Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8C4182F2F48811EDBFB0953B4AD9E6FC.roa
File: 8C4182F2F48811EDBFB0953B4AD9E6FC.roa (raw, json)
Hash identifier: h7ywOsDXskXXQQq20n6z9+KxjS0hVcg1rrRNCy0mA+Q=
Subject key identifier: 0F:79:BA:F1:C1:ED:DE:31:CC:F7:14:1E:7A:4D:78:49:DC:69:CD:5D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 24E1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8C4182F2F48811EDBFB0953B4AD9E6FC.roa
Signing time: Wed 17 May 2023 07:58:02 +0000
ROA not before: Wed 31 May 2023 07:57:58 +0000
ROA not after: Tue 21 May 2024 07:57:58 +0000
asID: 137510
IP address blocks: 154.205.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9441 (0x24e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 31 07:57:58 2023 GMT
Not After : May 21 07:57:58 2024 GMT
Subject: CN=6464890a-92f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:48:78:4b:3c:a2:f4:16:b0:48:9c:f4:1b:e4:
7c:ae:d2:00:60:d4:e8:ba:91:e1:f1:cd:99:7c:32:
42:38:c3:6b:74:00:94:57:e1:b0:62:e8:fd:6d:c7:
a6:7a:73:07:02:b0:fd:12:41:ef:fa:4e:7a:bc:37:
dd:84:35:eb:15:47:2c:c2:ae:43:55:58:1e:13:7c:
aa:a5:fc:25:fe:61:54:8d:79:87:44:24:01:6f:93:
83:3c:19:c1:2d:33:64:23:b2:81:61:39:c2:21:7c:
c7:ab:8c:81:c2:f1:d2:3c:f8:f5:f8:5c:97:37:e0:
4e:31:4e:a3:c8:f9:04:1e:b7:4b:88:91:ae:44:3b:
ed:9c:b3:ab:87:1b:02:a1:d2:3b:56:7b:fa:a6:ed:
59:17:5d:38:5f:61:33:c8:00:0d:ac:df:37:82:b9:
d1:81:65:66:76:ac:8c:df:3c:21:29:2b:24:f5:48:
e9:9b:37:bc:6a:7c:27:19:88:ca:1e:86:3a:17:84:
54:8b:ed:09:6b:68:e2:e0:12:96:23:0c:67:0f:44:
4a:df:63:f6:69:4d:3d:91:97:e8:67:6d:1b:5a:ce:
44:59:56:30:23:cf:e0:0c:13:7c:65:8e:b2:e2:92:
b6:14:c9:81:a9:8c:20:27:83:a5:0c:cc:4c:ee:6b:
31:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:79:BA:F1:C1:ED:DE:31:CC:F7:14:1E:7A:4D:78:49:DC:69:CD:5D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8C4182F2F48811EDBFB0953B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.187.0/24
Signature Algorithm: sha256WithRSAEncryption
75:7c:cd:85:d2:03:f9:34:b9:6d:a0:32:00:56:ba:e5:2a:8f:
83:ab:a5:92:62:b4:29:95:b6:3e:19:f0:8f:a2:c2:9a:0a:e4:
62:59:d9:79:13:e8:62:ca:1a:73:12:29:d5:91:52:47:20:4b:
08:3d:1c:a5:87:46:d7:15:2e:e9:30:6d:51:f3:d2:2f:35:21:
36:d9:df:ef:24:9c:b0:19:76:84:09:03:a6:f9:4c:27:0d:d3:
d6:5a:0d:cb:dd:20:e5:d4:50:68:71:8c:6d:30:04:88:88:fc:
76:49:80:c0:d6:a4:ca:9f:ac:50:fd:aa:bb:13:71:78:d3:e2:
6f:8a:bb:2b:c9:dc:09:48:80:68:a2:47:29:9f:66:dd:0f:00:
2e:47:51:87:5c:ae:2b:92:72:c8:b2:76:c1:02:54:a1:10:bc:
79:98:7a:28:93:f4:7b:ad:0f:bc:9e:a1:4a:db:03:fa:8f:70:
c9:f7:de:c5:e2:fb:16:5d:08:04:9a:bf:ed:80:92:ed:47:a3:
8c:dc:78:cc:7c:1f:14:e2:ea:32:66:a8:17:af:d8:27:9a:9c:
81:21:b2:a8:28:7b:88:52:6e:35:3e:82:35:6b:eb:db:cc:44:
6a:74:5f:06:01:c5:1c:c3:f0:43:83:8c:1a:ed:b8:e1:f9:81:
4c:c7:6b:e2
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICJOEwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA1MzEwNzU3NThaFw0yNDA1MjEwNzU3NThaMBgxFjAU
BgNVBAMTDTY0NjQ4OTBhLTkyZjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDWSHhLPKL0FrBInPQb5Hyu0gBg1Oi6keHxzZl8MkI4w2t0AJRX4bBi6P1t
x6Z6cwcCsP0SQe/6Tnq8N92ENesVRyzCrkNVWB4TfKql/CX+YVSNeYdEJAFvk4M8
GcEtM2QjsoFhOcIhfMerjIHC8dI8+PX4XJc34E4xTqPI+QQet0uIka5EO+2cs6uH
GwKh0jtWe/qm7VkXXThfYTPIAA2s3zeCudGBZWZ2rIzfPCEpKyT1SOmbN7xqfCcZ
iMoehjoXhFSL7QlraOLgEpYjDGcPRErfY/ZpTT2Rl+hnbRtazkRZVjAjz+AME3xl
jrLikrYUyYGpjCAng6UMzEzuazEfAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUD3m6
8cHt3jHM9xQeek14SdxpzV0wHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzhDNDE4MkYyRjQ4ODExRURCRkIwOTUzQjRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACazbswDQYJKoZIhvcNAQEL
BQADggEBAHV8zYXSA/k0uW2gMgBWuuUqj4OrpZJitCmVtj4Z8I+iwpoK5GJZ2XkT
6GLKGnMSKdWRUkcgSwg9HKWHRtcVLukwbVHz0i81ITbZ3+8knLAZdoQJA6b5TCcN
09ZaDcvdIOXUUGhxjG0wBIiI/HZJgMDWpMqfrFD9qrsTcXjT4m+KuyvJ3AlIgGii
RymfZt0PAC5HUYdcriuScsiydsECVKEQvHmYeiiT9HutD7yeoUrbA/qPcMn33sXi
+xZdCASav+2Aku1Ho4zceMx8HxTi6jJmqBev2CeanIEhsqgoe4hSbjU+gjVr69vM
RGp0XwYBxRzD8EODjBrtuOH5gUzHa+I=
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:31 2024 by rpki-client on console-fra.rpki-client.org