Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DA330C7AE74811EE9C5C4C56775412E6.roa
File: DA330C7AE74811EE9C5C4C56775412E6.roa (raw, json)
Hash identifier: g1ZQxEFMaGui1ArNVZwy3gwMu2c9pY1b0d95liYzJAw=
Subject key identifier: 1E:5D:C3:56:CD:69:BD:99:FE:55:D8:53:64:01:C6:60:89:0B:2E:E1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A41F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DA330C7AE74811EE9C5C4C56775412E6.roa
Signing time: Thu 21 Mar 2024 06:04:18 +0000
ROA not before: Thu 21 Mar 2024 06:04:15 +0000
ROA not after: Tue 23 Apr 2024 06:04:15 +0000
asID: 44559
IP address blocks: 154.220.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42015 (0xa41f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 06:04:15 2024 GMT
Not After : Apr 23 06:04:15 2024 GMT
Subject: CN=65fbcde2-2498
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:37:6b:fb:4a:74:7a:60:b0:bd:d4:51:57:d0:
e8:01:8f:d5:2b:bc:f1:64:7e:1c:2a:40:ba:b2:57:
c0:2f:a5:65:7a:e3:29:59:07:a8:51:a6:b4:e2:4e:
59:01:50:64:05:97:ab:22:9a:8a:92:56:a2:5e:26:
5b:e0:2a:ba:4d:17:4f:d7:7d:2c:18:d0:6b:2d:59:
ce:86:8d:26:17:c9:bb:dc:18:e4:e1:92:29:68:5f:
81:8e:d1:9a:53:ab:ac:6e:e3:cc:26:aa:44:74:db:
e5:c5:cc:9a:96:56:40:45:c9:32:93:f4:a1:62:27:
60:25:da:ff:c4:c7:61:73:cf:8f:ba:d6:d4:06:73:
4b:9f:65:fa:58:fe:f1:c8:2e:ab:1b:e2:88:f1:cd:
9f:38:a2:7a:6c:a5:a9:aa:21:98:e9:d8:e1:80:c3:
6f:f2:c9:25:c7:cb:b0:00:d1:fe:68:15:9c:3f:46:
ff:01:9a:a7:c9:2d:06:c1:25:ed:27:b4:2e:68:02:
45:cf:1e:df:41:73:72:0b:45:51:c2:04:5d:8e:87:
97:a4:7a:49:be:a3:34:34:41:4c:70:ea:34:78:b4:
e0:54:b7:f0:14:c4:90:8e:68:1d:24:da:87:fa:e6:
d2:ad:41:80:8b:ec:af:bc:3c:7f:03:d7:21:58:c8:
83:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:5D:C3:56:CD:69:BD:99:FE:55:D8:53:64:01:C6:60:89:0B:2E:E1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DA330C7AE74811EE9C5C4C56775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.169.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:a4:d5:db:bb:5d:8d:ef:03:8b:ef:ff:3c:c2:20:75:df:f0:
05:a6:e7:f5:a4:96:05:56:5e:ba:15:a4:5d:70:fc:f4:c3:36:
b1:33:af:55:92:21:a2:45:63:40:27:d9:e7:69:e6:2f:8a:07:
2d:09:6f:09:59:67:f3:ab:cc:7b:29:f2:c2:ba:b1:5f:8e:6b:
bd:24:d4:4d:fb:0c:ef:4e:b2:ae:98:70:7d:ac:4d:9d:12:f9:
83:be:05:05:5b:15:87:11:87:13:d1:c3:49:f7:3f:c7:fe:76:
d0:7d:39:59:0d:63:8d:20:4e:fb:60:19:fa:23:0f:88:27:38:
48:d1:ed:64:1c:92:ae:43:19:b6:78:e3:3d:5f:5f:cd:88:f8:
cb:f5:a5:c0:e6:17:3f:eb:a8:2a:07:7f:6a:39:f5:98:0d:25:
d0:af:f4:da:49:0d:77:cf:d1:97:2b:07:1d:6d:b1:d4:7e:48:
82:94:b1:ed:22:4c:c2:b0:c5:ac:d4:82:68:82:60:6a:12:00:
4d:b8:81:66:80:8b:44:19:61:d2:38:ce:2b:6c:99:29:19:5b:
ff:27:c5:16:7a:0e:6e:ac:38:12:3a:1d:78:f7:11:92:91:e3:
1d:62:36:b5:8f:a9:5b:60:82:0e:a0:84:78:9f:24:d8:3b:66:
e8:25:8b:8e
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKQfMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMDYwNDE1WhcNMjQwNDIzMDYwNDE1WjAYMRYw
FAYDVQQDEw02NWZiY2RlMi0yNDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzjdr+0p0emCwvdRRV9DoAY/VK7zxZH4cKkC6slfAL6VleuMpWQeoUaa0
4k5ZAVBkBZerIpqKklaiXiZb4Cq6TRdP130sGNBrLVnOho0mF8m73Bjk4ZIpaF+B
jtGaU6usbuPMJqpEdNvlxcyallZARckyk/ShYidgJdr/xMdhc8+PutbUBnNLn2X6
WP7xyC6rG+KI8c2fOKJ6bKWpqiGY6djhgMNv8sklx8uwANH+aBWcP0b/AZqnyS0G
wSXtJ7QuaAJFzx7fQXNyC0VRwgRdjoeXpHpJvqM0NEFMcOo0eLTgVLfwFMSQjmgd
JNqH+ubSrUGAi+yvvDx/A9chWMiDDwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFB5d
w1bNab2Z/lXYU2QBxmCJCy7hMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9EQTMzMEM3QUU3NDgxMUVFOUM1QzRDNTY3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtypMA0GCSqGSIb3DQEB
CwUAA4IBAQBfpNXbu12N7wOL7/88wiB13/AFpuf1pJYFVl66FaRdcPz0wzaxM69V
kiGiRWNAJ9nnaeYvigctCW8JWWfzq8x7KfLCurFfjmu9JNRN+wzvTrKumHB9rE2d
EvmDvgUFWxWHEYcT0cNJ9z/H/nbQfTlZDWONIE77YBn6Iw+IJzhI0e1kHJKuQxm2
eOM9X1/NiPjL9aXA5hc/66gqB39qOfWYDSXQr/TaSQ13z9GXKwcdbbHUfkiClLHt
IkzCsMWs1IJogmBqEgBNuIFmgItEGWHSOM4rbJkpGVv/J8UWeg5urDgSOh149xGS
keMdYja1j6lbYIIOoIR4nyTYO2boJYuO
-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:25 2024 by rpki-client on console-fra.rpki-client.org