Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B3B5388EFF111EE92E48498775412E6.roa
File: 7B3B5388EFF111EE92E48498775412E6.roa (raw, json)
Hash identifier: A9UPpLDCk85jnGyV6dcI9w00wQ9sEqlFKLSMNkXdyn4=
Subject key identifier: 23:EC:ED:6E:DE:17:EC:65:9C:42:D6:08:20:6D:DD:85:8E:96:17:74
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A7C0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B3B5388EFF111EE92E48498775412E6.roa
Signing time: Mon 01 Apr 2024 06:31:33 +0000
ROA not before: Mon 01 Apr 2024 06:31:29 +0000
ROA not after: Tue 07 May 2024 06:31:29 +0000
asID: 138915
IP address blocks: 154.223.58.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42944 (0xa7c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 06:31:29 2024 GMT
Not After : May 7 06:31:29 2024 GMT
Subject: CN=660a54c5-e676
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c6:89:ed:0b:d8:f2:81:67:d2:23:2a:b9:9f:
2d:e8:23:5b:74:e4:33:93:6a:f2:d0:d3:10:af:02:
84:a2:db:32:84:f8:97:87:19:08:31:e8:ce:1d:3a:
03:0d:5f:d5:e9:a8:af:59:21:23:39:c4:46:f9:65:
91:27:b9:7f:54:d7:72:93:0a:85:fd:4a:a4:2c:cd:
d4:f6:9e:0a:5f:aa:65:f8:1b:ee:87:03:02:61:06:
d5:9e:f2:f2:f1:07:72:d6:de:f7:a9:bf:95:26:b2:
8d:23:91:93:36:6b:8b:e3:b4:a9:6c:a1:72:e6:47:
cb:7f:1e:88:de:2d:27:08:83:06:fd:6a:93:61:37:
99:e5:69:35:b7:c1:12:ff:62:26:b1:f7:3f:27:6c:
ed:ca:d1:08:f9:70:03:f5:ed:75:c1:42:fc:4d:d1:
76:b3:8d:8f:96:6f:06:d3:e0:0d:db:59:6c:68:3e:
d6:aa:68:fc:59:35:8e:93:b8:09:75:42:01:8f:bf:
57:10:91:64:27:a6:aa:95:95:ed:e5:d4:67:03:a7:
c6:95:8b:86:dc:d3:a3:cc:01:fb:32:03:c5:d9:0b:
91:ed:13:b4:bb:d3:54:b3:aa:10:a4:47:0b:83:6e:
d9:70:5a:da:59:94:b7:0c:35:f7:f5:28:99:00:b8:
a8:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:EC:ED:6E:DE:17:EC:65:9C:42:D6:08:20:6D:DD:85:8E:96:17:74
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B3B5388EFF111EE92E48498775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.58.0/23
Signature Algorithm: sha256WithRSAEncryption
20:de:bc:70:c9:f8:0d:fa:f2:ba:dc:36:90:7c:20:45:f9:11:
02:30:27:05:92:87:95:ba:bf:03:3c:d9:aa:fb:4b:2e:5a:12:
31:65:66:ec:de:6c:5d:ae:eb:a3:2e:60:0e:af:14:d4:b6:ac:
40:fd:3b:ee:63:4e:a9:64:58:9a:42:cc:50:36:5c:3d:e7:3c:
4b:fc:1f:14:d7:c3:00:63:01:75:09:ee:ae:a3:64:25:76:bb:
d8:1f:99:d5:4a:64:9a:12:e1:61:a9:fb:41:08:fb:e6:a4:30:
20:fa:70:ba:b2:d0:2b:ea:e1:98:1c:4d:fe:c4:ed:fd:6b:34:
57:29:95:79:ca:79:4b:45:07:19:7d:75:92:fb:49:8a:57:02:
f6:e8:c5:93:0d:78:b1:f8:92:1c:62:33:88:c6:fb:99:7f:3c:
0a:6f:43:1f:65:76:93:d7:99:6e:e8:76:74:71:c6:eb:e8:76:
30:57:68:b4:1f:50:69:19:6d:6a:ee:61:08:38:1b:a9:f7:15:
d2:75:b1:76:6b:93:1d:f8:e2:83:7c:30:07:be:4d:7d:5b:44:
e9:fd:b7:69:ea:7f:12:b4:d4:9c:59:7b:e4:78:20:85:dd:97:
76:cb:3d:aa:ff:27:c5:c0:5e:87:1a:b2:dd:42:02:29:a9:20:
45:a7:1f:04
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKfAMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDAxMDYzMTI5WhcNMjQwNTA3MDYzMTI5WjAYMRYw
FAYDVQQDEw02NjBhNTRjNS1lNjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0saJ7QvY8oFn0iMquZ8t6CNbdOQzk2ry0NMQrwKEotsyhPiXhxkIMejO
HToDDV/V6aivWSEjOcRG+WWRJ7l/VNdykwqF/UqkLM3U9p4KX6pl+BvuhwMCYQbV
nvLy8Qdy1t73qb+VJrKNI5GTNmuL47SpbKFy5kfLfx6I3i0nCIMG/WqTYTeZ5Wk1
t8ES/2Imsfc/J2ztytEI+XAD9e11wUL8TdF2s42Plm8G0+AN21lsaD7Wqmj8WTWO
k7gJdUIBj79XEJFkJ6aqlZXt5dRnA6fGlYuG3NOjzAH7MgPF2QuR7RO0u9NUs6oQ
pEcLg27ZcFraWZS3DDX39SiZALionwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCPs
7W7eF+xlnELWCCBt3YWOlhd0MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83QjNCNTM4OEVGRjExMUVFOTJFNDg0OTg3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmt86MA0GCSqGSIb3DQEB
CwUAA4IBAQAg3rxwyfgN+vK63DaQfCBF+RECMCcFkoeVur8DPNmq+0suWhIxZWbs
3mxdruujLmAOrxTUtqxA/TvuY06pZFiaQsxQNlw95zxL/B8U18MAYwF1Ce6uo2Ql
drvYH5nVSmSaEuFhqftBCPvmpDAg+nC6stAr6uGYHE3+xO39azRXKZV5ynlLRQcZ
fXWS+0mKVwL26MWTDXix+JIcYjOIxvuZfzwKb0MfZXaT15lu6HZ0ccbr6HYwV2i0
H1BpGW1q7mEIOBup9xXSdbF2a5Md+OKDfDAHvk19W0Tp/bdp6n8StNScWXvkeCCF
3Zd2yz2q/yfFwF6HGrLdQgIpqSBFpx8E
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:28 2024 by rpki-client on console-fra.rpki-client.org