Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DA79134CE28D11EEADE1C8C0775412E6.roa
File: DA79134CE28D11EEADE1C8C0775412E6.roa (raw, json)
Hash identifier: 6wJKNw3+51kH539IIb5Zf2H8x/f/LSmOovGdLBqRBOU=
Subject key identifier: B9:E6:AD:DF:18:04:1A:C4:38:DA:68:36:0E:83:C8:30:69:B7:D4:0A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A19D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DA79134CE28D11EEADE1C8C0775412E6.roa
Signing time: Fri 15 Mar 2024 05:35:38 +0000
ROA not before: Fri 15 Mar 2024 05:35:34 +0000
ROA not after: Fri 20 Sep 2024 05:35:34 +0000
asID: 47890
IP address blocks: 154.214.248.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41373 (0xa19d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 15 05:35:34 2024 GMT
Not After : Sep 20 05:35:34 2024 GMT
Subject: CN=65f3de2a-b244
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:10:63:92:75:50:a0:7d:cb:64:3d:5e:00:8f:
6c:d8:c0:c4:c7:a0:f6:9f:3a:d6:cb:ef:01:1f:36:
16:c0:20:ad:0e:f4:a3:dd:65:96:d6:e4:14:9e:34:
b8:7a:ee:df:80:be:2c:8e:d7:b5:d9:1e:a8:9e:6c:
55:86:53:c8:4c:fc:33:9d:a5:a5:72:24:50:03:83:
5b:dc:a4:fc:2d:79:25:3c:de:a5:a9:0c:a7:d7:17:
6f:e9:8e:23:d7:f5:91:e4:df:8f:8b:c2:5d:18:22:
e6:bd:3c:c0:7b:32:42:57:2d:8d:38:70:8f:05:5e:
ac:3f:3b:be:f7:e8:e7:14:ac:a2:ef:d8:90:7d:66:
cc:88:79:50:bc:1c:f7:75:2f:7e:98:c6:7b:70:8b:
83:5a:ad:62:fe:42:81:da:4c:79:77:fb:f5:05:ca:
a4:ec:47:cb:05:76:f1:54:d7:be:92:cc:0c:46:58:
42:79:9f:61:a5:e8:55:7e:a3:13:2a:7b:71:70:42:
ea:0d:8d:f5:1b:f9:a3:97:e0:ee:73:3e:e1:57:ff:
79:27:4f:67:29:3f:96:cf:1b:1b:f2:15:c6:0c:03:
e8:b3:5d:54:04:a0:93:af:08:a3:e1:78:1f:1d:85:
85:c3:98:c5:9f:fd:38:83:98:3f:9d:76:27:dd:05:
b5:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:E6:AD:DF:18:04:1A:C4:38:DA:68:36:0E:83:C8:30:69:B7:D4:0A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DA79134CE28D11EEADE1C8C0775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.248.0/23
Signature Algorithm: sha256WithRSAEncryption
6f:71:11:17:cc:0a:76:47:a0:2c:35:9b:b2:75:a5:e6:d3:f7:
53:86:89:81:31:9e:53:75:4d:3c:d2:bf:16:2d:e5:56:26:f1:
58:7d:9d:3a:bd:a4:3f:76:65:03:1c:7d:94:39:02:95:af:ef:
49:60:39:25:00:48:a3:ff:59:ae:5c:37:cf:d9:c1:4f:93:81:
6b:2c:dc:6e:40:78:d1:d1:04:84:6b:3a:4e:9f:29:fa:47:16:
ca:26:ce:81:f6:dd:5b:e4:44:5d:fc:1b:21:dc:90:8d:2d:9d:
66:d8:e7:92:e8:c9:c2:ed:3f:a5:6c:43:d2:a6:8b:5f:c4:2f:
dc:7a:db:c7:33:dc:10:25:cd:8f:af:4c:97:18:0d:db:c0:9c:
b0:f5:1b:fe:76:d6:31:77:6b:cd:44:4d:c6:ef:99:30:07:8e:
cd:9a:f8:fc:65:a5:f8:31:ef:a8:4b:48:20:8e:10:f6:f1:b0:
9a:15:a1:92:bb:91:b5:5c:56:cc:e5:50:33:30:42:68:32:40:
26:64:a1:cd:a3:e3:52:8e:08:a2:77:d0:cb:40:f1:49:60:61:
45:db:39:5d:b3:12:90:01:47:3d:4c:44:09:f1:59:2f:a5:0e:
88:e6:61:8a:27:eb:e5:77:a2:d8:86:fc:96:16:24:0e:08:9b:
15:56:4b:94
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKGdMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzE1MDUzNTM0WhcNMjQwOTIwMDUzNTM0WjAYMRYw
FAYDVQQDEw02NWYzZGUyYS1iMjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyhBjknVQoH3LZD1eAI9s2MDEx6D2nzrWy+8BHzYWwCCtDvSj3WWW1uQU
njS4eu7fgL4sjte12R6onmxVhlPITPwznaWlciRQA4Nb3KT8LXklPN6lqQyn1xdv
6Y4j1/WR5N+Pi8JdGCLmvTzAezJCVy2NOHCPBV6sPzu+9+jnFKyi79iQfWbMiHlQ
vBz3dS9+mMZ7cIuDWq1i/kKB2kx5d/v1Bcqk7EfLBXbxVNe+kswMRlhCeZ9hpehV
fqMTKntxcELqDY31G/mjl+Ducz7hV/95J09nKT+Wzxsb8hXGDAPos11UBKCTrwij
4XgfHYWFw5jFn/04g5g/nXYn3QW1AwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFLnm
rd8YBBrEONpoNg6DyDBpt9QKMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9EQTc5MTM0Q0UyOEQxMUVFQURFMUM4QzA3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmtb4MA0GCSqGSIb3DQEB
CwUAA4IBAQBvcREXzAp2R6AsNZuydaXm0/dThomBMZ5TdU080r8WLeVWJvFYfZ06
vaQ/dmUDHH2UOQKVr+9JYDklAEij/1muXDfP2cFPk4FrLNxuQHjR0QSEazpOnyn6
RxbKJs6B9t1b5ERd/Bsh3JCNLZ1m2OeS6MnC7T+lbEPSpotfxC/cetvHM9wQJc2P
r0yXGA3bwJyw9Rv+dtYxd2vNRE3G75kwB47Nmvj8ZaX4Me+oS0ggjhD28bCaFaGS
u5G1XFbM5VAzMEJoMkAmZKHNo+NSjgiid9DLQPFJYGFF2zldsxKQAUc9TEQJ8Vkv
pQ6I5mGKJ+vld6LYhvyWFiQOCJsVVkuU
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:40 2024 by rpki-client on console-fra.rpki-client.org