Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8EF1F89EF7BE11EEBA2ECD18017001B1.roa
File: 8EF1F89EF7BE11EEBA2ECD18017001B1.roa (raw, json)
Hash identifier: bY77l9xHDptn/10dxyqwH8xetQMB7iPzQjwTEhUzmLQ=
Subject key identifier: 77:E1:8E:49:53:97:28:F5:D2:C6:80:40:92:21:13:25:5B:98:E3:48
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB13
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8EF1F89EF7BE11EEBA2ECD18017001B1.roa
Signing time: Thu 11 Apr 2024 04:47:11 +0000
ROA not before: Thu 11 Apr 2024 04:47:08 +0000
ROA not after: Sun 19 May 2024 04:47:08 +0000
asID: 138915
IP address blocks: 154.93.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43795 (0xab13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 11 04:47:08 2024 GMT
Not After : May 19 04:47:08 2024 GMT
Subject: CN=66176b4f-0508
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c2:ca:31:2c:6e:58:8f:61:66:79:24:94:57:
c2:14:4e:d6:90:5b:6c:de:d0:fd:09:4c:d1:84:4a:
f6:38:d1:ca:e0:99:c8:f3:f1:0e:27:2a:33:94:bc:
73:ef:1c:4f:f1:cd:36:1d:72:77:7d:0d:b7:32:e3:
83:43:17:a1:6a:8a:93:87:0c:da:c2:90:4f:ae:1e:
bd:81:84:3c:d9:c5:aa:26:33:82:1f:96:c8:0a:2e:
3b:79:1e:67:bf:5d:4b:43:b3:92:fd:a8:6f:ad:10:
a4:22:2d:40:92:2c:fd:7b:e6:60:8f:dd:b7:01:9b:
d7:45:11:dd:d2:5f:70:56:dc:03:92:6a:74:3d:ca:
d8:d2:af:1b:cf:45:8f:f7:c9:13:c6:7a:49:b8:3a:
d3:77:10:90:30:1e:88:e4:cc:0d:fd:a0:8c:f7:d5:
f1:60:44:aa:98:32:e3:ce:8d:c3:89:97:27:b8:73:
de:28:30:56:ec:c9:87:28:f3:37:55:b2:8b:69:47:
da:a9:b5:61:46:a2:27:29:1c:83:fc:fa:61:f4:bb:
7f:b0:6a:31:38:d1:2e:af:ce:03:9f:8a:e0:c2:1b:
52:96:52:bf:5f:12:53:5b:a3:02:3a:79:a9:5d:99:
c8:f8:20:93:53:d7:04:67:c1:f4:b6:88:29:a5:44:
d4:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:E1:8E:49:53:97:28:F5:D2:C6:80:40:92:21:13:25:5B:98:E3:48
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8EF1F89EF7BE11EEBA2ECD18017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.58.0/24
Signature Algorithm: sha256WithRSAEncryption
63:8f:4b:ca:ab:fd:ef:08:91:42:8f:0d:78:11:8e:2c:3f:2e:
18:bc:2b:1a:e6:d3:f4:1a:4c:a4:52:ed:0c:04:e0:ee:68:a8:
e0:30:7a:fd:48:1f:3d:c1:7b:64:35:71:e1:bf:36:44:03:d5:
f9:b1:da:1d:6f:41:ee:bc:d3:b5:eb:a1:b4:31:9c:cc:a8:70:
1a:90:d8:f1:f8:86:9e:37:8f:2b:ee:7c:7a:ab:db:aa:d3:6f:
3d:48:fd:31:32:0f:18:6a:97:5a:d2:98:fb:a5:8b:e0:e1:0b:
8a:51:c8:88:e4:6a:65:21:37:cf:0a:9f:83:82:15:30:1a:5e:
57:ee:5c:44:fd:db:0d:7e:c6:9a:3a:97:0f:b7:e0:d5:a1:98:
f8:17:8f:49:38:ff:16:ef:a2:e5:28:5d:11:27:70:2a:b5:49:
8d:9e:2e:e9:36:6f:5c:78:d8:b1:1f:0b:16:cc:3e:c0:5a:2e:
47:ee:a4:45:5b:78:84:40:7d:d3:72:54:19:e0:e9:a5:81:d0:
6d:33:34:a1:be:fc:4c:61:c1:18:cb:1e:6b:f3:3c:da:44:3c:
33:4d:79:b7:0d:23:47:73:3d:9e:29:6a:db:95:77:1c:52:4f:
89:e6:88:20:32:23:39:a5:5b:5e:b6:94:c5:15:ef:8b:e0:db:
44:86:52:75
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKsTMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDExMDQ0NzA4WhcNMjQwNTE5MDQ0NzA4WjAYMRYw
FAYDVQQDEw02NjE3NmI0Zi0wNTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArMLKMSxuWI9hZnkklFfCFE7WkFts3tD9CUzRhEr2ONHK4JnI8/EOJyoz
lLxz7xxP8c02HXJ3fQ23MuODQxehaoqThwzawpBPrh69gYQ82cWqJjOCH5bICi47
eR5nv11LQ7OS/ahvrRCkIi1Akiz9e+Zgj923AZvXRRHd0l9wVtwDkmp0PcrY0q8b
z0WP98kTxnpJuDrTdxCQMB6I5MwN/aCM99XxYESqmDLjzo3DiZcnuHPeKDBW7MmH
KPM3VbKLaUfaqbVhRqInKRyD/Pph9Lt/sGoxONEur84Dn4rgwhtSllK/XxJTW6MC
OnmpXZnI+CCTU9cEZ8H0togppUTUIwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHfh
jklTlyj10saAQJIhEyVbmONIMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84RUYxRjg5RUY3QkUxMUVFQkEyRUNEMTgwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml06MA0GCSqGSIb3DQEB
CwUAA4IBAQBjj0vKq/3vCJFCjw14EY4sPy4YvCsa5tP0GkykUu0MBODuaKjgMHr9
SB89wXtkNXHhvzZEA9X5sdodb0HuvNO166G0MZzMqHAakNjx+IaeN48r7nx6q9uq
0289SP0xMg8Yapda0pj7pYvg4QuKUciI5GplITfPCp+DghUwGl5X7lxE/dsNfsaa
OpcPt+DVoZj4F49JOP8W76LlKF0RJ3AqtUmNni7pNm9ceNixHwsWzD7AWi5H7qRF
W3iEQH3TclQZ4OmlgdBtMzShvvxMYcEYyx5r8zzaRDwzTXm3DSNHcz2eKWrblXcc
Uk+J5oggMiM5pVtetpTFFe+L4NtEhlJ1
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:15 2024 by rpki-client on console-ams.rpki-client.org