Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BD6D278AFD3A11EE865A8552017001B1.roa
File: BD6D278AFD3A11EE865A8552017001B1.roa (raw, json)
Hash identifier: CtWCQvCwUqJ3Me/1gNk6MYGLHOsnpOV5+kh7vZ+1F8o=
Subject key identifier: BE:38:35:14:AC:D1:F1:01:4D:69:FB:69:4A:7E:FC:B0:86:5E:68:08
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AE19
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BD6D278AFD3A11EE865A8552017001B1.roa
Signing time: Thu 18 Apr 2024 04:18:43 +0000
ROA not before: Thu 18 Apr 2024 04:18:38 +0000
ROA not after: Fri 26 Apr 2024 04:18:38 +0000
asID: 39600
IP address blocks: 154.198.40.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 04:18:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44569 (0xae19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 18 04:18:38 2024 GMT
Not After : Apr 26 04:18:38 2024 GMT
Subject: CN=66209f22-3de1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:3b:49:45:11:4c:1d:42:7d:36:ef:59:8d:65:
94:68:0d:08:fd:01:09:eb:0b:a7:3a:52:5d:c5:1e:
76:cc:c1:79:14:7a:c1:c6:24:04:1e:a8:8c:68:ef:
e8:95:ad:69:2f:63:63:7c:39:c7:b6:5f:ba:76:6b:
a6:fe:96:44:03:7c:0f:d8:29:73:4f:2c:3f:5a:40:
57:85:f3:20:3f:61:de:b4:19:69:74:b3:41:e5:ca:
2c:63:22:0e:6d:6f:a3:b0:51:12:51:86:e5:50:f9:
f1:fd:23:7d:b0:de:1a:b7:23:a1:f0:02:0f:e6:65:
14:2a:f9:12:02:df:bb:59:1d:e0:5e:75:c1:99:1b:
8a:3c:41:c8:e6:6b:89:5e:bb:9c:38:00:ca:73:83:
85:b1:4c:ba:71:80:4d:6a:42:2c:78:8c:a1:37:aa:
0e:6d:de:bb:19:0d:d9:4b:8c:8b:be:a9:92:d8:f7:
a7:a8:19:45:de:d1:b1:9d:29:a3:12:c1:5a:3f:f2:
c9:af:e6:13:0b:4b:65:6d:df:f7:bc:61:3a:3c:25:
06:3d:8e:bb:ff:20:d6:f1:d9:4b:8c:51:ce:26:f4:
0a:99:ca:db:c2:04:49:3a:29:11:75:11:d7:4d:ba:
43:bf:e1:28:2c:2e:af:21:03:c6:45:b7:89:c9:f8:
c4:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:38:35:14:AC:D1:F1:01:4D:69:FB:69:4A:7E:FC:B0:86:5E:68:08
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BD6D278AFD3A11EE865A8552017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.40.0/21
Signature Algorithm: sha256WithRSAEncryption
6d:db:65:e5:5d:d8:2b:76:52:9a:07:8d:ba:38:3f:0f:f1:ab:
fa:64:37:a2:d4:29:64:bd:56:89:f2:04:ca:9e:83:e3:5f:d0:
f1:95:7b:db:7f:79:53:41:15:64:4e:82:be:4c:10:58:64:07:
4b:7f:c2:54:f0:55:be:93:2f:e3:b9:d1:b7:3e:f3:df:ae:97:
c5:79:01:ad:27:5a:4f:0f:ee:b9:5f:51:19:93:9f:4a:e2:e2:
93:1e:a9:5b:cc:c6:ab:06:e3:33:45:cf:ca:09:cc:92:ca:27:
1b:10:67:e0:04:ab:24:9b:bb:9e:fb:79:1f:f7:d1:44:9a:1d:
52:2c:21:b0:53:00:45:34:ff:5e:5b:cf:d9:bf:20:2f:24:ff:
59:bf:64:99:2a:7d:ad:b6:78:a6:69:b3:a2:5b:df:1e:15:34:
20:7e:c8:8d:2b:a4:9c:4d:52:8f:2f:37:6b:a6:a6:d7:c8:81:
49:67:ca:54:42:4b:e0:34:39:f8:70:e9:6a:36:6d:7c:34:8d:
9e:d9:49:84:be:6b:54:76:ce:5b:ba:74:6d:63:21:a9:e5:95:
14:72:20:79:e2:77:fe:ff:59:a5:99:2f:de:ef:6e:c9:c9:b3:
35:4e:43:04:7b:34:2a:ad:5c:be:2f:55:8b:2e:af:52:05:52:
73:46:93:2d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAK4ZMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDE4MDQxODM4WhcNMjQwNDI2MDQxODM4WjAYMRYw
FAYDVQQDEw02NjIwOWYyMi0zZGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxDtJRRFMHUJ9Nu9ZjWWUaA0I/QEJ6wunOlJdxR52zMF5FHrBxiQEHqiM
aO/ola1pL2NjfDnHtl+6dmum/pZEA3wP2ClzTyw/WkBXhfMgP2HetBlpdLNB5cos
YyIObW+jsFESUYblUPnx/SN9sN4atyOh8AIP5mUUKvkSAt+7WR3gXnXBmRuKPEHI
5muJXrucOADKc4OFsUy6cYBNakIseIyhN6oObd67GQ3ZS4yLvqmS2PenqBlF3tGx
nSmjEsFaP/LJr+YTC0tlbd/3vGE6PCUGPY67/yDW8dlLjFHOJvQKmcrbwgRJOikR
dRHXTbpDv+EoLC6vIQPGRbeJyfjEjwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFL44
NRSs0fEBTWn7aUp+/LCGXmgIMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CRDZEMjc4QUZEM0ExMUVFODY1QTg1NTIwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDmsYoMA0GCSqGSIb3DQEB
CwUAA4IBAQBt22XlXdgrdlKaB426OD8P8av6ZDei1ClkvVaJ8gTKnoPjX9DxlXvb
f3lTQRVkToK+TBBYZAdLf8JU8FW+ky/judG3PvPfrpfFeQGtJ1pPD+65X1EZk59K
4uKTHqlbzMarBuMzRc/KCcySyicbEGfgBKskm7ue+3kf99FEmh1SLCGwUwBFNP9e
W8/ZvyAvJP9Zv2SZKn2ttnimabOiW98eFTQgfsiNK6ScTVKPLzdrpqbXyIFJZ8pU
QkvgNDn4cOlqNm18NI2e2UmEvmtUds5bunRtYyGp5ZUUciB54nf+/1mlmS/e727J
ybM1TkMEezQqrVy+L1WLLq9SBVJzRpMt
-----END CERTIFICATE-----
Generated at Thu Apr 25 22:33:38 2024 by rpki-client on console-fra.rpki-client.org