Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7FD0D1D2E75111EEB4CBBB99775412E6.roa
File: 7FD0D1D2E75111EEB4CBBB99775412E6.roa (raw, json)
Hash identifier: ffVnQ28n+oLtvIqwxQUkDraD2cBwI4AlN0ohDZZAeL0=
Subject key identifier: 84:A5:B3:3F:BD:A4:1E:88:30:35:53:7A:7F:BE:AD:EB:46:FC:75:C3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A475
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7FD0D1D2E75111EEB4CBBB99775412E6.roa
Signing time: Thu 21 Mar 2024 07:06:12 +0000
ROA not before: Thu 21 Mar 2024 07:06:08 +0000
ROA not after: Tue 23 Apr 2024 07:06:08 +0000
asID: 44559
IP address blocks: 154.218.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42101 (0xa475)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 07:06:08 2024 GMT
Not After : Apr 23 07:06:08 2024 GMT
Subject: CN=65fbdc64-1857
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9a:8e:30:ec:a7:00:c0:f1:2f:67:85:32:f2:
6e:af:23:76:b1:71:52:4f:cb:72:f7:0b:0f:49:5d:
ad:a3:9c:d0:1c:a2:d1:f4:b0:5c:6c:83:51:85:f0:
21:4a:5d:bb:a9:02:eb:c5:5d:9f:d9:4b:bc:a6:dc:
c7:fc:70:27:40:79:ca:bc:00:cc:10:8f:c9:51:fb:
a9:bf:5b:7c:8e:2b:94:ea:5f:01:87:95:6b:1b:06:
dc:f3:a3:4a:40:5b:fb:d2:93:46:60:cd:61:d0:d6:
88:4a:cc:fc:3b:34:ac:e4:33:77:0e:72:31:91:3c:
eb:43:1d:59:cc:37:a5:48:1e:12:d1:66:75:bb:a2:
e8:01:62:44:f2:69:94:fb:f4:57:61:82:12:ba:1b:
a8:15:d2:b6:28:d0:8b:33:66:dc:39:da:9c:ba:f1:
71:20:98:7a:98:b8:d5:74:cd:82:73:5a:9f:a9:24:
02:9c:1c:30:a1:2c:82:1e:b0:75:61:e5:7f:0e:d8:
00:26:ed:f6:31:63:01:69:3b:72:cb:c9:0f:b8:fb:
f2:37:25:e0:1e:89:72:e4:50:c2:df:b4:ff:7f:02:
7c:e6:1c:41:6f:a9:f0:b0:25:bb:ac:d5:14:46:a4:
be:c0:d7:f4:0f:83:b3:d4:ca:c2:b6:93:61:30:06:
ff:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:A5:B3:3F:BD:A4:1E:88:30:35:53:7A:7F:BE:AD:EB:46:FC:75:C3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7FD0D1D2E75111EEB4CBBB99775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.62.0/24
Signature Algorithm: sha256WithRSAEncryption
40:45:13:22:3a:80:4b:fd:af:e9:a3:64:16:a1:52:f5:7a:7a:
92:e6:e6:d3:8b:b4:76:f8:45:4a:36:eb:1b:fe:ec:fc:07:37:
5b:42:ae:1c:47:d5:d1:68:3f:d1:ea:76:86:d8:8c:f6:e0:95:
18:bd:b2:f6:03:e4:82:ac:0e:24:69:ed:16:25:85:a0:23:11:
23:fb:27:c0:e8:69:1b:a6:28:a1:12:0f:09:bf:e0:62:bd:ea:
23:da:cc:19:e6:07:73:d8:61:37:78:5b:78:d2:0d:5d:a4:05:
d2:0f:0d:5b:6b:db:b4:8f:0f:8b:34:db:9c:43:ef:14:e4:70:
44:0d:04:2d:49:e2:90:18:84:fe:f8:5a:26:5a:aa:7d:a9:41:
15:c2:43:f5:f2:67:cc:6e:2f:5b:ca:8c:8c:3a:de:a9:70:b2:
8f:d4:80:c9:cd:5e:c1:1e:80:ec:8b:01:4a:20:a8:b6:76:5d:
2c:f1:6f:93:7e:a0:98:6b:84:d3:78:a4:25:b4:a9:d7:2e:8b:
cf:b8:b1:22:40:f4:be:fe:e8:ff:cb:6e:c5:1f:b0:a4:ef:c5:
c1:34:d0:fd:39:17:bc:54:f1:dc:de:1e:22:53:09:44:c9:34:
e9:83:57:cc:f1:cc:ca:50:5e:b6:76:ca:3b:91:c0:39:f9:f4:
7a:17:15:e9
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKR1MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMDcwNjA4WhcNMjQwNDIzMDcwNjA4WjAYMRYw
FAYDVQQDEw02NWZiZGM2NC0xODU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAr5qOMOynAMDxL2eFMvJuryN2sXFST8ty9wsPSV2to5zQHKLR9LBcbINR
hfAhSl27qQLrxV2f2Uu8ptzH/HAnQHnKvADMEI/JUfupv1t8jiuU6l8Bh5VrGwbc
86NKQFv70pNGYM1h0NaISsz8OzSs5DN3DnIxkTzrQx1ZzDelSB4S0WZ1u6LoAWJE
8mmU+/RXYYISuhuoFdK2KNCLM2bcOdqcuvFxIJh6mLjVdM2Cc1qfqSQCnBwwoSyC
HrB1YeV/DtgAJu32MWMBaTtyy8kPuPvyNyXgHoly5FDC37T/fwJ85hxBb6nwsCW7
rNUURqS+wNf0D4Oz1MrCtpNhMAb/rQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFISl
sz+9pB6IMDVTen++retG/HXDMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83RkQwRDFEMkU3NTExMUVFQjRDQkJCOTk3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmto+MA0GCSqGSIb3DQEB
CwUAA4IBAQBARRMiOoBL/a/po2QWoVL1enqS5ubTi7R2+EVKNusb/uz8BzdbQq4c
R9XRaD/R6naG2Iz24JUYvbL2A+SCrA4kae0WJYWgIxEj+yfA6GkbpiihEg8Jv+Bi
veoj2swZ5gdz2GE3eFt40g1dpAXSDw1ba9u0jw+LNNucQ+8U5HBEDQQtSeKQGIT+
+FomWqp9qUEVwkP18mfMbi9byoyMOt6pcLKP1IDJzV7BHoDsiwFKIKi2dl0s8W+T
fqCYa4TTeKQltKnXLovPuLEiQPS+/uj/y27FH7Ck78XBNND9ORe8VPHc3h4iUwlE
yTTpg1fM8czKUF62dso7kcA5+fR6FxXp
-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:23 2024 by rpki-client on console-ams.rpki-client.org