Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/68267758E76011EEAC583F8F775412E6.roa
File: 68267758E76011EEAC583F8F775412E6.roa (raw, json)
Hash identifier: xpeCjl6CqIj/cEbXEnFTTrDye4TsWK9/ytriEDS4uA4=
Subject key identifier: 1C:E6:BC:60:41:3C:56:73:50:57:3C:00:A4:05:6E:8A:50:B9:C4:DA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A505
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/68267758E76011EEAC583F8F775412E6.roa
Signing time: Thu 21 Mar 2024 08:52:55 +0000
ROA not before: Thu 21 Mar 2024 08:52:51 +0000
ROA not after: Tue 23 Apr 2024 08:52:51 +0000
asID: 44559
IP address blocks: 154.222.22.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42245 (0xa505)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 08:52:51 2024 GMT
Not After : Apr 23 08:52:51 2024 GMT
Subject: CN=65fbf566-35e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:84:a0:4f:25:88:eb:db:41:aa:5e:d7:2d:a8:
09:e8:eb:8a:ca:ea:3c:08:13:04:61:82:e3:47:e2:
4c:27:c3:8c:0a:7b:85:e1:54:a7:f9:5d:30:97:ae:
e1:dc:db:48:96:bf:34:c6:f2:3d:c0:1b:df:17:a8:
84:01:ff:e8:2d:94:24:95:85:e3:8f:48:d0:0c:97:
6f:4b:d0:39:bb:6f:b8:93:5a:3e:3b:d3:66:bd:ab:
07:d1:81:0b:41:35:8e:82:85:78:88:d0:d5:b4:09:
f1:73:8f:eb:3f:fd:2f:e3:18:8f:d3:59:2b:40:2d:
10:fd:5a:af:6a:04:0a:07:71:4d:5b:3a:37:ac:69:
95:29:08:9a:89:f0:f6:a2:c9:43:14:be:c9:fd:54:
42:5b:36:1b:67:af:91:0a:c0:a3:7a:8c:82:e2:75:
cb:b5:58:47:50:94:83:80:d8:82:53:56:d5:9c:b1:
90:18:fa:5d:27:71:9c:c3:6a:d9:88:b3:52:f5:49:
8b:80:fb:66:0d:f7:1a:bf:7f:d4:46:63:c0:80:55:
31:01:ad:d0:4c:ed:e8:c0:fe:87:44:5c:0b:df:94:
e5:2a:9f:32:8d:02:54:96:e1:68:a8:3c:8a:93:9d:
cb:a9:1a:99:e2:8e:e3:8b:78:91:55:d8:17:6e:da:
58:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:E6:BC:60:41:3C:56:73:50:57:3C:00:A4:05:6E:8A:50:B9:C4:DA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/68267758E76011EEAC583F8F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.22.0/24
Signature Algorithm: sha256WithRSAEncryption
15:a8:de:37:3d:c0:5a:9f:f8:a7:db:7c:83:c2:14:b5:a4:f2:
13:f8:33:20:fe:2c:25:e8:bb:f6:8e:7e:82:31:fe:1a:9e:8c:
73:f1:83:48:98:a5:10:87:13:08:19:95:c3:65:8e:b0:d6:3f:
56:07:01:a4:69:19:9d:f1:69:18:6d:3c:67:44:98:c2:26:ef:
45:93:bb:10:cd:9e:a2:f7:82:17:02:8c:21:b8:82:14:0e:be:
aa:c5:b9:b2:ed:6c:12:5b:63:12:a7:61:c0:02:fe:f1:43:08:
c9:4d:d6:83:20:e4:ff:4d:25:72:23:fd:53:18:1e:f9:23:83:
4e:dc:0e:40:f3:ea:42:e9:c0:bf:c1:c6:ed:e1:4e:1d:2c:a4:
b6:3c:95:df:d1:8c:05:f3:16:ab:17:30:40:45:14:07:6a:3c:
5e:12:53:2c:49:92:c0:fa:29:47:a0:a0:7a:7f:c0:50:ff:8a:
ac:7e:10:b2:48:73:75:0e:f2:86:cd:b9:48:57:b2:82:3a:44:
e4:e7:22:0f:3e:80:0e:b4:00:d5:9f:05:c1:a0:a3:fd:d5:d6:
40:de:ed:d8:14:a4:0a:cf:be:b7:b3:5d:2f:8a:38:6c:84:65:
f9:d2:34:83:5e:61:1c:eb:f1:ff:89:78:27:d6:9e:96:e6:9a:
a7:bd:a1:3f
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKUFMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMDg1MjUxWhcNMjQwNDIzMDg1MjUxWjAYMRYw
FAYDVQQDEw02NWZiZjU2Ni0zNWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsYSgTyWI69tBql7XLagJ6OuKyuo8CBMEYYLjR+JMJ8OMCnuF4VSn+V0w
l67h3NtIlr80xvI9wBvfF6iEAf/oLZQklYXjj0jQDJdvS9A5u2+4k1o+O9NmvasH
0YELQTWOgoV4iNDVtAnxc4/rP/0v4xiP01krQC0Q/VqvagQKB3FNWzo3rGmVKQia
ifD2oslDFL7J/VRCWzYbZ6+RCsCjeoyC4nXLtVhHUJSDgNiCU1bVnLGQGPpdJ3Gc
w2rZiLNS9UmLgPtmDfcav3/URmPAgFUxAa3QTO3owP6HRFwL35TlKp8yjQJUluFo
qDyKk53LqRqZ4o7ji3iRVdgXbtpYNwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFBzm
vGBBPFZzUFc8AKQFbopQucTaMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82ODI2Nzc1OEU3NjAxMUVFQUM1ODNGOEY3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt4WMA0GCSqGSIb3DQEB
CwUAA4IBAQAVqN43PcBan/in23yDwhS1pPIT+DMg/iwl6Lv2jn6CMf4anoxz8YNI
mKUQhxMIGZXDZY6w1j9WBwGkaRmd8WkYbTxnRJjCJu9Fk7sQzZ6i94IXAowhuIIU
Dr6qxbmy7WwSW2MSp2HAAv7xQwjJTdaDIOT/TSVyI/1TGB75I4NO3A5A8+pC6cC/
wcbt4U4dLKS2PJXf0YwF8xarFzBARRQHajxeElMsSZLA+ilHoKB6f8BQ/4qsfhCy
SHN1DvKGzblIV7KCOkTk5yIPPoAOtADVnwXBoKP91dZA3u3YFKQKz763s10vijhs
hGX50jSDXmEc6/H/iXgn1p6W5pqnvaE/
-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:21 2024 by rpki-client on console-ams.rpki-client.org