Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6A832406D7D911EE96A409C9775412E6.roa
File: 6A832406D7D911EE96A409C9775412E6.roa (raw, json)
Hash identifier: 0os88GjuQVgalgTQhS+AGZFNTznb9seQf7dilYk6Zlw=
Subject key identifier: 9E:39:7E:15:13:D0:D6:CB:EE:5C:4A:09:3D:A4:44:BA:4F:6C:73:98
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 963E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6A832406D7D911EE96A409C9775412E6.roa
Signing time: Fri 01 Mar 2024 14:38:49 +0000
ROA not before: Fri 01 Mar 2024 14:38:46 +0000
ROA not after: Sun 01 Sep 2024 14:38:46 +0000
asID: 3320
IP address blocks: 154.91.148.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38462 (0x963e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 1 14:38:46 2024 GMT
Not After : Sep 1 14:38:46 2024 GMT
Subject: CN=65e1e879-a085
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d3:43:aa:1a:d8:5d:af:19:bf:90:c6:45:97:
6b:be:26:27:61:fb:4e:52:83:42:cf:59:2c:12:d4:
c2:8a:6b:51:52:c9:a5:b6:13:1e:27:d6:ef:f3:41:
ce:ee:13:6a:55:f4:51:63:28:3c:c5:7e:29:d7:26:
e5:19:b4:61:7b:e8:85:48:0d:ce:df:4e:c9:f1:42:
2e:dc:f6:9f:39:9a:30:21:e5:42:84:d7:dd:ab:c9:
53:61:10:bf:a3:2c:0e:9e:05:5c:ae:32:f8:9d:94:
78:01:09:6c:7a:29:c6:2c:c0:ed:5e:79:0f:aa:ad:
69:61:8c:90:ee:83:56:d3:a3:1b:ba:8d:fe:5c:e9:
44:4a:de:a3:c0:23:f6:01:80:c7:52:36:5e:79:bc:
a0:41:76:fd:fb:b8:00:cd:b1:ba:11:82:57:a0:50:
af:ff:f1:a1:d8:ea:a8:cd:bf:47:f3:ff:db:66:7d:
14:f6:a8:c8:d5:ac:1a:23:f3:4c:1d:dd:66:7d:b0:
6d:7e:54:43:b5:a0:f1:3d:bf:cc:57:b9:61:20:ea:
48:e5:ee:0f:9a:e4:d7:a6:19:7f:4e:f5:07:1a:0d:
5d:e6:82:a2:f3:a2:71:e3:3e:a4:af:cb:71:23:59:
2d:18:7c:cf:81:d4:b8:c2:d2:70:e7:55:72:2b:97:
81:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:39:7E:15:13:D0:D6:CB:EE:5C:4A:09:3D:A4:44:BA:4F:6C:73:98
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6A832406D7D911EE96A409C9775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.148.0/22
Signature Algorithm: sha256WithRSAEncryption
b8:45:cd:f1:47:59:ee:40:c5:16:79:b6:3f:15:71:78:9e:98:
39:2e:ef:1e:28:c9:00:a5:74:4c:85:ca:3c:ab:ba:5c:26:3b:
d9:56:27:9d:c2:45:48:bc:06:c6:01:ca:f7:96:7b:18:9d:c6:
72:2f:72:32:33:bc:a4:48:5f:fb:23:cc:5c:22:b6:49:7f:e6:
90:37:cf:5e:63:4a:7b:71:ec:65:f5:49:2b:bf:71:e7:53:61:
fa:ed:3a:18:ea:ad:08:67:c9:71:f5:a3:2f:5d:57:05:e3:71:
a2:d8:d4:84:f9:78:91:ef:7f:8d:16:fe:cf:de:96:e7:9b:74:
86:5e:02:8f:bd:3a:26:d6:e3:81:23:68:77:73:eb:a3:18:ef:
6c:4a:e5:40:e0:a8:31:7b:b7:59:1f:79:c3:5d:35:1e:84:a4:
12:56:1b:7b:59:1e:4a:db:ab:8c:2e:31:5c:7d:0e:d4:06:b0:
5e:08:ce:58:f3:d2:e9:f2:0e:ce:d5:ef:00:d6:91:ea:bb:cd:
82:1e:e2:0e:50:1a:fd:a5:6a:3b:11:78:fa:2f:81:ef:65:6e:
9f:fc:16:46:f1:e2:c8:f6:75:8b:40:cd:73:a5:5d:40:9e:17:
4d:ac:d1:29:82:34:71:e8:94:bd:a6:ba:c2:ee:e1:70:70:cc:
b5:b7:b3:2a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAJY+MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzAxMTQzODQ2WhcNMjQwOTAxMTQzODQ2WjAYMRYw
FAYDVQQDEw02NWUxZTg3OS1hMDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAotNDqhrYXa8Zv5DGRZdrviYnYftOUoNCz1ksEtTCimtRUsmlthMeJ9bv
80HO7hNqVfRRYyg8xX4p1yblGbRhe+iFSA3O307J8UIu3PafOZowIeVChNfdq8lT
YRC/oywOngVcrjL4nZR4AQlseinGLMDtXnkPqq1pYYyQ7oNW06Mbuo3+XOlESt6j
wCP2AYDHUjZeebygQXb9+7gAzbG6EYJXoFCv//Gh2Oqozb9H8//bZn0U9qjI1awa
I/NMHd1mfbBtflRDtaDxPb/MV7lhIOpI5e4PmuTXphl/TvUHGg1d5oKi86Jx4z6k
r8txI1ktGHzPgdS4wtJw51VyK5eBpQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJ45
fhUT0NbL7lxKCT2kRLpPbHOYMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82QTgzMjQwNkQ3RDkxMUVFOTZBNDA5Qzk3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmluUMA0GCSqGSIb3DQEB
CwUAA4IBAQC4Rc3xR1nuQMUWebY/FXF4npg5Lu8eKMkApXRMhco8q7pcJjvZVied
wkVIvAbGAcr3lnsYncZyL3IyM7ykSF/7I8xcIrZJf+aQN89eY0p7cexl9Ukrv3Hn
U2H67ToY6q0IZ8lx9aMvXVcF43Gi2NSE+XiR73+NFv7P3pbnm3SGXgKPvTom1uOB
I2h3c+ujGO9sSuVA4Kgxe7dZH3nDXTUehKQSVht7WR5K26uMLjFcfQ7UBrBeCM5Y
89Lp8g7O1e8A1pHqu82CHuIOUBr9pWo7EXj6L4HvZW6f/BZG8eLI9nWLQM1zpV1A
nhdNrNEpgjRx6JS9prrC7uFwcMy1t7Mq
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:11 2024 by rpki-client on console-ams.rpki-client.org