Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BAB9390CF91711EDA3BCD6194AD9E6FC.roa
File: BAB9390CF91711EDA3BCD6194AD9E6FC.roa (raw, json)
Hash identifier: eBVSp1bKlTpyg5y33LYAHguoQxqXODBnyfQFTC/SJmg=
Subject key identifier: C0:3E:0A:F5:4B:D8:EC:6F:81:77:C9:CC:AB:7B:F5:84:73:73:38:37
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2646
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BAB9390CF91711EDA3BCD6194AD9E6FC.roa
Signing time: Tue 23 May 2023 03:13:03 +0000
ROA not before: Tue 23 May 2023 03:12:59 +0000
ROA not after: Tue 20 Aug 2024 03:12:59 +0000
asID: 399674
IP address blocks: 154.205.240.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9798 (0x2646)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 23 03:12:59 2023 GMT
Not After : Aug 20 03:12:59 2024 GMT
Subject: CN=646c2f3f-0bb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:be:92:18:2b:5e:e1:4d:4c:0c:33:ef:6e:11:
67:50:0c:2b:fd:6e:48:10:f5:40:e2:3b:8e:22:4e:
ea:49:62:9c:f1:84:aa:b0:a1:a7:a6:93:5e:da:23:
6d:83:f2:c4:92:27:09:8b:a6:4e:c8:0f:29:45:f4:
5a:b9:5a:9c:1b:68:85:f9:57:c6:68:08:f2:2b:df:
79:53:82:23:81:4d:3e:47:da:1b:22:5c:3b:f6:85:
34:65:c6:c3:c3:9c:0b:d0:7e:8b:8e:e7:28:20:81:
31:53:24:4b:37:ac:df:f7:5f:0b:01:76:53:f3:5e:
fd:fb:cc:a2:c2:73:e3:2e:0b:a5:74:ce:c6:a9:52:
cb:6e:7b:89:8c:35:36:50:31:6a:6d:85:7c:3b:45:
1b:09:e6:9d:76:cb:b5:b7:79:c2:1e:e2:68:d7:d1:
15:69:ea:cc:90:b0:64:25:45:77:d7:9d:1e:b6:21:
e1:98:d4:9a:20:9c:60:3f:34:7e:fa:39:90:01:24:
e7:2a:f5:4e:3a:35:2b:27:e4:4e:69:79:cb:ac:d8:
ab:56:b5:40:3a:a2:64:ea:b7:62:17:b1:b9:cf:ab:
ad:88:02:c7:16:be:bb:a4:2c:c8:d6:39:ad:59:b3:
f9:d0:eb:71:09:94:32:e9:d3:4e:21:d7:96:7a:a2:
c6:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:3E:0A:F5:4B:D8:EC:6F:81:77:C9:CC:AB:7B:F5:84:73:73:38:37
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BAB9390CF91711EDA3BCD6194AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.240.0/22
Signature Algorithm: sha256WithRSAEncryption
91:23:b3:16:a3:db:d3:82:25:e2:2e:2d:36:3b:3a:ad:97:be:
f0:e4:9e:ca:c8:6f:7b:cf:97:32:8c:76:b0:e1:b3:fe:18:ae:
e3:8a:0a:48:47:28:45:45:2f:b4:a0:e9:89:33:00:96:36:0d:
4d:2e:58:79:a5:16:03:88:e0:2d:71:e4:d9:8e:af:8c:61:38:
0e:b7:08:92:b9:d3:f3:01:63:34:be:94:37:a8:be:76:6f:7d:
31:a2:f6:b1:37:61:4c:3a:83:f5:64:d8:cd:6e:2d:d7:ce:be:
d7:54:34:82:a1:49:f8:64:b5:da:f5:17:1f:71:e9:13:33:ca:
d0:da:ac:2d:b9:df:af:f9:00:fa:3c:05:58:fb:9d:44:21:d7:
33:27:40:c2:f7:9c:aa:52:af:61:15:75:12:cf:ef:fe:ad:09:
cd:50:bb:9d:23:47:cd:cc:af:bf:05:b1:1a:f0:89:c4:ec:e6:
6f:e3:14:3f:1b:80:98:dd:4d:63:e5:16:de:0b:f7:18:0d:e4:
42:0d:bb:53:a5:c0:97:ec:97:bc:bd:f7:9b:23:b2:1f:32:ef:
11:fd:fb:c2:dd:61:c0:53:a4:f5:6c:cc:71:be:c6:29:c5:ca:
72:bd:2f:9e:4e:2f:73:b4:03:78:55:71:54:9d:6e:e8:e9:51:
91:9b:26:95
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICJkYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA1MjMwMzEyNTlaFw0yNDA4MjAwMzEyNTlaMBgxFjAU
BgNVBAMTDTY0NmMyZjNmLTBiYjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC4vpIYK17hTUwMM+9uEWdQDCv9bkgQ9UDiO44iTupJYpzxhKqwoaemk17a
I22D8sSSJwmLpk7IDylF9Fq5WpwbaIX5V8ZoCPIr33lTgiOBTT5H2hsiXDv2hTRl
xsPDnAvQfouO5ygggTFTJEs3rN/3XwsBdlPzXv37zKLCc+MuC6V0zsapUstue4mM
NTZQMWpthXw7RRsJ5p12y7W3ecIe4mjX0RVp6syQsGQlRXfXnR62IeGY1JognGA/
NH76OZABJOcq9U46NSsn5E5pecus2KtWtUA6omTqt2IXsbnPq62IAscWvrukLMjW
Oa1Zs/nQ63EJlDLp004h15Z6osaNAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUwD4K
9UvY7G+Bd8nMq3v1hHNzODcwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4L0JBQjkzOTBDRjkxNzExRURBM0JDRDYxOTRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKazfAwDQYJKoZIhvcNAQEL
BQADggEBAJEjsxaj29OCJeIuLTY7Oq2XvvDknsrIb3vPlzKMdrDhs/4YruOKCkhH
KEVFL7Sg6YkzAJY2DU0uWHmlFgOI4C1x5NmOr4xhOA63CJK50/MBYzS+lDeovnZv
fTGi9rE3YUw6g/Vk2M1uLdfOvtdUNIKhSfhktdr1Fx9x6RMzytDarC2536/5APo8
BVj7nUQh1zMnQML3nKpSr2EVdRLP7/6tCc1Qu50jR83Mr78FsRrwicTs5m/jFD8b
gJjdTWPlFt4L9xgN5EINu1OlwJfsl7y995sjsh8y7xH9+8LdYcBTpPVszHG+xinF
ynK9L55OL3O0A3hVcVSdbujpUZGbJpU=
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:36 2024 by rpki-client on console-fra.rpki-client.org