Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE3ECBCEF01011EE89C4E08C775412E6.roa
File: AE3ECBCEF01011EE89C4E08C775412E6.roa (raw, json)
Hash identifier: qtkqJ6PwCkj2VE0FLwWhiyBj+ed6gPRoxkyWSqGMEqk=
Subject key identifier: E7:7F:57:51:CF:36:95:60:0C:75:6F:E6:AC:36:E3:33:54:25:38:93
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A884
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE3ECBCEF01011EE89C4E08C775412E6.roa
Signing time: Mon 01 Apr 2024 10:14:53 +0000
ROA not before: Mon 01 Apr 2024 10:14:50 +0000
ROA not after: Sat 11 May 2024 10:14:50 +0000
asID: 63139
IP address blocks: 154.203.164.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43140 (0xa884)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 10:14:50 2024 GMT
Not After : May 11 10:14:50 2024 GMT
Subject: CN=660a891d-a419
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f3:18:4d:04:ba:01:43:20:7d:9f:b5:fc:47:
2b:8c:e8:da:f1:c6:0e:cc:b8:c2:7b:a9:94:f1:3f:
e1:4e:d1:de:22:75:47:de:46:7b:7f:6c:de:97:f1:
c5:f2:6c:2e:84:cb:87:5e:79:3d:f3:ee:bb:3e:ea:
93:97:b2:38:b5:d0:f6:d3:36:5f:e8:85:b7:0b:cc:
99:97:08:f5:82:9e:9f:5e:aa:3e:97:46:6c:4b:e5:
cc:19:75:e3:1d:9d:c1:c2:9b:06:a7:b4:41:37:f2:
eb:0f:dc:e9:68:b0:68:96:51:74:25:01:b0:79:9e:
f1:ab:ef:6f:56:72:cf:4e:7e:b7:60:77:d1:10:64:
61:bd:62:10:d6:b8:9d:1d:30:52:a1:7f:e5:2f:9f:
17:16:dc:4b:80:52:65:9b:d7:c6:f8:bc:54:e7:c1:
78:9e:d3:12:93:f0:1a:ec:bd:c3:9d:67:a8:7e:13:
36:bd:56:b8:00:ac:a8:4a:7f:b5:60:31:99:09:06:
b0:8d:1a:17:3d:0e:17:14:08:63:95:2e:2f:bf:e5:
b5:6b:d5:a3:a4:3f:86:0f:02:6f:ea:08:54:38:fa:
26:c3:d8:9a:5c:42:72:0d:be:e2:97:95:6b:bc:d6:
01:95:cf:f0:ad:5e:95:26:70:c8:b9:8d:96:93:47:
80:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:7F:57:51:CF:36:95:60:0C:75:6F:E6:AC:36:E3:33:54:25:38:93
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE3ECBCEF01011EE89C4E08C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.164.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:91:56:ab:28:34:ae:f6:ad:c3:cd:d0:a3:6a:16:eb:fa:d1:
4b:b9:de:09:cf:ce:97:a9:49:51:2a:df:98:e2:80:fe:e1:f8:
42:95:b2:d4:85:79:53:de:36:2d:4f:00:cb:c2:6b:53:c3:4d:
f9:de:67:79:88:34:5c:93:8e:ad:e7:f2:4e:3b:58:4d:a6:a6:
48:ae:13:27:49:74:e7:be:8a:c7:0b:4e:15:11:49:df:6e:aa:
d8:3b:71:72:8f:5e:a6:3c:e2:92:b5:8c:aa:82:75:ee:40:6f:
3e:85:50:dd:e5:7e:7e:07:54:7c:25:1a:b4:91:46:bc:ad:20:
4e:e6:59:8a:a6:1f:74:7c:28:f0:fb:ee:98:f3:54:98:04:42:
77:fd:82:65:0b:2d:14:3e:9c:3d:a9:11:69:c3:15:0c:93:ed:
74:ea:dc:6a:ba:45:db:a4:f9:99:00:eb:ca:d1:b4:cf:55:7a:
dd:1f:c1:b3:5b:76:8e:bc:b0:12:78:68:b3:c5:19:35:99:2e:
b7:d9:b1:af:cb:d5:1b:8d:a0:2d:2c:10:1e:53:56:9e:f6:8b:
9d:0a:e3:d8:92:6f:57:c1:f4:73:7e:bf:98:79:8d:6f:54:98:
e8:10:11:7b:02:58:76:24:f3:69:2f:66:54:d7:ba:9b:36:50:
35:5f:58:dd
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKiEMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDAxMTAxNDUwWhcNMjQwNTExMTAxNDUwWjAYMRYw
FAYDVQQDEw02NjBhODkxZC1hNDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzvMYTQS6AUMgfZ+1/EcrjOja8cYOzLjCe6mU8T/hTtHeInVH3kZ7f2ze
l/HF8mwuhMuHXnk98+67PuqTl7I4tdD20zZf6IW3C8yZlwj1gp6fXqo+l0ZsS+XM
GXXjHZ3BwpsGp7RBN/LrD9zpaLBollF0JQGweZ7xq+9vVnLPTn63YHfREGRhvWIQ
1ridHTBSoX/lL58XFtxLgFJlm9fG+LxU58F4ntMSk/Aa7L3DnWeofhM2vVa4AKyo
Sn+1YDGZCQawjRoXPQ4XFAhjlS4vv+W1a9WjpD+GDwJv6ghUOPomw9iaXEJyDb7i
l5VrvNYBlc/wrV6VJnDIuY2Wk0eAAQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOd/
V1HPNpVgDHVv5qw24zNUJTiTMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BRTNFQ0JDRUYwMTAxMUVFODlDNEUwOEM3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsukMA0GCSqGSIb3DQEB
CwUAA4IBAQC/kVarKDSu9q3DzdCjahbr+tFLud4Jz86XqUlRKt+Y4oD+4fhClbLU
hXlT3jYtTwDLwmtTw0353md5iDRck46t5/JOO1hNpqZIrhMnSXTnvorHC04VEUnf
bqrYO3Fyj16mPOKStYyqgnXuQG8+hVDd5X5+B1R8JRq0kUa8rSBO5lmKph90fCjw
++6Y81SYBEJ3/YJlCy0UPpw9qRFpwxUMk+106txqukXbpPmZAOvK0bTPVXrdH8Gz
W3aOvLASeGizxRk1mS632bGvy9UbjaAtLBAeU1ae9oudCuPYkm9XwfRzfr+YeY1v
VJjoEBF7Alh2JPNpL2ZU17qbNlA1X1jd
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:35 2024 by rpki-client on console-fra.rpki-client.org