Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF62191A269911EEA8B9C76F4AD9E6FC.roa
File: BF62191A269911EEA8B9C76F4AD9E6FC.roa (raw, json)
Hash identifier: aZ681e2p732nXlfmEJZ4pONjbKqJmSkhr/g6TAvP8V0=
Subject key identifier: B3:1E:01:A6:7D:0D:A9:BD:A6:26:4C:F6:1E:FE:16:6F:6A:87:D7:E7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 333E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF62191A269911EEA8B9C76F4AD9E6FC.roa
Signing time: Thu 20 Jul 2023 01:07:08 +0000
ROA not before: Thu 20 Jul 2023 01:07:04 +0000
ROA not after: Thu 13 Jun 2024 01:07:04 +0000
asID: 5065
IP address blocks: 154.212.20.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13118 (0x333e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 20 01:07:04 2023 GMT
Not After : Jun 13 01:07:04 2024 GMT
Subject: CN=64b888bc-0ab7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a1:12:aa:5f:3b:41:c2:9f:ac:1b:b7:d6:c1:
cb:db:77:cc:03:50:f3:76:7b:c8:ae:4c:5a:2a:4a:
c1:d0:0f:17:e3:ad:b9:f6:05:60:8f:70:67:8a:90:
28:2f:4e:d6:69:fd:fc:11:d3:d4:5e:cb:c2:a5:81:
94:88:c5:89:b5:6a:cd:1d:4a:ed:24:f1:61:a4:18:
d2:28:30:a5:2d:e6:8d:17:c6:89:28:ba:e4:a5:e0:
7f:e3:83:1d:3b:5f:ad:16:6f:e1:6c:45:32:c5:e4:
63:bc:02:f4:d6:9a:15:4d:16:8e:de:53:63:ad:b5:
50:e2:64:fe:0a:9d:e8:42:bf:98:19:c2:aa:a9:a6:
2e:31:ee:ed:f5:40:97:e2:0c:d0:17:a8:48:86:86:
6d:0a:6e:40:c2:bf:cd:6b:75:f7:93:67:a3:03:4d:
20:ee:2e:74:cb:96:f4:e4:1a:5b:6c:5a:b2:cf:f0:
fc:8a:55:ae:16:ab:d8:9c:e5:21:93:9a:e8:5c:ea:
7c:2d:18:a3:1e:a9:7e:bd:02:ff:b6:ae:2f:59:0e:
bb:5d:21:70:ed:e0:7d:7a:ad:23:1a:de:6e:cf:4e:
d6:89:d4:41:b2:ed:07:bc:76:59:b5:1a:61:1e:62:
6d:ce:1e:27:9f:77:b6:5d:ce:90:fb:e2:57:25:de:
c2:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:1E:01:A6:7D:0D:A9:BD:A6:26:4C:F6:1E:FE:16:6F:6A:87:D7:E7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF62191A269911EEA8B9C76F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.20.0/22
Signature Algorithm: sha256WithRSAEncryption
52:03:c1:22:4c:99:9c:c2:14:b7:4d:ca:e6:52:4d:d9:82:3f:
68:8a:d6:50:c0:e9:72:f7:58:cf:f4:05:d3:3d:84:82:80:6f:
dd:53:c8:24:27:69:25:00:31:52:eb:c3:f8:44:70:cd:fd:d1:
ac:48:eb:b3:14:a2:6d:a1:57:bb:76:06:be:64:5a:ec:a9:40:
9a:48:63:e9:e1:86:97:83:6c:ff:cd:f1:21:6a:3c:ef:39:ec:
8e:e4:96:48:6e:7f:e4:33:c1:79:bb:91:ae:95:d8:28:21:72:
e0:4d:cb:ac:09:29:c5:d4:03:ad:5b:68:86:80:72:d3:e0:6c:
9a:7a:99:dd:75:f7:44:f8:d9:8e:df:95:4e:37:8d:37:20:43:
d4:e6:f9:e4:b6:7d:0f:7d:ae:f1:95:46:68:c5:69:d3:25:bb:
55:25:85:c3:be:13:a5:0a:ba:3f:47:5c:bf:29:81:64:b1:02:
4c:f0:cd:df:24:ca:72:3f:8b:6e:db:62:83:ee:b2:8b:21:da:
4f:44:88:1b:9b:37:a3:73:0b:00:ae:b3:50:32:e9:1d:c4:27:
a3:4a:08:13:10:6f:29:9d:d0:e4:e7:27:81:4d:63:8f:a9:ef:
d9:b3:88:30:f4:70:f1:89:23:71:ab:f3:e3:26:78:6a:ca:5a:
e6:7a:df:26
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICMz4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA3MjAwMTA3MDRaFw0yNDA2MTMwMTA3MDRaMBgxFjAU
BgNVBAMTDTY0Yjg4OGJjLTBhYjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDDoRKqXztBwp+sG7fWwcvbd8wDUPN2e8iuTFoqSsHQDxfjrbn2BWCPcGeK
kCgvTtZp/fwR09Rey8KlgZSIxYm1as0dSu0k8WGkGNIoMKUt5o0XxokouuSl4H/j
gx07X60Wb+FsRTLF5GO8AvTWmhVNFo7eU2OttVDiZP4KnehCv5gZwqqppi4x7u31
QJfiDNAXqEiGhm0KbkDCv81rdfeTZ6MDTSDuLnTLlvTkGltsWrLP8PyKVa4Wq9ic
5SGTmuhc6nwtGKMeqX69Av+2ri9ZDrtdIXDt4H16rSMa3m7PTtaJ1EGy7Qe8dlm1
GmEeYm3OHiefd7ZdzpD74lcl3sKRAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUsx4B
pn0Nqb2mJkz2Hv4Wb2qH1+cwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4L0JGNjIxOTFBMjY5OTExRUVBOEI5Qzc2RjRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKa1BQwDQYJKoZIhvcNAQEL
BQADggEBAFIDwSJMmZzCFLdNyuZSTdmCP2iK1lDA6XL3WM/0BdM9hIKAb91TyCQn
aSUAMVLrw/hEcM390axI67MUom2hV7t2Br5kWuypQJpIY+nhhpeDbP/N8SFqPO85
7I7klkhuf+QzwXm7ka6V2CghcuBNy6wJKcXUA61baIaActPgbJp6md1190T42Y7f
lU43jTcgQ9Tm+eS2fQ99rvGVRmjFadMlu1UlhcO+E6UKuj9HXL8pgWSxAkzwzd8k
ynI/i27bYoPusosh2k9EiBubN6NzCwCus1Ay6R3EJ6NKCBMQbymd0OTnJ4FNY4+p
79mziDD0cPGJI3Gr8+MmeGrKWuZ63yY=
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:37 2024 by rpki-client on console-fra.rpki-client.org