Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A45B0566EFF011EE838ACD92775412E6.roa
File: A45B0566EFF011EE838ACD92775412E6.roa (raw, json)
Hash identifier: 9GXCJrLVqYsscTh0wfsTtsO+GmMkYakjX9bc9h/L71I=
Subject key identifier: 1E:B5:15:B8:3D:06:36:89:C1:D2:9D:BD:78:75:BB:54:2C:02:89:1E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A7B6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A45B0566EFF011EE838ACD92775412E6.roa
Signing time: Mon 01 Apr 2024 06:25:32 +0000
ROA not before: Mon 01 Apr 2024 06:25:29 +0000
ROA not after: Tue 07 May 2024 06:25:29 +0000
asID: 138915
IP address blocks: 154.223.52.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42934 (0xa7b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 06:25:29 2024 GMT
Not After : May 7 06:25:29 2024 GMT
Subject: CN=660a535c-5af1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:bc:46:72:97:5e:5f:89:89:b2:4f:16:40:41:
d1:bd:77:df:4a:36:bb:d1:b8:85:e7:74:b2:e9:11:
30:bb:87:0c:c6:0a:03:84:5f:cd:33:0f:7d:36:84:
0f:9b:3c:17:f5:e7:d4:e2:c5:51:68:9a:93:47:84:
62:63:4b:56:b4:07:a7:4e:9c:45:5e:d8:79:0f:d1:
65:a5:0e:81:51:64:53:f7:eb:27:9a:05:be:ce:d8:
b2:8e:bb:bf:47:a3:37:b0:ad:5c:1a:09:b4:50:8f:
31:c3:b1:8f:52:1d:0b:06:f7:03:ea:03:1b:f0:26:
63:da:ac:47:67:2f:c3:f1:ad:07:bb:ee:96:1b:e7:
0d:93:af:04:3c:5e:f5:a8:e3:c7:56:d3:4d:3b:df:
73:f5:a9:05:66:70:44:09:ef:37:1b:6f:bc:4c:94:
88:60:0f:fc:eb:84:b7:7f:c3:12:fb:9a:dc:7c:eb:
3c:d9:4d:61:cd:6c:2c:2e:fc:96:41:54:cf:95:88:
f7:fd:f9:25:05:02:ea:e8:a2:ed:cb:17:42:6c:39:
48:9c:85:ee:fb:e4:e8:a2:98:bc:6b:0b:9d:82:4f:
28:e5:14:28:98:3c:8a:4c:0c:e0:b8:12:fa:87:91:
1b:fa:0e:b6:90:f9:84:1a:58:83:31:e4:b7:f7:9e:
a5:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:B5:15:B8:3D:06:36:89:C1:D2:9D:BD:78:75:BB:54:2C:02:89:1E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A45B0566EFF011EE838ACD92775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.52.0/23
Signature Algorithm: sha256WithRSAEncryption
87:fd:b2:22:ab:14:5c:4a:02:a9:e6:43:c0:cd:d2:46:a6:38:
07:d0:19:55:f5:59:8c:2d:a3:37:d3:ed:fa:2a:fe:c6:8d:d7:
2a:03:3f:fd:b0:4e:1e:f7:51:c1:97:df:fb:99:68:19:2e:85:
33:52:5e:f0:64:cd:77:29:46:87:99:6a:e7:dc:37:a8:d1:b3:
9d:3f:c5:ae:26:18:c9:b3:88:80:58:b6:82:50:ca:2d:ef:06:
94:d8:b9:8c:90:a6:61:c0:81:04:aa:0b:45:14:92:4f:16:db:
b9:ab:eb:c6:86:f8:cc:ab:f9:7d:18:fb:53:0b:82:37:6a:b7:
92:c2:5b:16:ed:55:f9:27:88:63:9c:3f:97:66:79:25:a2:36:
84:ab:d9:0d:c2:8b:97:73:00:25:3f:6c:31:0f:6b:77:23:56:
3a:7a:6a:ef:dc:6b:8c:e5:82:a1:b2:35:90:87:d8:4d:ba:d6:
de:2c:db:93:b9:4d:5b:b9:06:9a:04:01:5b:cb:10:90:e2:df:
68:c4:b8:9c:8b:3b:d2:9a:ee:7f:e2:7e:2c:77:0c:38:4c:22:
fd:eb:c2:ac:eb:b7:8e:97:45:b7:c8:17:c5:9d:51:c0:86:bc:
d1:c2:00:80:5f:2b:2b:41:88:58:35:c3:ce:9b:8e:72:37:1e:
b3:fb:02:ea
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKe2MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDAxMDYyNTI5WhcNMjQwNTA3MDYyNTI5WjAYMRYw
FAYDVQQDEw02NjBhNTM1Yy01YWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvrxGcpdeX4mJsk8WQEHRvXffSja70biF53Sy6REwu4cMxgoDhF/NMw99
NoQPmzwX9efU4sVRaJqTR4RiY0tWtAenTpxFXth5D9FlpQ6BUWRT9+snmgW+ztiy
jru/R6M3sK1cGgm0UI8xw7GPUh0LBvcD6gMb8CZj2qxHZy/D8a0Hu+6WG+cNk68E
PF71qOPHVtNNO99z9akFZnBECe83G2+8TJSIYA/864S3f8MS+5rcfOs82U1hzWws
LvyWQVTPlYj3/fklBQLq6KLtyxdCbDlInIXu++Toopi8awudgk8o5RQomDyKTAzg
uBL6h5Eb+g62kPmEGliDMeS3956l9QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFB61
Fbg9BjaJwdKdvXh1u1QsAokeMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BNDVCMDU2NkVGRjAxMUVFODM4QUNEOTI3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmt80MA0GCSqGSIb3DQEB
CwUAA4IBAQCH/bIiqxRcSgKp5kPAzdJGpjgH0BlV9VmMLaM30+36Kv7GjdcqAz/9
sE4e91HBl9/7mWgZLoUzUl7wZM13KUaHmWrn3Deo0bOdP8WuJhjJs4iAWLaCUMot
7waU2LmMkKZhwIEEqgtFFJJPFtu5q+vGhvjMq/l9GPtTC4I3areSwlsW7VX5J4hj
nD+XZnklojaEq9kNwouXcwAlP2wxD2t3I1Y6emrv3GuM5YKhsjWQh9hNutbeLNuT
uU1buQaaBAFbyxCQ4t9oxLicizvSmu5/4n4sdww4TCL968Ks67eOl0W3yBfFnVHA
hrzRwgCAXysrQYhYNcPOm45yNx6z+wLq
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:34 2024 by rpki-client on console-fra.rpki-client.org