Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A0C35212E28C11EE96D11FB8775412E6.roa
File: A0C35212E28C11EE96D11FB8775412E6.roa (raw, json)
Hash identifier: xQXiPux6fxKPAgU5imubVMBDC0LBQIcuJJVxHO0blkU=
Subject key identifier: 3D:02:2B:D8:01:DF:23:7C:81:9B:0D:D6:67:29:41:D7:7C:BC:78:D8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A18F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A0C35212E28C11EE96D11FB8775412E6.roa
Signing time: Fri 15 Mar 2024 05:26:52 +0000
ROA not before: Fri 15 Mar 2024 05:26:48 +0000
ROA not after: Fri 20 Sep 2024 05:26:48 +0000
asID: 47890
IP address blocks: 154.214.214.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41359 (0xa18f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 15 05:26:48 2024 GMT
Not After : Sep 20 05:26:48 2024 GMT
Subject: CN=65f3dc1b-9b3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:7c:ab:3a:fd:dd:f0:0e:84:ae:bb:b5:fb:b7:
21:68:19:da:35:d9:1f:37:10:73:0e:53:a7:e2:d2:
0d:7c:ab:49:c9:2c:01:73:83:a8:39:33:06:f8:e2:
6b:af:25:89:f5:b0:b1:43:08:84:e2:b1:17:b9:cd:
9a:97:a5:0d:3c:5b:84:f3:ff:9c:e2:b3:21:08:f8:
e7:7a:1e:e2:60:ab:54:73:24:07:19:f9:02:30:32:
dd:db:9d:e3:b4:c7:8f:cf:15:a6:ce:88:99:ce:07:
c0:a3:67:1c:cd:a8:1e:e5:93:35:fa:73:36:ed:1a:
dc:c5:a5:a3:44:d2:5c:8c:03:62:9c:5a:18:78:63:
3e:75:5f:bd:95:89:5a:4b:f5:65:7c:3d:94:0c:29:
10:e7:3d:df:ff:06:ed:98:c8:4e:fe:34:b3:3f:7f:
76:5c:74:b6:21:71:55:29:fe:f0:80:49:36:c8:07:
f5:dc:34:cc:6b:c3:32:84:4c:42:76:98:7e:9a:1f:
af:98:55:53:58:dc:2e:7e:ea:ef:c3:b7:ee:3c:4a:
80:a3:9b:5e:ff:b4:a0:37:1f:4d:23:1f:e0:b8:2a:
28:17:dc:78:5e:ca:2f:83:f5:d2:9f:af:86:0f:4f:
e0:e7:9f:78:0d:66:8b:d9:02:c2:f9:3e:48:e7:26:
ab:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:02:2B:D8:01:DF:23:7C:81:9B:0D:D6:67:29:41:D7:7C:BC:78:D8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A0C35212E28C11EE96D11FB8775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.214.0/24
Signature Algorithm: sha256WithRSAEncryption
03:ae:8e:5c:b6:f0:60:c0:b0:47:85:2e:a7:45:10:95:df:b6:
b3:80:ee:18:1a:80:5c:19:36:a4:8e:2c:4c:78:82:77:b8:b8:
1f:bc:59:95:f7:24:26:6b:b2:12:be:4c:b3:6a:13:36:27:ae:
79:a1:7f:8e:fc:db:db:db:5e:33:88:ff:d9:d8:01:ae:97:a6:
a6:d6:ce:2e:26:9a:34:1d:11:b9:9c:23:5c:00:47:24:66:96:
b2:eb:be:29:c1:8d:85:94:ca:49:59:6b:40:2d:b6:47:6e:5a:
78:43:0b:60:ea:ba:b2:d5:ff:a4:62:14:c3:38:2e:ae:36:ee:
e6:ec:18:ca:48:b6:70:aa:4d:05:27:1f:26:8b:a3:30:c0:21:
3c:c7:39:ab:c7:ff:43:84:dc:68:3e:f0:84:30:f5:41:82:84:
fe:75:1d:54:2e:19:0a:62:5d:d7:5f:e4:96:68:47:f3:99:e1:
39:ac:37:1e:40:2a:b2:74:f9:dd:1c:db:21:63:09:11:c2:0d:
36:75:b4:fe:1e:af:38:db:58:6f:b6:c1:ee:8c:7c:9b:00:e4:
e4:74:5e:d4:f2:d5:af:e8:9b:98:8a:dd:d3:31:55:d6:48:7b:
8c:96:3d:c7:49:cd:9b:93:53:70:86:54:a1:83:3d:92:ae:46:
9d:05:9c:60
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKGPMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzE1MDUyNjQ4WhcNMjQwOTIwMDUyNjQ4WjAYMRYw
FAYDVQQDEw02NWYzZGMxYi05YjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA6XyrOv3d8A6Erru1+7chaBnaNdkfNxBzDlOn4tINfKtJySwBc4OoOTMG
+OJrryWJ9bCxQwiE4rEXuc2al6UNPFuE8/+c4rMhCPjneh7iYKtUcyQHGfkCMDLd
253jtMePzxWmzoiZzgfAo2cczage5ZM1+nM27RrcxaWjRNJcjANinFoYeGM+dV+9
lYlaS/VlfD2UDCkQ5z3f/wbtmMhO/jSzP392XHS2IXFVKf7wgEk2yAf13DTMa8My
hExCdph+mh+vmFVTWNwufurvw7fuPEqAo5te/7SgNx9NIx/guCooF9x4Xsovg/XS
n6+GD0/g5594DWaL2QLC+T5I5yarzQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFD0C
K9gB3yN8gZsN1mcpQdd8vHjYMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BMEMzNTIxMkUyOEMxMUVFOTZEMTFGQjg3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtbWMA0GCSqGSIb3DQEB
CwUAA4IBAQADro5ctvBgwLBHhS6nRRCV37azgO4YGoBcGTakjixMeIJ3uLgfvFmV
9yQma7ISvkyzahM2J655oX+O/Nvb214ziP/Z2AGul6am1s4uJpo0HRG5nCNcAEck
Zpay674pwY2FlMpJWWtALbZHblp4Qwtg6rqy1f+kYhTDOC6uNu7m7BjKSLZwqk0F
Jx8mi6MwwCE8xzmrx/9DhNxoPvCEMPVBgoT+dR1ULhkKYl3XX+SWaEfzmeE5rDce
QCqydPndHNshYwkRwg02dbT+Hq8421hvtsHujHybAOTkdF7U8tWv6JuYit3TMVXW
SHuMlj3HSc2bk1NwhlShgz2SrkadBZxg
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:16 2024 by rpki-client on console-ams.rpki-client.org