Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A75B7220014B11EFB32C2FF3007001B1.roa
File: A75B7220014B11EFB32C2FF3007001B1.roa (raw, json)
Hash identifier: du6blHyOChM+jnDwQ++8PhiI2F434kCBIHGLlfcPuVE=
Subject key identifier: 44:4D:97:FF:0C:56:96:39:66:3C:E1:E1:78:8F:F7:40:40:26:17:C7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AF09
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A75B7220014B11EFB32C2FF3007001B1.roa
Signing time: Tue 23 Apr 2024 08:29:51 +0000
ROA not before: Tue 23 Apr 2024 08:29:48 +0000
ROA not after: Sat 11 May 2024 08:29:48 +0000
asID: 9009
IP address blocks: 154.92.112.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:04:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44809 (0xaf09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 08:29:48 2024 GMT
Not After : May 11 08:29:48 2024 GMT
Subject: CN=6627717f-39df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:14:52:cb:03:fe:23:4e:44:36:6e:12:42:1e:
94:36:81:b3:8d:ad:10:15:a1:26:ef:78:90:c9:e0:
5f:cc:77:e8:ae:56:bc:62:7f:d4:01:f8:40:2f:d7:
13:2f:68:1f:05:e9:d0:e8:62:43:02:99:a5:a6:a0:
e0:3e:74:3b:0a:a7:97:eb:86:0d:7b:01:3c:ac:eb:
14:84:24:20:11:5f:d0:d4:ac:fd:fc:10:fe:03:60:
76:4b:10:07:d9:9e:9b:86:2d:54:a0:7d:13:f5:37:
33:e9:ca:46:23:55:3d:8f:39:fa:e3:62:5e:94:53:
ab:9a:06:2f:3b:7f:40:58:fc:c8:bd:e1:27:1d:ed:
db:23:4b:09:bf:47:ee:63:94:0e:19:c2:8e:35:da:
54:c7:c4:db:53:d8:2f:1b:22:5e:01:4c:8f:47:6f:
7e:05:f0:50:f9:46:bb:d8:89:d6:bb:08:22:87:db:
6e:8f:bc:2f:ac:0e:db:5e:23:06:c6:45:fc:82:8c:
75:b8:64:3b:de:bf:a4:42:18:71:08:a1:94:bc:00:
63:89:75:8b:f8:e4:7e:51:83:42:62:5b:85:11:ae:
f0:35:77:51:55:83:65:22:2d:a7:d0:7f:fe:94:2a:
53:e5:d3:4a:d1:68:33:14:1b:db:0c:df:bb:ab:7b:
c9:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:4D:97:FF:0C:56:96:39:66:3C:E1:E1:78:8F:F7:40:40:26:17:C7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A75B7220014B11EFB32C2FF3007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.112.0/21
Signature Algorithm: sha256WithRSAEncryption
7e:e1:e6:6a:72:18:59:5e:89:5d:99:c1:0d:7b:b2:3c:8d:7e:
03:7e:c2:44:a0:a3:ae:53:02:ab:0e:51:c4:7a:5e:02:5b:46:
3b:5d:0b:bc:5f:ab:f8:46:41:c3:e5:33:8e:4b:2a:be:a2:c5:
66:e8:81:17:64:b2:09:b9:a4:bf:82:04:4d:cf:13:c0:32:3e:
20:e1:9e:a2:f5:51:91:1e:f1:14:58:6b:8f:13:84:f7:63:5e:
af:cd:cd:17:4f:25:a8:1e:a7:4c:7d:a7:50:b2:a5:0c:1e:55:
2b:5f:f0:dd:87:a1:a8:41:ae:06:cf:a9:d9:51:0c:98:f6:93:
a3:25:bd:f6:5e:ab:11:79:4d:d3:67:a5:e1:11:60:fd:cf:62:
1d:34:47:b7:39:56:01:c8:75:c0:c3:e5:d9:7c:b5:ca:c9:e2:
fd:87:42:7a:91:c1:b5:a3:89:8f:0a:4d:12:87:d1:e9:47:f4:
3b:96:db:26:be:7d:cf:ac:e0:9e:21:60:8f:96:03:d4:fb:7e:
de:01:8f:ac:9c:a4:44:2a:2f:a0:e6:6d:bf:bd:4c:c8:bb:16:
38:ff:c0:da:0a:64:65:73:c3:39:2c:eb:08:c7:89:a2:5b:48:
54:7a:73:33:ca:a8:b3:21:26:96:7f:00:6b:5f:26:7e:37:51:
c5:3c:7d:9a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAK8JMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDIzMDgyOTQ4WhcNMjQwNTExMDgyOTQ4WjAYMRYw
FAYDVQQDEw02NjI3NzE3Zi0zOWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqxRSywP+I05ENm4SQh6UNoGzja0QFaEm73iQyeBfzHforla8Yn/UAfhA
L9cTL2gfBenQ6GJDApmlpqDgPnQ7CqeX64YNewE8rOsUhCQgEV/Q1Kz9/BD+A2B2
SxAH2Z6bhi1UoH0T9Tcz6cpGI1U9jzn642JelFOrmgYvO39AWPzIveEnHe3bI0sJ
v0fuY5QOGcKONdpUx8TbU9gvGyJeAUyPR29+BfBQ+Ua72InWuwgih9tuj7wvrA7b
XiMGxkX8gox1uGQ73r+kQhhxCKGUvABjiXWL+OR+UYNCYluFEa7wNXdRVYNlIi2n
0H/+lCpT5dNK0WgzFBvbDN+7q3vJyQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFERN
l/8MVpY5Zjzh4XiP90BAJhfHMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BNzVCNzIyMDAxNEIxMUVGQjMyQzJGRjMwMDcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDmlxwMA0GCSqGSIb3DQEB
CwUAA4IBAQB+4eZqchhZXoldmcENe7I8jX4DfsJEoKOuUwKrDlHEel4CW0Y7XQu8
X6v4RkHD5TOOSyq+osVm6IEXZLIJuaS/ggRNzxPAMj4g4Z6i9VGRHvEUWGuPE4T3
Y16vzc0XTyWoHqdMfadQsqUMHlUrX/Ddh6GoQa4Gz6nZUQyY9pOjJb32XqsReU3T
Z6XhEWD9z2IdNEe3OVYByHXAw+XZfLXKyeL9h0J6kcG1o4mPCk0Sh9HpR/Q7ltsm
vn3PrOCeIWCPlgPU+37eAY+snKREKi+g5m2/vUzIuxY4/8DaCmRlc8M5LOsIx4mi
W0hUenMzyqizISaWfwBrXyZ+N1HFPH2a
-----END CERTIFICATE-----
Generated at Mon May 6 08:04:40 2024 by rpki-client on console-ams.rpki-client.org