Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/831E91EC53A111EE910B74644AD9E6FC.roa
File: 831E91EC53A111EE910B74644AD9E6FC.roa (raw, json)
Hash identifier: x8txkxI3iBLVo6sB40VOviUHwGm9Mredc+jUrVr6e04=
Subject key identifier: 7C:DE:D0:8B:2A:4E:94:99:F6:3D:98:48:00:54:52:74:C6:65:21:2B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3D91
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/831E91EC53A111EE910B74644AD9E6FC.roa
Signing time: Fri 15 Sep 2023 08:26:05 +0000
ROA not before: Fri 15 Sep 2023 08:26:02 +0000
ROA not after: Sat 08 Jun 2024 08:26:02 +0000
asID: 142403
IP address blocks: 154.221.22.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15761 (0x3d91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 08:26:02 2023 GMT
Not After : Jun 8 08:26:02 2024 GMT
Subject: CN=6504151d-edf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:af:17:c9:5f:67:61:2b:2f:06:96:f5:78:86:
57:d9:01:b1:ac:95:c8:dd:95:a9:99:5b:8b:c4:ee:
9c:91:8c:54:f1:72:bb:e2:ba:d3:7d:77:39:da:63:
4e:83:97:c6:1e:7a:59:28:58:64:fa:c7:49:cf:75:
af:2c:bd:b2:70:7d:1f:b6:bd:ed:da:2a:3e:e6:cb:
0f:16:cd:ad:6a:5c:d5:b9:47:42:b8:0c:4e:9f:37:
25:09:cd:37:17:15:4f:3c:49:2f:39:ab:63:6d:73:
86:b4:7e:88:1b:80:9f:69:5a:e3:89:54:e2:d2:17:
56:31:d3:c2:12:84:f2:98:2f:76:7e:71:68:37:d3:
46:55:92:67:18:f1:da:cb:5a:71:fe:0d:69:e7:78:
ab:23:6a:dd:c0:71:0d:cf:f9:13:c6:37:8f:00:30:
70:d7:3b:b4:ab:7d:cf:78:61:0d:ac:bf:93:84:0c:
47:d4:e1:24:e6:d2:fa:f6:58:47:21:86:a1:b1:3d:
fb:c9:6d:c5:65:44:fa:39:7f:7e:5e:90:e1:7c:ff:
cd:29:3a:37:5a:d9:00:ec:c4:e7:37:cc:7a:49:00:
75:28:bc:88:34:00:17:3f:b8:28:98:4f:25:d4:d7:
39:60:f9:c4:31:d4:47:f7:0b:2f:23:e9:45:b3:ab:
c3:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:DE:D0:8B:2A:4E:94:99:F6:3D:98:48:00:54:52:74:C6:65:21:2B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/831E91EC53A111EE910B74644AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.22.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:d6:24:e9:7b:fa:7e:d2:83:99:e2:d8:1a:9e:b3:50:a5:4f:
db:09:7e:dd:7e:95:1d:8a:b7:67:2b:3f:20:ef:5e:63:61:22:
90:a3:1d:4e:6f:ae:68:03:73:26:d4:11:ec:76:c6:e8:ab:14:
f3:ad:57:68:f2:5c:03:aa:76:d1:85:34:95:e4:6d:0b:5a:46:
9b:53:2c:88:91:fb:8c:1b:e5:36:f9:0b:7d:12:20:ce:23:44:
d0:1c:fd:f5:36:0b:a6:6e:5d:74:b4:24:7a:80:2a:51:6e:e5:
1d:8e:1b:9f:8b:6f:5d:6b:27:d6:13:3d:d5:75:05:d0:49:d7:
b9:44:ed:54:28:2c:ab:52:7f:ba:96:b7:70:99:bc:b3:6f:32:
78:1b:6b:ee:75:6c:07:8d:59:43:4d:50:47:df:0b:38:4a:57:
65:26:95:95:d9:1a:33:d9:a7:dd:34:0e:b9:06:28:3d:01:d8:
7f:10:13:e0:43:ea:0d:ff:37:f6:f5:9d:d4:73:23:30:1d:80:
52:67:8a:11:fd:ec:7f:4c:10:90:ff:c7:bb:8e:a4:44:55:92:
58:dc:15:91:5a:de:a9:d6:4d:e6:8a:78:e5:de:7e:df:c1:55:
5c:66:eb:7b:73:70:9a:ac:b7:a0:3e:27:c9:2a:78:5d:d0:f9:
8a:2a:e2:a0
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICPZEwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA5MTUwODI2MDJaFw0yNDA2MDgwODI2MDJaMBgxFjAU
BgNVBAMTDTY1MDQxNTFkLWVkZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC2rxfJX2dhKy8GlvV4hlfZAbGslcjdlamZW4vE7pyRjFTxcrviutN9dzna
Y06Dl8YeelkoWGT6x0nPda8svbJwfR+2ve3aKj7myw8Wza1qXNW5R0K4DE6fNyUJ
zTcXFU88SS85q2Ntc4a0fogbgJ9pWuOJVOLSF1Yx08IShPKYL3Z+cWg300ZVkmcY
8drLWnH+DWnneKsjat3AcQ3P+RPGN48AMHDXO7Srfc94YQ2sv5OEDEfU4STm0vr2
WEchhqGxPfvJbcVlRPo5f35ekOF8/80pOjda2QDsxOc3zHpJAHUovIg0ABc/uCiY
TyXU1zlg+cQx1Ef3Cy8j6UWzq8MLAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUfN7Q
iypOlJn2PZhIAFRSdMZlISswHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzgzMUU5MUVDNTNBMTExRUU5MTBCNzQ2NDRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACa3RYwDQYJKoZIhvcNAQEL
BQADggEBAKjWJOl7+n7Sg5ni2Bqes1ClT9sJft1+lR2Kt2crPyDvXmNhIpCjHU5v
rmgDcybUEex2xuirFPOtV2jyXAOqdtGFNJXkbQtaRptTLIiR+4wb5Tb5C30SIM4j
RNAc/fU2C6ZuXXS0JHqAKlFu5R2OG5+Lb11rJ9YTPdV1BdBJ17lE7VQoLKtSf7qW
t3CZvLNvMngba+51bAeNWUNNUEffCzhKV2UmlZXZGjPZp900DrkGKD0B2H8QE+BD
6g3/N/b1ndRzIzAdgFJnihH97H9MEJD/x7uOpERVkljcFZFa3qnWTeaKeOXeft/B
VVxm63tzcJqst6A+J8kqeF3Q+Yoq4qA=
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:14 2024 by rpki-client on console-ams.rpki-client.org