Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ADC46848FE1B11EE9B9649FB007001B1.roa
File: ADC46848FE1B11EE9B9649FB007001B1.roa (raw, json)
Hash identifier: uCkSbiKJKPXApGqLV+cC92no/kkwmK8gTqm6q4nRAks=
Subject key identifier: 2F:A0:F8:F4:8D:DB:83:F0:B8:70:6A:67:D1:9C:7C:9C:0C:B5:E2:80
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AE58
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ADC46848FE1B11EE9B9649FB007001B1.roa
Signing time: Fri 19 Apr 2024 07:08:53 +0000
ROA not before: Fri 19 Apr 2024 07:08:49 +0000
ROA not after: Wed 22 May 2024 07:08:49 +0000
asID: 150698
IP address blocks: 154.197.118.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44632 (0xae58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 19 07:08:49 2024 GMT
Not After : May 22 07:08:49 2024 GMT
Subject: CN=66221885-a67e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:79:c2:3d:6f:8f:98:9e:38:2f:f8:79:2e:ac:
66:45:bd:65:c4:00:37:8e:49:32:73:2d:86:04:e6:
c7:f6:e4:b6:98:d2:ac:ac:bc:dc:6e:03:5b:29:5c:
a1:96:83:f5:f8:63:41:9c:09:63:fe:bf:92:07:a0:
e5:37:1d:9c:39:d2:ec:b8:24:c0:0c:ab:a8:09:61:
50:13:38:a2:2b:f1:4f:76:57:94:ed:b0:04:91:17:
f8:78:fc:84:32:f9:2e:d0:91:23:83:71:fa:13:fb:
39:d7:a8:04:d6:28:94:e6:5f:bd:38:2c:09:b1:ca:
f6:71:32:b3:52:8b:1f:25:f8:23:c0:2a:54:46:84:
09:cf:dc:36:af:10:37:9e:2f:2d:48:8d:c6:c0:a5:
fa:31:1e:5d:1d:85:a7:5f:37:2e:de:dc:57:88:65:
ac:12:24:42:3c:02:fd:53:07:db:45:68:0e:57:9f:
bc:b7:b4:3f:85:d2:48:0e:df:91:5b:2e:26:32:13:
a6:c9:77:82:89:c3:9e:76:38:3d:43:e4:10:6e:99:
13:d4:0f:f2:a4:be:2b:6b:e9:0b:25:2f:ca:40:4b:
c3:ee:81:cb:c8:02:16:48:d8:40:ba:28:8c:42:56:
93:43:fe:bb:c4:aa:26:f6:0b:c4:ea:c7:3f:dc:4c:
83:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:A0:F8:F4:8D:DB:83:F0:B8:70:6A:67:D1:9C:7C:9C:0C:B5:E2:80
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ADC46848FE1B11EE9B9649FB007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.118.0/24
Signature Algorithm: sha256WithRSAEncryption
96:ed:e1:11:13:50:60:59:d9:b6:60:5a:a5:58:d0:5f:d8:3c:
e3:0e:9d:25:87:b0:e4:e9:0d:e7:92:a7:c0:65:06:87:4a:94:
ee:c5:af:2d:26:ec:95:45:ce:be:7d:a5:b9:f8:a6:2c:31:84:
85:86:e1:03:05:90:63:5f:c4:02:c5:76:98:0d:1c:df:9f:29:
59:27:91:b0:59:85:d0:7a:92:31:54:71:5e:86:92:fc:8a:83:
5a:4e:cb:e4:22:4d:40:5c:c6:dd:73:f9:cd:84:0d:5e:8b:2a:
8d:79:10:19:02:62:61:d8:c1:88:f3:28:d2:c2:7d:1d:10:df:
3c:ab:06:85:bc:a8:1d:ce:e5:bc:f1:dc:89:18:e2:c6:30:ca:
38:ec:bc:05:5e:12:0d:cf:62:ce:71:27:b1:e5:27:6b:09:86:
fa:78:21:6a:59:68:e1:1f:36:04:de:28:f4:36:09:16:9b:65:
b6:8c:43:9e:10:2f:72:2c:3a:c8:ef:53:20:9b:88:d3:bd:63:
04:09:42:d4:09:a6:e6:4f:19:1b:89:ff:e0:85:fc:a0:85:d4:
06:6f:5b:d4:29:00:61:7f:d2:c5:c9:20:bf:ef:5d:99:57:04:
69:e6:d6:c3:28:66:90:3e:ab:ac:23:fd:62:ee:bb:85:34:87:
59:92:4a:b3
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAK5YMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDE5MDcwODQ5WhcNMjQwNTIyMDcwODQ5WjAYMRYw
FAYDVQQDEw02NjIyMTg4NS1hNjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA8XnCPW+PmJ44L/h5LqxmRb1lxAA3jkkycy2GBObH9uS2mNKsrLzcbgNb
KVyhloP1+GNBnAlj/r+SB6DlNx2cOdLsuCTADKuoCWFQEziiK/FPdleU7bAEkRf4
ePyEMvku0JEjg3H6E/s516gE1iiU5l+9OCwJscr2cTKzUosfJfgjwCpURoQJz9w2
rxA3ni8tSI3GwKX6MR5dHYWnXzcu3txXiGWsEiRCPAL9UwfbRWgOV5+8t7Q/hdJI
Dt+RWy4mMhOmyXeCicOedjg9Q+QQbpkT1A/ypL4ra+kLJS/KQEvD7oHLyAIWSNhA
uiiMQlaTQ/67xKom9gvE6sc/3EyDowIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFC+g
+PSN24PwuHBqZ9GcfJwMteKAMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BREM0Njg0OEZFMUIxMUVFOUI5NjQ5RkIwMDcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsV2MA0GCSqGSIb3DQEB
CwUAA4IBAQCW7eERE1BgWdm2YFqlWNBf2DzjDp0lh7Dk6Q3nkqfAZQaHSpTuxa8t
JuyVRc6+faW5+KYsMYSFhuEDBZBjX8QCxXaYDRzfnylZJ5GwWYXQepIxVHFehpL8
ioNaTsvkIk1AXMbdc/nNhA1eiyqNeRAZAmJh2MGI8yjSwn0dEN88qwaFvKgdzuW8
8dyJGOLGMMo47LwFXhINz2LOcSex5SdrCYb6eCFqWWjhHzYE3ij0NgkWm2W2jEOe
EC9yLDrI71Mgm4jTvWMECULUCabmTxkbif/ghfyghdQGb1vUKQBhf9LFySC/712Z
VwRp5tbDKGaQPqusI/1i7ruFNIdZkkqz
-----END CERTIFICATE-----
Generated at Fri May 3 03:10:28 2024 by rpki-client on console-ams.rpki-client.org