Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7A20B43AF7C011EEBA65012A017001B1.roa
File: 7A20B43AF7C011EEBA65012A017001B1.roa (raw, json)
Hash identifier: ehEadx9ffLpoMvH2whQnWUDPcgweKQep6CDD8iHuX20=
Subject key identifier: 9C:DC:13:65:96:18:D7:DF:1B:CD:D9:CD:AA:9E:84:F7:F8:DE:8E:61
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB27
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7A20B43AF7C011EEBA65012A017001B1.roa
Signing time: Thu 11 Apr 2024 05:00:55 +0000
ROA not before: Thu 11 Apr 2024 05:00:52 +0000
ROA not after: Sun 19 May 2024 05:00:52 +0000
asID: 138915
IP address blocks: 154.93.48.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43815 (0xab27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 11 05:00:52 2024 GMT
Not After : May 19 05:00:52 2024 GMT
Subject: CN=66176e87-9d12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a8:42:1b:4f:14:a3:b6:47:c7:5b:f6:7a:ec:
f3:62:e2:df:f9:14:32:d9:8d:5b:37:1a:cd:d2:a9:
f0:2d:a8:55:04:8e:23:a6:0f:9d:c5:32:50:c8:70:
38:1c:aa:28:de:e9:ce:f9:a7:2d:23:ee:0f:92:16:
81:23:ed:fd:e5:fd:e7:d5:0b:2a:f9:ab:95:69:5c:
17:7f:12:7b:8a:86:d0:c6:95:ae:1d:d6:0d:b5:ba:
07:3c:53:61:70:89:46:91:c7:32:5c:50:6c:17:a5:
80:ea:94:af:66:fb:f1:56:1f:a6:1a:f2:45:44:6b:
30:9d:3d:2f:2b:26:e2:9c:10:2d:9c:94:14:3b:ed:
c5:9a:13:84:67:fc:10:64:a8:89:82:fe:bb:eb:66:
ca:ba:c1:33:cc:58:29:99:e9:38:60:83:c7:de:60:
7a:70:ec:49:5f:31:04:fa:fd:0d:24:88:e1:18:35:
dc:b2:9d:da:86:cf:1e:ff:dd:46:42:e6:87:1d:62:
a4:a7:d5:ae:10:6b:1e:f0:89:e1:91:4f:f8:6d:40:
d2:2a:67:fa:9f:35:0b:c2:af:ce:ee:cf:de:18:e3:
93:b6:2b:2a:fc:59:42:54:67:d4:ed:ea:bc:b1:6e:
c3:1d:bf:4a:e9:8b:f4:09:68:9c:20:a9:5b:10:76:
cb:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:DC:13:65:96:18:D7:DF:1B:CD:D9:CD:AA:9E:84:F7:F8:DE:8E:61
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7A20B43AF7C011EEBA65012A017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.48.0/24
Signature Algorithm: sha256WithRSAEncryption
72:f8:b2:56:62:1c:95:d4:62:d4:99:be:c1:8e:3f:1d:57:6b:
6c:df:d0:0f:25:d0:bb:f0:32:ce:76:37:ef:3f:d1:4f:75:14:
60:7a:d5:3a:11:df:f3:91:85:0d:7c:78:13:ab:a1:cd:df:d9:
be:d5:6b:2d:61:6b:f3:79:b2:e9:cc:f4:4e:59:ec:10:02:b4:
cd:e2:cf:61:6b:d3:a3:b9:52:a9:07:58:59:09:16:7a:c6:01:
88:e5:fb:b6:99:25:e8:1e:92:d8:2c:d8:09:c5:03:8c:76:6d:
9c:db:20:e8:8c:b7:c3:e5:01:29:46:16:c5:84:12:a5:4f:7c:
0f:0d:9f:d7:05:98:a6:f2:44:80:49:ff:37:77:1a:dc:87:0b:
ee:3a:ec:07:c9:35:63:45:bb:18:a1:85:f2:8c:f4:6d:b7:08:
fc:c3:0a:d8:9f:90:5a:ed:ab:91:87:05:ed:1c:91:df:95:dc:
d2:79:ea:2c:2a:31:84:e1:03:32:d0:7d:9a:fa:3f:b1:ab:d1:
b4:df:e9:4a:3d:ef:d6:c4:92:16:5e:75:ab:7a:ae:28:8f:a5:
05:13:a6:63:4b:15:2c:bf:e8:83:67:2f:70:da:38:80:00:4c:
ed:51:c2:30:7a:45:a2:8f:c5:4f:d0:03:06:fc:3a:0f:d6:c4:
57:39:55:db
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKsnMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDExMDUwMDUyWhcNMjQwNTE5MDUwMDUyWjAYMRYw
FAYDVQQDEw02NjE3NmU4Ny05ZDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuqhCG08Uo7ZHx1v2euzzYuLf+RQy2Y1bNxrN0qnwLahVBI4jpg+dxTJQ
yHA4HKoo3unO+actI+4PkhaBI+395f3n1Qsq+auVaVwXfxJ7iobQxpWuHdYNtboH
PFNhcIlGkccyXFBsF6WA6pSvZvvxVh+mGvJFRGswnT0vKybinBAtnJQUO+3FmhOE
Z/wQZKiJgv6762bKusEzzFgpmek4YIPH3mB6cOxJXzEE+v0NJIjhGDXcsp3ahs8e
/91GQuaHHWKkp9WuEGse8InhkU/4bUDSKmf6nzULwq/O7s/eGOOTtisq/FlCVGfU
7eq8sW7DHb9K6Yv0CWicIKlbEHbLFwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJzc
E2WWGNffG83ZzaqehPf43o5hMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83QTIwQjQzQUY3QzAxMUVFQkE2NTAxMkEwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml0wMA0GCSqGSIb3DQEB
CwUAA4IBAQBy+LJWYhyV1GLUmb7Bjj8dV2ts39APJdC78DLOdjfvP9FPdRRgetU6
Ed/zkYUNfHgTq6HN39m+1WstYWvzebLpzPROWewQArTN4s9ha9OjuVKpB1hZCRZ6
xgGI5fu2mSXoHpLYLNgJxQOMdm2c2yDojLfD5QEpRhbFhBKlT3wPDZ/XBZim8kSA
Sf83dxrchwvuOuwHyTVjRbsYoYXyjPRttwj8wwrYn5Ba7auRhwXtHJHfldzSeeos
KjGE4QMy0H2a+j+xq9G03+lKPe/WxJIWXnWreq4oj6UFE6ZjSxUsv+iDZy9w2jiA
AEztUcIwekWij8VP0AMG/DoP1sRXOVXb
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:13 2024 by rpki-client on console-ams.rpki-client.org