Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AA124794E73A11EEBB3C6C67775412E6.roa
File: AA124794E73A11EEBB3C6C67775412E6.roa (raw, json)
Hash identifier: 9Bpgs9LrqJ+N99Pk7zlOO1b4kYB6b5FmnqRX9O1ypAY=
Subject key identifier: 7A:C2:12:F6:4E:0B:65:9A:78:96:72:D5:5F:7C:0F:33:6D:73:2A:8B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A396
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AA124794E73A11EEBB3C6C67775412E6.roa
Signing time: Thu 21 Mar 2024 04:22:44 +0000
ROA not before: Thu 21 Mar 2024 04:22:41 +0000
ROA not after: Tue 23 Apr 2024 04:22:41 +0000
asID: 44559
IP address blocks: 154.221.238.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41878 (0xa396)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 04:22:41 2024 GMT
Not After : Apr 23 04:22:41 2024 GMT
Subject: CN=65fbb614-b94c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:21:b2:5c:e6:a5:88:43:8b:a5:88:60:56:19:
52:c3:76:86:58:97:cc:a4:13:10:d1:9b:42:44:41:
21:2f:f3:0d:86:7b:f6:f6:37:c4:f4:06:d4:63:66:
cd:82:4b:ff:7b:1c:9f:fb:ca:e7:11:af:5d:55:61:
0f:18:45:63:fb:c3:0b:e2:6c:0b:37:26:28:42:fb:
44:da:04:40:38:4f:72:13:b0:92:c1:4c:30:20:f8:
92:99:1b:8c:c8:20:01:1b:d7:df:1f:79:6c:a4:fa:
e9:ca:7a:15:d1:ef:ef:76:8f:1b:b2:c0:2f:b8:b9:
00:ff:51:53:33:28:01:d8:c4:52:e3:6d:43:2f:e3:
a1:ac:40:4b:25:51:92:94:16:b4:d1:ef:f2:91:64:
1c:06:80:58:7a:97:5b:a7:15:d9:19:1f:63:e3:d9:
59:8e:33:6d:c5:3d:d9:31:88:fe:c9:15:e3:a2:cd:
74:57:f5:02:58:37:0c:19:47:0c:ca:bd:08:6a:2b:
72:24:45:20:84:9a:3b:02:32:d1:ea:7f:a1:6f:9c:
aa:f4:18:25:0e:a0:97:4a:d2:64:04:09:a2:e2:2d:
d5:81:7b:19:b6:ac:44:cc:13:df:a3:60:07:22:d5:
3d:8b:78:75:98:cb:60:66:64:bb:bb:cb:d7:3e:15:
2e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:C2:12:F6:4E:0B:65:9A:78:96:72:D5:5F:7C:0F:33:6D:73:2A:8B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AA124794E73A11EEBB3C6C67775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.238.0/24
Signature Algorithm: sha256WithRSAEncryption
64:dc:18:97:39:54:fa:3a:f4:a0:ba:15:00:ae:eb:47:83:04:
0e:68:df:d7:3f:b9:8c:12:40:e9:d5:6b:21:3f:53:b5:ff:f0:
b7:54:ac:37:03:0f:a5:82:51:53:b5:d6:92:12:b8:ed:e1:e6:
6e:aa:f4:c6:85:e1:a6:f4:2f:66:dd:7d:60:c3:24:10:8d:2d:
d4:78:29:e7:99:f2:a1:e9:fc:9a:5a:b8:84:7f:dc:a5:30:4f:
af:c6:29:5b:f7:30:c4:f8:c9:b1:db:18:54:96:10:88:70:dd:
45:7c:44:9d:67:99:97:47:46:e8:92:8d:96:41:fc:3c:44:b0:
00:ac:fb:d8:85:6b:9a:98:9d:bb:d4:86:94:6f:44:2f:2d:e6:
55:06:b1:51:1a:04:99:49:7b:45:45:1a:cd:d6:5c:0c:c9:00:
01:30:a4:1d:f5:4a:bf:8d:68:b0:c1:77:4b:bb:6f:34:e5:3a:
2e:ac:c8:34:0b:0c:94:79:a5:70:77:8c:e2:0b:23:42:53:e0:
3e:a6:92:f5:15:55:a1:3f:9e:f3:be:a0:79:cd:d5:5a:1d:95:
d3:8e:59:5d:2d:5a:85:c0:35:30:2d:71:5d:12:f2:21:a6:e1:
8f:2c:0e:a2:1e:4f:3c:d5:f8:7d:a5:52:b1:3f:e6:23:70:ec:
bb:61:74:a6
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKOWMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMDQyMjQxWhcNMjQwNDIzMDQyMjQxWjAYMRYw
FAYDVQQDEw02NWZiYjYxNC1iOTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxSGyXOaliEOLpYhgVhlSw3aGWJfMpBMQ0ZtCREEhL/MNhnv29jfE9AbU
Y2bNgkv/exyf+8rnEa9dVWEPGEVj+8ML4mwLNyYoQvtE2gRAOE9yE7CSwUwwIPiS
mRuMyCABG9ffH3lspPrpynoV0e/vdo8bssAvuLkA/1FTMygB2MRS421DL+OhrEBL
JVGSlBa00e/ykWQcBoBYepdbpxXZGR9j49lZjjNtxT3ZMYj+yRXjos10V/UCWDcM
GUcMyr0IaityJEUghJo7AjLR6n+hb5yq9BglDqCXStJkBAmi4i3VgXsZtqxEzBPf
o2AHItU9i3h1mMtgZmS7u8vXPhUu2QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHrC
EvZOC2WaeJZy1V98DzNtcyqLMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BQTEyNDc5NEU3M0ExMUVFQkIzQzZDNjc3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt3uMA0GCSqGSIb3DQEB
CwUAA4IBAQBk3BiXOVT6OvSguhUArutHgwQOaN/XP7mMEkDp1WshP1O1//C3VKw3
Aw+lglFTtdaSErjt4eZuqvTGheGm9C9m3X1gwyQQjS3UeCnnmfKh6fyaWriEf9yl
ME+vxilb9zDE+Mmx2xhUlhCIcN1FfESdZ5mXR0boko2WQfw8RLAArPvYhWuamJ27
1IaUb0QvLeZVBrFRGgSZSXtFRRrN1lwMyQABMKQd9Uq/jWiwwXdLu2805TourMg0
CwyUeaVwd4ziCyNCU+A+ppL1FVWhP57zvqB5zdVaHZXTjlldLVqFwDUwLXFdEvIh
puGPLA6iHk881fh9pVKxP+YjcOy7YXSm
-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:24 2024 by rpki-client on console-fra.rpki-client.org