Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7DD3DDCFD2A11EE9C46CD45017001B1.roa
File: C7DD3DDCFD2A11EE9C46CD45017001B1.roa (raw, json)
Hash identifier: Mos8+oqYHgFSJQSmzZeZ6LsRGJdT18mG9a7BuWVAIxk=
Subject key identifier: F5:1E:01:66:CF:EF:E3:48:A6:9B:68:B2:3F:F2:94:E8:5D:11:FE:05
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ADF5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7DD3DDCFD2A11EE9C46CD45017001B1.roa
Signing time: Thu 18 Apr 2024 02:24:28 +0000
ROA not before: Thu 18 Apr 2024 02:24:24 +0000
ROA not after: Fri 24 May 2024 02:24:24 +0000
asID: 211826
IP address blocks: 154.194.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44533 (0xadf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 18 02:24:24 2024 GMT
Not After : May 24 02:24:24 2024 GMT
Subject: CN=6620845c-32d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6b:12:d2:de:c6:48:78:10:a1:e2:1c:7c:23:
24:6f:95:e3:62:71:1e:8f:fe:14:45:fd:db:d3:7a:
73:0a:39:4e:be:63:81:44:c5:23:d0:ea:88:e7:77:
1a:a9:e3:50:fa:c0:0f:a9:83:39:93:97:66:99:91:
41:a0:42:38:c7:73:ee:63:1d:3a:7f:db:06:a2:0a:
50:08:59:2b:df:f1:d9:46:03:df:9d:98:82:d7:4f:
59:c9:6c:b7:e9:9f:2c:71:16:5c:02:87:5b:60:49:
44:f0:2a:4c:26:52:eb:d9:17:53:fd:b1:f9:85:0a:
df:c4:49:72:bb:ca:e3:90:bf:93:73:77:5b:84:29:
e1:fb:74:ce:69:0d:65:c1:12:0a:33:75:60:23:bf:
4c:a2:ac:2f:a9:fb:c8:1c:f9:87:ef:13:18:02:d4:
f1:57:53:6f:db:73:3b:5b:0b:38:ff:5b:32:0c:cd:
f0:fd:01:4d:58:1c:74:e2:fd:f7:36:0c:22:72:93:
1b:80:f4:78:89:12:bd:48:36:d6:65:08:07:2b:12:
2f:4c:57:91:33:3a:3a:9c:3b:a8:93:c6:bc:13:8d:
b6:6b:26:28:cb:7d:60:10:86:ab:bb:c3:34:67:df:
d0:44:4c:10:78:01:34:35:50:e8:4f:ca:d4:ea:eb:
f0:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:1E:01:66:CF:EF:E3:48:A6:9B:68:B2:3F:F2:94:E8:5D:11:FE:05
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7DD3DDCFD2A11EE9C46CD45017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.55.0/24
Signature Algorithm: sha256WithRSAEncryption
66:98:f5:14:65:05:fa:db:b3:eb:d9:0e:a0:9d:0e:b2:9e:6c:
d1:c9:a2:6b:41:76:ab:5d:a0:c2:da:d1:cf:0f:c1:ac:47:ef:
b6:17:d1:b3:de:1a:9c:aa:60:e8:96:77:67:b8:62:8c:7a:b6:
aa:1a:e9:e2:3a:b9:0f:fb:cd:ee:76:91:58:aa:2b:89:18:53:
2c:bd:c0:60:20:b8:28:6c:ef:1e:35:57:f7:40:dd:dd:c7:ed:
8e:c1:2e:26:69:73:9c:ba:87:16:36:cb:83:b9:d3:83:0b:db:
a5:df:88:b3:d3:3f:42:7b:62:2a:f9:75:45:d1:22:ee:2e:c3:
03:37:fe:d6:7f:94:ff:ef:6d:79:89:85:e0:e5:ff:07:cd:0d:
09:5e:a1:72:ad:de:46:a9:77:a7:69:24:f3:ea:18:6c:9f:98:
63:52:5f:2c:c2:bb:8b:36:ba:91:b5:6e:42:60:ef:60:2f:c7:
96:e3:fc:f0:84:32:5a:69:16:0c:f9:87:a0:8c:d5:dd:68:c2:
17:e3:2d:41:00:21:4b:06:95:2e:94:ee:27:98:e6:1e:0d:09:
8e:cd:f7:48:9c:ac:7c:f4:24:f9:5a:63:3b:0f:b9:ac:04:a2:
50:22:e6:0c:43:e3:ad:be:46:47:df:85:96:2f:24:6f:b6:1a:
c2:86:35:1c
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAK31MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDE4MDIyNDI0WhcNMjQwNTI0MDIyNDI0WjAYMRYw
FAYDVQQDEw02NjIwODQ1Yy0zMmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAt2sS0t7GSHgQoeIcfCMkb5XjYnEej/4URf3b03pzCjlOvmOBRMUj0OqI
53caqeNQ+sAPqYM5k5dmmZFBoEI4x3PuYx06f9sGogpQCFkr3/HZRgPfnZiC109Z
yWy36Z8scRZcAodbYElE8CpMJlLr2RdT/bH5hQrfxElyu8rjkL+Tc3dbhCnh+3TO
aQ1lwRIKM3VgI79MoqwvqfvIHPmH7xMYAtTxV1Nv23M7Wws4/1syDM3w/QFNWBx0
4v33NgwicpMbgPR4iRK9SDbWZQgHKxIvTFeRMzo6nDuok8a8E422ayYoy31gEIar
u8M0Z9/QREwQeAE0NVDoT8rU6uvwdwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPUe
AWbP7+NIpptosj/ylOhdEf4FMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9DN0REM0REQ0ZEMkExMUVFOUM0NkNENDUwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsI3MA0GCSqGSIb3DQEB
CwUAA4IBAQBmmPUUZQX627Pr2Q6gnQ6ynmzRyaJrQXarXaDC2tHPD8GsR++2F9Gz
3hqcqmDolndnuGKMeraqGuniOrkP+83udpFYqiuJGFMsvcBgILgobO8eNVf3QN3d
x+2OwS4maXOcuocWNsuDudODC9ul34iz0z9Ce2Iq+XVF0SLuLsMDN/7Wf5T/7215
iYXg5f8HzQ0JXqFyrd5GqXenaSTz6hhsn5hjUl8swruLNrqRtW5CYO9gL8eW4/zw
hDJaaRYM+YegjNXdaMIX4y1BACFLBpUulO4nmOYeDQmOzfdInKx89CT5WmM7D7ms
BKJQIuYMQ+OtvkZH34WWLyRvthrChjUc
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:38 2024 by rpki-client on console-fra.rpki-client.org