Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B0A369A82BF11EEA96673404AD9E6FC.roa
File: 6B0A369A82BF11EEA96673404AD9E6FC.roa (raw, json)
Hash identifier: HdtDCPWgYtpLBHV6MjMzHE5oFskx25E+//m4IyTSIDo=
Subject key identifier: FA:A9:B7:F1:0E:6E:AB:24:20:F6:D7:36:63:F3:85:F8:84:C4:89:8F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 500E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B0A369A82BF11EEA96673404AD9E6FC.roa
Signing time: Tue 14 Nov 2023 07:28:34 +0000
ROA not before: Tue 14 Nov 2023 07:28:31 +0000
ROA not after: Tue 12 Nov 2024 07:28:31 +0000
asID: 397630
IP address blocks: 154.84.142.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20494 (0x500e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 07:28:31 2023 GMT
Not After : Nov 12 07:28:31 2024 GMT
Subject: CN=655321a2-91fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:37:6a:20:97:fe:4d:4d:c8:fb:c1:c8:7c:a6:
da:1e:09:53:0c:89:79:8a:50:1a:71:a8:25:72:28:
d6:79:75:e9:46:dc:ce:cb:39:c6:89:50:50:b5:87:
d1:41:95:0d:17:31:77:96:a4:48:3d:c3:a8:b7:af:
cf:7c:fb:7e:0d:8a:b4:bd:9c:99:17:e6:a7:b1:ea:
52:eb:ac:f6:9c:28:10:00:27:61:6d:03:4d:37:d8:
e7:3a:48:44:b2:2e:b9:39:4d:bd:cc:c8:43:0b:27:
4e:0d:37:bb:24:dd:38:e8:46:f6:12:d7:66:d0:46:
bb:6e:03:a9:ac:48:e8:2e:9b:a8:b3:e8:91:9b:b4:
b7:1f:6e:a7:8a:e5:b8:39:fc:43:a0:b5:c9:68:30:
db:e4:4b:f8:93:a9:79:9f:3a:cc:26:b4:f5:f6:ee:
0f:80:f9:4f:a1:98:2d:34:cb:f5:cf:be:87:60:0e:
f4:62:9b:9a:85:ed:d6:c2:f3:d6:2d:c0:b6:17:a8:
fc:e2:23:18:c2:2b:94:62:d5:80:42:a9:03:39:57:
5e:b3:7e:3f:fe:84:1a:a4:49:a0:81:fd:fd:b2:0e:
94:18:d6:02:bb:3d:f2:7e:c9:9a:c4:34:d7:5b:a6:
04:74:51:44:b1:38:cc:b9:83:2e:e5:d2:5b:ac:84:
bc:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:A9:B7:F1:0E:6E:AB:24:20:F6:D7:36:63:F3:85:F8:84:C4:89:8F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B0A369A82BF11EEA96673404AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.142.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:53:7c:da:27:94:8d:4c:61:a8:92:de:bc:29:61:fd:c7:cf:
6c:6d:5b:7c:0f:56:b4:51:dc:4d:fe:22:67:72:44:bc:d4:e3:
40:f4:93:e0:5e:13:0d:9f:82:9f:eb:eb:d6:30:61:e4:b4:46:
06:ac:99:7a:53:3d:75:0b:e6:17:73:ed:a5:50:43:13:d7:1a:
3c:15:fe:24:97:40:80:9d:b8:07:b5:e7:de:54:ed:0d:86:7d:
34:ca:a0:7e:35:23:92:43:ba:0d:6e:8c:cc:4c:f8:39:d1:ff:
c2:4c:0b:06:b2:61:de:16:5e:bc:68:98:31:3b:3d:93:3f:b4:
63:1b:50:1a:52:33:c9:a5:73:6b:cd:9c:0d:fe:ab:73:3c:9d:
c4:00:13:88:1f:97:d2:d7:5c:16:f6:44:c8:7f:94:45:34:20:
44:a2:94:ce:b2:57:64:08:36:57:0b:ab:1c:d4:02:7b:9a:2b:
33:a9:d9:4d:df:30:5a:45:d4:3b:b0:0f:5a:9f:e4:b7:ff:9d:
d8:55:57:62:1c:d6:8c:7a:02:6c:71:37:4c:3c:51:8e:3d:2a:
b7:a9:cc:a8:aa:ce:d4:c3:63:d1:51:cb:35:3d:33:be:79:8d:
85:c0:c0:a4:3b:12:5b:4e:6e:ca:87:80:9c:26:fc:69:0a:c0:
6e:51:f1:60
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICUA4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzExMTQwNzI4MzFaFw0yNDExMTIwNzI4MzFaMBgxFjAU
BgNVBAMTDTY1NTMyMWEyLTkxZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDHN2ogl/5NTcj7wch8ptoeCVMMiXmKUBpxqCVyKNZ5delG3M7LOcaJUFC1
h9FBlQ0XMXeWpEg9w6i3r898+34NirS9nJkX5qex6lLrrPacKBAAJ2FtA0032Oc6
SESyLrk5Tb3MyEMLJ04NN7sk3TjoRvYS12bQRrtuA6msSOgum6iz6JGbtLcfbqeK
5bg5/EOgtcloMNvkS/iTqXmfOswmtPX27g+A+U+hmC00y/XPvodgDvRim5qF7dbC
89YtwLYXqPziIxjCK5Ri1YBCqQM5V16zfj/+hBqkSaCB/f2yDpQY1gK7PfJ+yZrE
NNdbpgR0UUSxOMy5gy7l0lushLxtAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU+qm3
8Q5uqyQg9tc2Y/OF+ITEiY8wHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzZCMEEzNjlBODJCRjExRUVBOTY2NzM0MDRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaVI4wDQYJKoZIhvcNAQEL
BQADggEBAB9TfNonlI1MYaiS3rwpYf3Hz2xtW3wPVrRR3E3+ImdyRLzU40D0k+Be
Ew2fgp/r69YwYeS0RgasmXpTPXUL5hdz7aVQQxPXGjwV/iSXQICduAe1595U7Q2G
fTTKoH41I5JDug1ujMxM+DnR/8JMCwayYd4WXrxomDE7PZM/tGMbUBpSM8mlc2vN
nA3+q3M8ncQAE4gfl9LXXBb2RMh/lEU0IESilM6yV2QINlcLqxzUAnuaKzOp2U3f
MFpF1DuwD1qf5Lf/ndhVV2Ic1ox6AmxxN0w8UY49KrepzKiqztTDY9FRyzU9M755
jYXAwKQ7EltObsqHgJwm/GkKwG5R8WA=
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:11 2024 by rpki-client on console-ams.rpki-client.org