Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D14F4EBCE77E11EE9AA2827A775412E6.roa
File: D14F4EBCE77E11EE9AA2827A775412E6.roa (raw, json)
Hash identifier: gC57uuvmA33AX3UMTah69VaLZZ67krKq0Wqmlmss5TU=
Subject key identifier: BF:64:2E:B2:C9:78:C9:24:35:C2:43:F4:86:B4:8A:E9:CA:FB:39:B4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A559
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D14F4EBCE77E11EE9AA2827A775412E6.roa
Signing time: Thu 21 Mar 2024 12:30:36 +0000
ROA not before: Thu 21 Mar 2024 12:30:31 +0000
ROA not after: Tue 23 Apr 2024 12:30:31 +0000
asID: 44559
IP address blocks: 154.210.112.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42329 (0xa559)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 12:30:31 2024 GMT
Not After : Apr 23 12:30:31 2024 GMT
Subject: CN=65fc286c-4b53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f5:76:e9:e4:c0:b7:ad:03:df:82:f4:23:51:
0b:1a:d0:cd:6d:7c:39:9d:b2:95:16:00:5f:f0:a7:
92:dc:ac:5f:f1:45:3f:26:a5:03:e4:dc:f8:82:b8:
49:ee:de:f2:ef:56:66:84:68:aa:65:24:a9:06:fe:
ce:95:57:80:82:3a:4e:04:d2:7c:6b:a7:84:15:94:
34:00:20:20:e2:6c:a4:be:9b:f3:4e:27:6f:ca:56:
eb:4b:87:ad:c7:6e:06:89:95:f5:b7:2e:5b:9a:87:
5c:bc:64:93:a0:c2:c0:01:c4:69:39:d1:27:a1:7b:
a4:b3:86:ed:a7:91:68:b6:96:5f:60:81:72:59:7b:
28:ad:13:5b:a7:15:b0:e9:d1:b8:b6:7b:5d:2a:a4:
eb:c6:d2:e8:88:09:ef:b7:82:0e:e5:44:b7:68:0a:
31:b6:ff:9d:1e:94:f8:d9:2a:f3:c1:85:60:71:b5:
98:76:3c:57:31:00:f2:1e:f6:54:fc:84:ff:9e:74:
61:ee:00:eb:1f:aa:88:4b:52:31:0b:bb:93:a1:60:
63:51:ab:ab:3d:d9:59:45:d8:7a:aa:fd:92:36:59:
00:41:c8:7a:c7:a2:9a:c7:40:a7:31:52:2b:c5:64:
44:62:9e:0c:0b:29:9b:6b:b5:a0:68:18:14:e0:7b:
5c:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:64:2E:B2:C9:78:C9:24:35:C2:43:F4:86:B4:8A:E9:CA:FB:39:B4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D14F4EBCE77E11EE9AA2827A775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.112.0/24
Signature Algorithm: sha256WithRSAEncryption
39:f1:98:26:a5:a1:a2:d4:23:bd:8c:a5:1c:41:30:7e:f1:d8:
88:57:ff:9c:5d:ea:35:57:2e:7f:21:d3:36:ce:bf:1b:69:d2:
10:8f:00:f7:6f:a6:4a:2d:f8:47:d5:19:4b:3a:6e:65:c1:85:
94:17:bc:39:a2:6d:66:c9:24:fe:ea:92:19:0b:c2:23:22:96:
57:3b:7a:f2:3c:b0:4f:45:07:3d:3c:ef:ea:7b:7f:2d:4c:4e:
dd:43:e7:ce:a2:9c:a3:61:48:ac:2c:ed:8c:17:b7:e0:4e:f8:
85:6e:0f:4c:b7:fa:12:7c:51:5d:f8:75:78:38:80:55:7c:9c:
7c:6f:9c:58:2b:a6:98:54:c0:90:88:03:c1:db:04:c9:38:95:
9e:2e:b7:19:33:72:cf:54:4c:df:4c:97:ce:82:8f:c1:e2:ff:
59:11:d2:7b:ce:53:7b:38:3d:e4:5b:34:77:9a:6f:62:8f:a4:
e6:df:e1:d4:bd:cd:25:ae:ef:7d:df:d8:a5:0d:a3:c4:3c:8c:
b5:14:be:6d:24:e5:b4:2c:5b:3d:bc:ca:df:c3:49:7f:10:fe:
dd:09:07:4a:9d:f7:ac:e3:3f:a5:84:f2:ba:08:35:12:bd:4d:
96:ef:9f:20:d2:8d:6b:d9:07:10:82:1d:10:89:67:05:48:ca:
2b:f1:55:dd
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKVZMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMTIzMDMxWhcNMjQwNDIzMTIzMDMxWjAYMRYw
FAYDVQQDEw02NWZjMjg2Yy00YjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0PV26eTAt60D34L0I1ELGtDNbXw5nbKVFgBf8KeS3Kxf8UU/JqUD5Nz4
grhJ7t7y71ZmhGiqZSSpBv7OlVeAgjpOBNJ8a6eEFZQ0ACAg4mykvpvzTidvylbr
S4etx24GiZX1ty5bmodcvGSToMLAAcRpOdEnoXuks4btp5FotpZfYIFyWXsorRNb
pxWw6dG4tntdKqTrxtLoiAnvt4IO5US3aAoxtv+dHpT42SrzwYVgcbWYdjxXMQDy
HvZU/IT/nnRh7gDrH6qIS1IxC7uToWBjUaurPdlZRdh6qv2SNlkAQch6x6Kax0Cn
MVIrxWREYp4MCymba7WgaBgU4HtciQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFL9k
LrLJeMkkNcJD9Ia0iunK+zm0MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9EMTRGNEVCQ0U3N0UxMUVFOUFBMjgyN0E3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtJwMA0GCSqGSIb3DQEB
CwUAA4IBAQA58ZgmpaGi1CO9jKUcQTB+8diIV/+cXeo1Vy5/IdM2zr8badIQjwD3
b6ZKLfhH1RlLOm5lwYWUF7w5om1myST+6pIZC8IjIpZXO3ryPLBPRQc9PO/qe38t
TE7dQ+fOopyjYUisLO2MF7fgTviFbg9Mt/oSfFFd+HV4OIBVfJx8b5xYK6aYVMCQ
iAPB2wTJOJWeLrcZM3LPVEzfTJfOgo/B4v9ZEdJ7zlN7OD3kWzR3mm9ij6Tm3+HU
vc0lru9939ilDaPEPIy1FL5tJOW0LFs9vMrfw0l/EP7dCQdKnfes4z+lhPK6CDUS
vU2W758g0o1r2QcQgh0QiWcFSMor8VXd
-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:25 2024 by rpki-client on console-ams.rpki-client.org