Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B276544C8A7F11EEA9B16A534AD9E6FC.roa
File: B276544C8A7F11EEA9B16A534AD9E6FC.roa (raw, json)
Hash identifier: ZLFd/JDcoYb705NxrWy84OujtLCbdcElqvOna+X7Sx8=
Subject key identifier: 45:91:AB:AA:24:E5:25:22:24:79:69:EF:05:60:33:72:0B:E7:22:77
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 52B4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B276544C8A7F11EEA9B16A534AD9E6FC.roa
Signing time: Fri 24 Nov 2023 04:12:36 +0000
ROA not before: Fri 24 Nov 2023 04:12:32 +0000
ROA not after: Sun 19 May 2024 04:12:32 +0000
asID: 140614
IP address blocks: 154.196.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21172 (0x52b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 24 04:12:32 2023 GMT
Not After : May 19 04:12:32 2024 GMT
Subject: CN=656022b3-ea65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:1e:c2:0c:27:4e:e9:da:63:ef:55:35:13:37:
4d:5d:4c:a2:ea:fd:e3:5e:fe:76:5a:03:28:b4:ea:
9f:b7:c7:7c:20:51:bd:f7:c9:6d:8c:7e:df:5e:4d:
4c:5a:c7:7d:1a:f7:21:07:ef:74:74:87:37:36:96:
98:5a:25:48:0c:a2:18:3c:ad:5c:f8:89:86:41:48:
b5:be:a6:33:a2:ce:c0:54:1e:43:56:65:57:82:30:
ee:44:dd:c5:11:7d:dc:ab:3c:13:b5:32:4e:82:a9:
2a:13:8c:ad:62:c7:59:23:ea:30:5d:7a:1a:91:67:
ff:f8:18:a7:81:73:9d:c1:e3:f8:71:98:24:16:3c:
a2:61:56:1b:89:45:6e:c2:4a:1d:09:f1:f7:a0:f3:
c4:37:c5:d9:a7:66:49:a5:69:9a:48:e7:3d:f1:3f:
dd:b5:b8:d5:f4:32:99:c8:6b:2d:f2:cf:49:ae:af:
f4:53:07:02:95:ed:2a:eb:fb:d3:7a:36:a9:ff:19:
75:16:9f:fd:ff:40:f2:0c:d6:be:b7:53:fe:89:43:
ac:51:48:dc:8c:ed:c1:04:bb:c1:f5:fd:4b:25:eb:
0d:bc:84:c0:11:e7:31:79:eb:fd:b9:ea:e3:8e:49:
12:62:06:f5:3b:ee:f6:71:7e:a8:1a:bc:d6:47:31:
09:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:91:AB:AA:24:E5:25:22:24:79:69:EF:05:60:33:72:0B:E7:22:77
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B276544C8A7F11EEA9B16A534AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.14.0/24
Signature Algorithm: sha256WithRSAEncryption
01:75:4f:42:66:e7:d4:fd:b5:7d:ef:de:05:74:1f:7e:de:14:
54:c0:b2:5d:df:c9:25:2d:7d:7a:8c:a0:42:1c:0a:a2:81:62:
d7:60:d3:e8:5b:98:ac:59:80:0e:2e:06:be:94:f3:4c:0c:2d:
c3:2d:ae:ce:cb:4c:f3:0c:0c:01:11:e3:78:d9:b1:d6:e7:da:
2e:5d:96:3c:11:59:be:bd:47:7e:9c:86:02:fe:46:52:e0:6a:
11:b3:ac:d0:e5:56:4d:94:95:36:89:10:72:69:cf:1f:9b:4a:
86:e7:88:dc:b0:98:f8:f9:b5:68:47:35:bb:ef:e3:8b:ee:5d:
e2:4a:4a:1d:56:18:d8:47:5e:44:eb:f7:9a:e0:17:7b:fc:71:
c2:45:d4:65:21:cd:4d:c6:53:4c:c2:ae:14:7e:02:90:1e:c6:
ed:8b:99:2f:f2:4d:df:26:77:ed:a3:1c:21:c5:e5:b7:d9:e3:
94:79:00:09:42:49:56:ef:3a:03:03:17:b2:44:02:33:4e:53:
2c:23:24:db:84:2b:86:49:ee:73:46:31:1b:ad:57:56:5a:29:
b4:f0:25:e8:db:c9:c6:79:3e:f3:ac:ab:ad:a9:d0:86:b9:a4:
fd:34:d9:d2:fd:5d:6a:f1:c0:db:bb:b1:87:54:9c:5b:47:5c:
63:e4:f5:17
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICUrQwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzExMjQwNDEyMzJaFw0yNDA1MTkwNDEyMzJaMBgxFjAU
BgNVBAMTDTY1NjAyMmIzLWVhNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDIHsIMJ07p2mPvVTUTN01dTKLq/eNe/nZaAyi06p+3x3wgUb33yW2Mft9e
TUxax30a9yEH73R0hzc2lphaJUgMohg8rVz4iYZBSLW+pjOizsBUHkNWZVeCMO5E
3cURfdyrPBO1Mk6CqSoTjK1ix1kj6jBdehqRZ//4GKeBc53B4/hxmCQWPKJhVhuJ
RW7CSh0J8feg88Q3xdmnZkmlaZpI5z3xP921uNX0MpnIay3yz0mur/RTBwKV7Srr
+9N6Nqn/GXUWn/3/QPIM1r63U/6JQ6xRSNyM7cEEu8H1/Usl6w28hMAR5zF56/25
6uOOSRJiBvU77vZxfqgavNZHMQmJAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQURZGr
qiTlJSIkeWnvBWAzcgvnIncwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4L0IyNzY1NDRDOEE3RjExRUVBOUIxNkE1MzRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaxA4wDQYJKoZIhvcNAQEL
BQADggEBAAF1T0Jm59T9tX3v3gV0H37eFFTAsl3fySUtfXqMoEIcCqKBYtdg0+hb
mKxZgA4uBr6U80wMLcMtrs7LTPMMDAER43jZsdbn2i5dljwRWb69R36chgL+RlLg
ahGzrNDlVk2UlTaJEHJpzx+bSobniNywmPj5tWhHNbvv44vuXeJKSh1WGNhHXkTr
95rgF3v8ccJF1GUhzU3GU0zCrhR+ApAexu2LmS/yTd8md+2jHCHF5bfZ45R5AAlC
SVbvOgMDF7JEAjNOUywjJNuEK4ZJ7nNGMRutV1ZaKbTwJejbycZ5PvOsq62p0Ia5
pP002dL9XWrxwNu7sYdUnFtHXGPk9Rc=
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:35 2024 by rpki-client on console-fra.rpki-client.org