Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B7A7D85A10DB11EEBF23F9264AD9E6FC.roa
File: B7A7D85A10DB11EEBF23F9264AD9E6FC.roa (raw, json)
Hash identifier: Y9CZ8oKrPL7WijOia6+QvzEDxyoT57C8aLsbeifwQYY=
Subject key identifier: 27:FE:F4:2E:E2:6D:7C:4D:A7:77:48:62:79:56:DC:D5:8E:CB:29:7D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2D58
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B7A7D85A10DB11EEBF23F9264AD9E6FC.roa
Signing time: Thu 22 Jun 2023 09:03:56 +0000
ROA not before: Thu 22 Jun 2023 09:03:52 +0000
ROA not after: Fri 05 Jul 2024 09:03:52 +0000
asID: 210334
IP address blocks: 154.89.48.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11608 (0x2d58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 22 09:03:52 2023 GMT
Not After : Jul 5 09:03:52 2024 GMT
Subject: CN=64940e7c-3a0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:99:ab:88:05:e0:0f:fc:df:cc:46:18:74:23:
74:cb:81:ba:e6:03:1e:da:c4:d5:f6:ac:0b:59:63:
54:8d:41:3e:cb:ea:cb:6c:6c:b1:d2:1b:b6:c4:c0:
49:0a:91:29:47:8d:cf:54:76:2d:1b:9f:72:89:ea:
85:4a:24:0d:52:74:05:b7:8d:e2:f2:95:eb:e8:7c:
8a:13:7f:9a:24:f4:92:84:9a:dd:c5:d1:0a:c0:7c:
d3:6e:42:5d:b5:12:36:dd:4d:05:f3:14:58:c5:99:
77:dc:f2:b3:74:2f:bd:cf:ef:42:63:28:e7:21:71:
95:bf:32:93:aa:c8:a0:da:87:49:85:c8:af:90:23:
16:8c:87:7e:e2:54:b7:c5:22:2b:e0:5e:06:a5:91:
ab:6d:16:96:3a:2b:c7:7c:30:4e:47:d0:18:95:27:
5f:b1:26:cb:4b:17:21:65:5f:da:f7:6b:30:2b:78:
c1:87:df:fe:ef:f6:92:6e:7c:7a:c1:4d:6c:f0:c4:
c2:b1:23:69:eb:46:6e:7a:86:dd:e3:52:f9:17:a9:
37:e9:93:cf:ae:52:57:d5:47:37:77:eb:50:06:36:
7b:4b:0e:61:51:05:56:6b:e4:e9:2e:d8:95:14:fc:
cb:09:0c:c9:8a:19:1c:34:43:0b:2a:5b:62:56:1e:
4e:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:FE:F4:2E:E2:6D:7C:4D:A7:77:48:62:79:56:DC:D5:8E:CB:29:7D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B7A7D85A10DB11EEBF23F9264AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.48.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:b5:16:30:e8:5c:f7:90:84:c2:ca:eb:a0:9c:ee:4b:4f:44:
28:c8:ff:7d:8e:f4:71:89:1c:13:a1:40:68:8c:88:09:57:de:
f5:80:17:78:0c:78:6b:e0:fe:b5:da:e6:7a:56:60:4a:3d:9d:
2d:9c:fd:14:fa:05:28:63:eb:6a:48:bc:1b:b9:a8:48:4f:66:
e3:64:78:ea:8a:45:3b:e2:95:80:dc:2f:ae:5a:c0:e4:19:9b:
de:da:2d:37:a3:1a:d8:5d:16:20:85:3a:9f:d7:46:cd:45:7e:
3d:a5:a2:55:7b:5e:ce:f7:7f:3b:77:f9:2e:9d:af:01:2b:b5:
5e:0f:eb:21:d3:ea:37:dc:10:8d:62:88:f6:84:e3:f9:b4:7f:
76:5f:4c:6f:59:87:31:73:15:fd:04:0e:fa:f4:17:b4:f7:3c:
11:a7:f1:d5:d5:e6:7a:98:74:5a:8d:12:f6:9d:42:09:a6:c6:
d2:e8:c9:d6:aa:f6:64:d6:7b:66:19:e9:80:c1:36:19:74:d3:
8b:da:92:e5:29:42:e9:89:7d:a4:c0:e0:f7:4e:12:b5:80:60:
95:f8:38:e6:00:20:df:2b:c7:ef:c2:9d:dd:9d:eb:ee:13:11:
46:24:ac:86:19:04:66:ab:5e:fe:52:87:d3:df:86:3e:50:39:
0a:97:9d:09
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICLVgwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA2MjIwOTAzNTJaFw0yNDA3MDUwOTAzNTJaMBgxFjAU
BgNVBAMTDTY0OTQwZTdjLTNhMGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDGmauIBeAP/N/MRhh0I3TLgbrmAx7axNX2rAtZY1SNQT7L6stsbLHSG7bE
wEkKkSlHjc9Udi0bn3KJ6oVKJA1SdAW3jeLylevofIoTf5ok9JKEmt3F0QrAfNNu
Ql21EjbdTQXzFFjFmXfc8rN0L73P70JjKOchcZW/MpOqyKDah0mFyK+QIxaMh37i
VLfFIivgXgalkattFpY6K8d8ME5H0BiVJ1+xJstLFyFlX9r3azAreMGH3/7v9pJu
fHrBTWzwxMKxI2nrRm56ht3jUvkXqTfpk8+uUlfVRzd361AGNntLDmFRBVZr5Oku
2JUU/MsJDMmKGRw0QwsqW2JWHk6bAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUJ/70
LuJtfE2nd0hieVbc1Y7LKX0wHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4L0I3QTdEODVBMTBEQjExRUVCRjIzRjkyNjRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaWTAwDQYJKoZIhvcNAQEL
BQADggEBAE21FjDoXPeQhMLK66Cc7ktPRCjI/32O9HGJHBOhQGiMiAlX3vWAF3gM
eGvg/rXa5npWYEo9nS2c/RT6BShj62pIvBu5qEhPZuNkeOqKRTvilYDcL65awOQZ
m97aLTejGthdFiCFOp/XRs1Ffj2lolV7Xs73fzt3+S6drwErtV4P6yHT6jfcEI1i
iPaE4/m0f3ZfTG9ZhzFzFf0EDvr0F7T3PBGn8dXV5nqYdFqNEvadQgmmxtLoydaq
9mTWe2YZ6YDBNhl004vakuUpQumJfaTA4PdOErWAYJX4OOYAIN8rx+/Cnd2d6+4T
EUYkrIYZBGarXv5Sh9Pfhj5QOQqXnQk=
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:36 2024 by rpki-client on console-fra.rpki-client.org