:fe:
b0:dd:67:c9:33:0b:89:20:a3:f6:69:dd:ec:6b:36:
c9:fe:7b:51:05:49:51:7f:60:7c:d9:06:83:54:18:
69:2e:2a:06:d8:c0:91:fd:2f:e4:d5:2a:01:90:e5:
35:3f:26:dc:39:21:c3:f4:40:13:b5:d4:fe:1f:eb:
85:9c:a9:7d:48:7c:b5:d1:36:8b:51:86:5f:5e:93:
5f:28:b8:24:7e:08:af:4d:5c:53:e2:df:ff:b7:bf:
00:49:2e:32:87:91:8a:e5:b9:03:4a:75:9b:9f:e4:
d5:64:82:88:a9:63:70:d3:75:23:5e:d7:ed:fe:0d:
81:2b:58:ea:80:19:ec:f7:2f:f5:3e:02:21:bd:8b:
e4:98:08:29:2c:b9:d1:94:f8:a8:a8:a1:30:a5:a9:
4b:2d:c6:5d:f0:27:6e:c9:db:24:c1:81:f1:91:54:
bd:5f:07:5c:e6:6b:9b:0e:2a:3a:0f:25:0a:85:67:
6f:b1:03:8a:55:2f:f4:20:87:a9:ad:1f:b0:f4:e1:
e7:b6:5c:28:a9:ae:bf:48:63:31:88:c5:64:29:41:
fe:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:C1:74:F6:8C:E6:DD:34:E8:21:94:5F:6E:76:E2:D1:38:C6:57:A7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5DAE1644E9A611EE9C964061775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.94.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:f2:8c:2b:26:0b:56:e2:6e:fc:00:21:85:a6:8a:2d:15:70:
e6:dd:27:81:96:ed:49:59:06:ef:40:d5:d2:28:c0:f7:ca:9b:
6e:47:a0:4d:b6:bf:e2:cd:dd:c3:15:98:2f:6d:61:4a:35:97:
d4:77:f9:8d:b9:04:9f:89:f7:1e:39:69:bc:4a:74:86:49:7c:
28:83:19:fd:68:f1:06:f3:c9:39:01:29:6c:10:53:94:e2:ec:
88:6a:63:82:7e:88:da:83:a3:d9:06:75:f0:bf:66:c6:7f:29:
ba:e4:21:e3:97:ad:ae:f0:35:32:e5:e1:c7:da:f6:2c:7a:e7:
ee:e9:8c:52:21:4a:ab:a1:72:9a:b0:f0:8a:46:72:cd:e4:e1:
e1:65:42:a6:00:bf:15:65:ce:ad:db:29:2a:c8:48:b5:52:d5:
77:65:7c:29:f2:54:75:5f:3f:14:1d:35:90:a2:fd:1d:8f:46:
3f:7c:58:0d:52:a8:c6:8d:5f:7f:c6:07:ee:f0:10:db:d7:9d:
4c:34:a2:8f:0a:6f:fe:f2:cd:8c:e6:4c:aa:ad:31:e4:04:9f:
ed:55:15:d7:5d:f5:c0:cf:2e:be:58:97:a7:11:b5:6b:dd:5a:
ef:c2:c0:33:e1:f4:72:e5:cc:60:e6:4c:0d:aa:54:c0:ac:37:
7f:d5:bd:0e
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKZOMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzI0MDYxODQxWhcNMjQwNDI2MDYxODQxWjAYMRYw
FAYDVQQDEw02NWZmYzVjNC0yZTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuMbfSDaQQCwTnuEA5Iu9Le6vED8eZaehl5RpVVOBIonGh8ehdM6TSJ6Q
VP6w3WfJMwuJIKP2ad3sazbJ/ntRBUlRf2B82QaDVBhpLioG2MCR/S/k1SoBkOU1
PybcOSHD9EATtdT+H+uFnKl9SHy10TaLUYZfXpNfKLgkfgivTVxT4t//t78ASS4y
h5GK5bkDSnWbn+TVZIKIqWNw03UjXtft/g2BK1jqgBns9y/1PgIhvYvkmAgpLLnR
lPioqKEwpalLLcZd8CduydskwYHxkVS9Xwdc5mubDio6DyUKhWdvsQOKVS/0IIep
rR+w9OHntlwoqa6/SGMxiMVkKUH+bQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFHB
dPaM5t006CGUX2524tE4xlenMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81REFFMTY0NEU5QTYxMUVFOUM5NjQwNjE3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmsleMA0GCSqGSIb3DQEB
CwUAA4IBAQAr8owrJgtW4m78ACGFpootFXDm3SeBlu1JWQbvQNXSKMD3yptuR6BN
tr/izd3DFZgvbWFKNZfUd/mNuQSfifceOWm8SnSGSXwogxn9aPEG88k5ASlsEFOU
4uyIamOCfojag6PZBnXwv2bGfym65CHjl62u8DUy5eHH2vYseufu6YxSIUqroXKa
sPCKRnLN5OHhZUKmAL8VZc6t2ykqyEi1UtV3ZXwp8lR1Xz8UHTWQov0dj0Y/fFgN
UqjGjV9/xgfu8BDb151MNKKPCm/+8s2M5kyqrTHkBJ/tVRXXXfXAzy6+WJenEbVr
3VrvwsAz4fRy5cxg5kwNqlTArDd/1b0O
-----END CERTIFICATE-----
Generated at Thu Apr 25 22:33:32 2024 by rpki-client on console-fra.rpki-client.org