Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/89CA72BCFB8711ED815FD5824AD9E6FC.roa
File: 89CA72BCFB8711ED815FD5824AD9E6FC.roa (raw, json)
Hash identifier: MkFRd4RpNRhMuNo+UwL89s9AK4qcJmOmkH0SwGLmaj8=
Subject key identifier: 01:2D:61:94:E1:57:AE:F3:8A:3E:84:CD:1C:B7:F9:C0:6B:1B:9B:CC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2800
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/89CA72BCFB8711ED815FD5824AD9E6FC.roa
Signing time: Fri 26 May 2023 05:38:27 +0000
ROA not before: Fri 26 May 2023 05:38:23 +0000
ROA not after: Sun 30 Jun 2024 05:38:23 +0000
asID: 984
IP address blocks: 154.83.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10240 (0x2800)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 26 05:38:23 2023 GMT
Not After : Jun 30 05:38:23 2024 GMT
Subject: CN=647045d3-0f08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:0c:0b:4a:1c:28:c1:d6:ac:3d:59:f7:88:00:
74:e5:84:26:68:07:f6:e9:c2:8d:81:4e:52:3a:08:
24:c6:32:53:8d:48:a0:1f:d4:04:16:04:13:e1:51:
bd:0f:ac:fa:5c:7f:44:10:b9:89:36:0c:89:8c:da:
4a:63:02:6c:d5:47:61:14:8e:17:f5:57:fe:f9:0f:
0a:58:a7:85:54:36:fa:dd:b2:4a:95:4f:5e:ea:1e:
a2:fa:1f:b5:1a:a8:5b:5b:68:94:07:be:6e:56:02:
68:59:de:b4:43:fa:dd:3d:a3:c7:33:d2:22:21:df:
9b:d7:88:06:ce:ce:06:03:94:5a:70:b0:f2:98:32:
ee:97:80:7d:73:1c:2e:a7:29:31:13:75:0b:0b:4e:
05:89:19:2e:72:31:6b:e7:80:8e:0a:56:e3:bf:1c:
bc:b6:4a:fe:26:d8:ba:57:f2:51:94:dc:8d:ff:7a:
05:55:d5:40:c1:1e:12:cb:01:00:99:a9:c5:be:d7:
d6:ed:b6:9d:bb:09:74:cb:d5:59:b4:4c:81:ed:af:
f4:e1:d3:a1:59:57:21:a3:51:f6:6d:79:df:35:dc:
5f:48:74:dd:d5:39:3d:f9:b3:2b:95:c5:c4:34:6c:
bb:74:fe:c8:59:2e:48:b4:3c:ef:c9:da:85:df:a3:
c9:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:2D:61:94:E1:57:AE:F3:8A:3E:84:CD:1C:B7:F9:C0:6B:1B:9B:CC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/89CA72BCFB8711ED815FD5824AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.64.0/18
Signature Algorithm: sha256WithRSAEncryption
7b:2d:d8:ab:b8:6e:cc:4c:ed:3d:09:75:6b:a7:4a:1a:d3:14:
0d:53:0a:9c:d3:41:84:e0:0f:0a:95:a7:c4:32:d5:43:29:36:
d4:25:85:4b:49:55:50:92:1b:a0:8d:61:35:58:84:d2:83:64:
4d:8a:de:a3:ef:dc:d0:44:cf:09:58:a3:cc:df:dc:90:03:4f:
b4:f3:48:a1:da:74:7b:ab:2c:b0:fb:f8:b3:0c:2a:28:fb:8f:
d2:6f:12:68:62:f1:fe:a4:f2:ab:59:fe:dd:2b:fd:d9:51:76:
c2:1c:e4:96:d5:1d:d3:50:e1:62:23:81:e6:4a:f2:c3:71:49:
b9:18:fc:48:1d:de:6b:cb:f6:c5:89:63:57:97:a8:c0:97:a5:
f5:7d:41:d3:70:b5:1e:0a:17:f1:c3:d8:5c:85:fb:e5:a3:53:
92:1a:96:02:09:67:2d:45:27:e4:dd:dd:1c:f6:15:cf:86:63:
d1:c1:28:ca:f2:99:05:ad:77:18:82:6c:22:e7:7b:24:01:b0:
06:c9:2b:e4:84:f7:3c:ba:5a:95:10:15:c4:c8:54:5a:9a:5e:
f9:28:28:54:9e:97:5d:f4:5a:4f:d6:a2:f1:36:06:1f:e7:d0:
5f:c1:84:1e:52:4b:eb:3d:f7:22:d9:58:3f:75:5a:6d:e2:a1:
1f:84:c1:fb
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICKAAwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA1MjYwNTM4MjNaFw0yNDA2MzAwNTM4MjNaMBgxFjAU
BgNVBAMTDTY0NzA0NWQzLTBmMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDjDAtKHCjB1qw9WfeIAHTlhCZoB/bpwo2BTlI6CCTGMlONSKAf1AQWBBPh
Ub0PrPpcf0QQuYk2DImM2kpjAmzVR2EUjhf1V/75DwpYp4VUNvrdskqVT17qHqL6
H7UaqFtbaJQHvm5WAmhZ3rRD+t09o8cz0iIh35vXiAbOzgYDlFpwsPKYMu6XgH1z
HC6nKTETdQsLTgWJGS5yMWvngI4KVuO/HLy2Sv4m2LpX8lGU3I3/egVV1UDBHhLL
AQCZqcW+19bttp27CXTL1Vm0TIHtr/Th06FZVyGjUfZted813F9IdN3VOT35syuV
xcQ0bLt0/shZLki0PO/J2oXfo8kVAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUAS1h
lOFXrvOKPoTNHLf5wGsbm8wwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4Lzg5Q0E3MkJDRkI4NzExRUQ4MTVGRDU4MjRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAaaU0AwDQYJKoZIhvcNAQEL
BQADggEBAHst2Ku4bsxM7T0JdWunShrTFA1TCpzTQYTgDwqVp8Qy1UMpNtQlhUtJ
VVCSG6CNYTVYhNKDZE2K3qPv3NBEzwlYo8zf3JADT7TzSKHadHurLLD7+LMMKij7
j9JvEmhi8f6k8qtZ/t0r/dlRdsIc5JbVHdNQ4WIjgeZK8sNxSbkY/Egd3mvL9sWJ
Y1eXqMCXpfV9QdNwtR4KF/HD2FyF++WjU5IalgIJZy1FJ+Td3Rz2Fc+GY9HBKMry
mQWtdxiCbCLneyQBsAbJK+SE9zy6WpUQFcTIVFqaXvkoKFSel130Wk/WovE2Bh/n
0F/BhB5SS+s99yLZWD91Wm3ioR+Ewfs=
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:14 2024 by rpki-client on console-ams.rpki-client.org