Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE7EEAC0E75311EE9E3C1AAA775412E6.roa
File: BE7EEAC0E75311EE9E3C1AAA775412E6.roa (raw, json)
Hash identifier: pTyPv9rBxmhfUotqipI4lXJWHsIvBp2U+1jiu6v2iKQ=
Subject key identifier: 7C:45:D5:D9:DE:64:B1:65:0C:51:15:5C:38:E7:B3:21:05:BB:D1:79
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A48B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE7EEAC0E75311EE9E3C1AAA775412E6.roa
Signing time: Thu 21 Mar 2024 07:22:16 +0000
ROA not before: Thu 21 Mar 2024 07:22:13 +0000
ROA not after: Tue 23 Apr 2024 07:22:13 +0000
asID: 44559
IP address blocks: 154.218.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42123 (0xa48b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 07:22:13 2024 GMT
Not After : Apr 23 07:22:13 2024 GMT
Subject: CN=65fbe028-8a49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9f:c8:a4:5a:35:66:84:12:ed:12:29:30:4b:
4f:bb:3e:e7:2e:33:c6:ba:49:46:bb:db:3d:49:a1:
65:db:e4:d2:db:1f:9c:91:3d:4f:ba:e3:e9:b7:af:
5a:03:e9:7f:83:a9:4a:a1:96:0f:fd:12:b6:8d:01:
cd:c5:49:db:a4:5a:dc:4d:54:f5:e9:82:29:93:cd:
6c:70:75:ff:cc:f0:86:6f:cf:5d:10:fb:36:14:83:
11:dc:77:d7:1e:76:55:e6:76:96:94:a3:7e:1f:d8:
59:48:41:3c:76:a5:95:5f:72:5f:e2:0e:54:70:00:
e6:13:29:8a:c4:49:cf:10:54:18:45:d3:09:c3:b0:
b5:0b:8e:94:bf:fb:d5:5d:1b:a8:f1:4a:3a:f0:42:
c7:c2:f0:90:96:3e:f1:b7:d3:87:74:83:13:ce:db:
f2:0b:22:72:09:ad:ca:27:6d:30:d1:c5:97:b0:08:
50:bd:5e:8b:82:a7:46:9b:0d:15:d0:76:b0:41:b9:
97:5c:4c:ae:04:f3:61:b0:80:fd:82:c6:c1:a7:0c:
6e:76:93:fa:59:b2:2c:86:bf:c0:75:43:4e:ff:04:
44:18:c6:ad:c2:e4:cb:64:9a:39:b9:b5:f2:ba:21:
80:fb:f8:46:1f:78:ea:a0:5e:9c:23:5b:47:27:1b:
cc:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:45:D5:D9:DE:64:B1:65:0C:51:15:5C:38:E7:B3:21:05:BB:D1:79
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE7EEAC0E75311EE9E3C1AAA775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.51.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:63:36:03:fd:e2:98:fe:86:54:8a:38:3c:5a:de:78:f0:6f:
cc:4c:00:0e:26:19:45:8e:03:33:1e:ad:42:f1:90:2f:6f:1f:
d0:f2:be:64:f4:7e:44:92:54:74:69:ac:d8:c3:66:39:5e:e7:
e1:77:a8:a4:76:7d:41:d8:f8:3d:f7:13:0e:c3:bb:cd:82:22:
85:7d:31:34:fa:e0:6b:4a:11:42:c0:9a:2a:a1:69:28:c6:35:
e6:24:85:9d:b6:4b:5a:4b:a1:b5:0a:df:e4:ef:1e:71:93:07:
cc:ed:35:2c:ec:84:78:ce:dc:6d:51:87:4e:7b:01:31:c4:b5:
8e:f7:84:02:ff:32:5b:6a:01:9e:16:73:1f:bd:c1:e8:cd:a6:
ce:09:9f:ea:17:78:4e:18:53:ac:e9:53:ba:ef:ef:2d:1c:3a:
3f:7a:18:5f:5b:ec:41:62:62:a6:be:88:81:75:49:5f:ef:35:
8f:a8:e2:36:3d:65:69:80:87:b1:89:86:fa:cb:71:20:a3:62:
79:bf:c1:67:25:b2:cc:60:6f:3b:a8:18:28:71:d5:30:51:e4:
0d:e5:fe:8b:68:9b:e1:36:57:cd:39:bf:de:22:b3:78:55:d8:
3d:65:61:40:55:f6:3d:7e:89:5c:4e:c3:ba:78:0c:9f:bf:4a:
eb:97:06:ca
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKSLMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMDcyMjEzWhcNMjQwNDIzMDcyMjEzWjAYMRYw
FAYDVQQDEw02NWZiZTAyOC04YTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvZ/IpFo1ZoQS7RIpMEtPuz7nLjPGuklGu9s9SaFl2+TS2x+ckT1PuuPp
t69aA+l/g6lKoZYP/RK2jQHNxUnbpFrcTVT16YIpk81scHX/zPCGb89dEPs2FIMR
3HfXHnZV5naWlKN+H9hZSEE8dqWVX3Jf4g5UcADmEymKxEnPEFQYRdMJw7C1C46U
v/vVXRuo8Uo68ELHwvCQlj7xt9OHdIMTztvyCyJyCa3KJ20w0cWXsAhQvV6LgqdG
mw0V0HawQbmXXEyuBPNhsID9gsbBpwxudpP6WbIshr/AdUNO/wREGMatwuTLZJo5
ubXyuiGA+/hGH3jqoF6cI1tHJxvMZwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHxF
1dneZLFlDFEVXDjnsyEFu9F5MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CRTdFRUFDMEU3NTMxMUVFOUUzQzFBQUE3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtozMA0GCSqGSIb3DQEB
CwUAA4IBAQBeYzYD/eKY/oZUijg8Wt548G/MTAAOJhlFjgMzHq1C8ZAvbx/Q8r5k
9H5EklR0aazYw2Y5Xufhd6ikdn1B2Pg99xMOw7vNgiKFfTE0+uBrShFCwJoqoWko
xjXmJIWdtktaS6G1Ct/k7x5xkwfM7TUs7IR4ztxtUYdOewExxLWO94QC/zJbagGe
FnMfvcHozabOCZ/qF3hOGFOs6VO67+8tHDo/ehhfW+xBYmKmvoiBdUlf7zWPqOI2
PWVpgIexiYb6y3Ego2J5v8FnJbLMYG87qBgocdUwUeQN5f6LaJvhNlfNOb/eIrN4
Vdg9ZWFAVfY9folcTsO6eAyfv0rrlwbK
-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:25 2024 by rpki-client on console-fra.rpki-client.org