Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A9D68638E74D11EE846A297B775412E6.roa
File: A9D68638E74D11EE846A297B775412E6.roa (raw, json)
Hash identifier: DMH+ZMumVX2nS28njx6xmum71XeBaz9po3UKh6538Gw=
Subject key identifier: A6:D3:00:2D:44:C2:9E:45:88:44:1D:6A:5A:2F:B5:73:9C:8F:BF:02
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A44F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A9D68638E74D11EE846A297B775412E6.roa
Signing time: Thu 21 Mar 2024 06:38:44 +0000
ROA not before: Thu 21 Mar 2024 06:38:41 +0000
ROA not after: Tue 23 Apr 2024 06:38:41 +0000
asID: 44559
IP address blocks: 154.220.145.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42063 (0xa44f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 06:38:41 2024 GMT
Not After : Apr 23 06:38:41 2024 GMT
Subject: CN=65fbd5f4-1c9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:78:fc:b5:65:cf:1c:9d:dd:72:65:05:a0:12:
43:00:37:ea:db:bb:b0:e3:f1:40:38:14:05:e4:6d:
c5:da:09:76:15:09:60:7f:26:8c:f6:0e:b4:d6:64:
32:a1:49:c3:40:6a:c7:f9:25:85:e9:64:0f:85:21:
e9:03:ca:3e:a9:c3:7e:71:df:01:77:c7:01:97:f0:
99:4b:d3:c1:c2:f7:af:38:81:f3:43:a9:d7:56:e2:
23:8c:70:7c:9c:47:0e:f2:92:b9:cf:51:61:b4:e5:
b9:2e:16:c2:2e:e5:72:6a:e9:4d:d1:37:fa:6f:82:
21:cd:6f:c3:35:19:3c:8f:de:99:df:a9:0f:78:5b:
18:5f:61:7c:57:8b:c1:6b:07:c9:9c:33:cf:2e:e9:
2a:c0:4a:e7:9f:2f:5c:48:2a:13:dd:24:a4:5c:8b:
3d:0c:1b:1e:4b:47:d9:cf:7e:ab:4a:3e:b3:fa:2b:
7e:51:2c:d8:80:85:9f:63:65:d0:98:39:7a:df:5c:
57:b1:78:5c:7b:fd:9a:83:37:c3:bc:df:93:67:9a:
20:25:74:88:c2:19:99:f2:d4:78:d9:dc:6e:62:77:
62:38:cc:b8:c1:f8:0b:aa:84:60:5a:cc:4d:cb:5c:
a3:db:b4:af:38:25:48:a1:1d:ea:c3:11:de:66:a3:
d1:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:D3:00:2D:44:C2:9E:45:88:44:1D:6A:5A:2F:B5:73:9C:8F:BF:02
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A9D68638E74D11EE846A297B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.145.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:45:2a:f2:44:e3:00:c3:05:9d:f0:b8:d1:b0:a7:8b:65:13:
55:98:84:ac:b9:8e:8d:a0:c1:f7:d8:d7:7e:89:a7:03:10:9c:
2b:87:b6:63:be:c5:17:a9:c6:cf:ab:06:71:d2:a7:7a:09:d8:
15:b3:13:0a:42:60:8e:a7:43:88:bd:54:09:56:7a:01:c0:74:
7e:a8:fd:13:ee:e0:c0:88:ab:94:c6:d4:30:c1:3b:17:ce:28:
56:d7:69:2e:73:94:07:85:7c:8f:16:72:2f:4b:a2:27:05:6b:
40:84:d0:2f:ee:87:26:77:e0:96:d4:ea:d2:6b:d3:1e:33:15:
67:15:b0:38:0e:8a:1a:15:44:71:20:6d:6a:8e:46:9d:0b:b7:
be:96:5f:a2:a2:70:01:8c:44:01:74:7e:2f:62:85:e2:c4:77:
f7:cb:d8:5c:58:17:da:81:61:28:8c:25:2b:67:1c:3f:b0:14:
6b:6b:fd:97:4c:80:23:1a:06:44:63:5f:75:98:12:87:87:3b:
99:f1:ab:bc:2a:b9:46:72:ff:a3:da:98:f7:9f:23:49:a8:07:
fa:ef:1a:0f:9d:c8:90:bf:47:48:7e:ec:c5:dc:0b:5a:cb:b1:
02:bb:9d:36:c0:b3:c8:16:9c:7e:b4:72:e8:7e:ba:97:be:ac:
6b:b0:78:aa
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKRPMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMDYzODQxWhcNMjQwNDIzMDYzODQxWjAYMRYw
FAYDVQQDEw02NWZiZDVmNC0xYzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEApnj8tWXPHJ3dcmUFoBJDADfq27uw4/FAOBQF5G3F2gl2FQlgfyaM9g60
1mQyoUnDQGrH+SWF6WQPhSHpA8o+qcN+cd8Bd8cBl/CZS9PBwvevOIHzQ6nXVuIj
jHB8nEcO8pK5z1FhtOW5LhbCLuVyaulN0Tf6b4IhzW/DNRk8j96Z36kPeFsYX2F8
V4vBawfJnDPPLukqwErnny9cSCoT3SSkXIs9DBseS0fZz36rSj6z+it+USzYgIWf
Y2XQmDl631xXsXhce/2agzfDvN+TZ5ogJXSIwhmZ8tR42dxuYndiOMy4wfgLqoRg
WsxNy1yj27SvOCVIoR3qwxHeZqPRFQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFKbT
AC1Ewp5FiEQdalovtXOcj78CMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BOUQ2ODYzOEU3NEQxMUVFODQ2QTI5N0I3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtyRMA0GCSqGSIb3DQEB
CwUAA4IBAQDTRSryROMAwwWd8LjRsKeLZRNVmISsuY6NoMH32Nd+iacDEJwrh7Zj
vsUXqcbPqwZx0qd6CdgVsxMKQmCOp0OIvVQJVnoBwHR+qP0T7uDAiKuUxtQwwTsX
zihW12kuc5QHhXyPFnIvS6InBWtAhNAv7ocmd+CW1OrSa9MeMxVnFbA4DooaFURx
IG1qjkadC7e+ll+ionABjEQBdH4vYoXixHf3y9hcWBfagWEojCUrZxw/sBRra/2X
TIAjGgZEY191mBKHhzuZ8au8KrlGcv+j2pj3nyNJqAf67xoPnciQv0dIfuzF3Ata
y7ECu502wLPIFpx+tHLofrqXvqxrsHiq
-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:24 2024 by rpki-client on console-ams.rpki-client.org