Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DCFFC710E9A311EEB047864C775412E6.roa
File: DCFFC710E9A311EEB047864C775412E6.roa (raw, json)
Hash identifier: Yp35vPQGr7J4aagU2LDdtXKy8m4wU2q55DJFvFALwYU=
Subject key identifier: A4:D9:76:F7:12:6C:80:40:0F:00:27:CE:20:41:91:FF:AB:31:57:C2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A63A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DCFFC710E9A311EEB047864C775412E6.roa
Signing time: Sun 24 Mar 2024 06:00:49 +0000
ROA not before: Sun 24 Mar 2024 06:00:44 +0000
ROA not after: Sun 21 Apr 2024 06:00:44 +0000
asID: 215287
IP address blocks: 154.194.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 21 Apr 2024 06:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42554 (0xa63a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 24 06:00:44 2024 GMT
Not After : Apr 21 06:00:44 2024 GMT
Subject: CN=65ffc191-55cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:05:23:03:f8:77:ef:40:14:59:eb:55:dd:a1:
2f:d8:f1:03:78:fc:f7:5d:ed:cf:49:18:c5:cd:a2:
d4:58:8f:41:72:23:04:08:62:72:be:87:9c:f3:b1:
4d:d0:d6:fe:97:65:3f:d9:95:cf:d7:1f:7a:0d:e6:
4a:ba:ab:4a:ce:23:ac:47:0c:41:fa:10:14:1c:55:
d6:da:b0:cd:91:0d:ac:3e:4b:9c:28:d9:26:e7:62:
bb:95:a6:59:6c:0f:fa:bb:5c:57:d4:cf:58:a8:27:
b3:f5:a8:64:b7:f0:fc:3b:54:2b:91:52:fb:24:44:
5d:36:41:d3:0c:cd:87:e7:07:fd:5a:24:da:ff:af:
20:00:36:94:98:df:74:e7:43:61:87:0a:23:03:f9:
57:c3:9a:4e:fb:fe:ec:b0:74:b7:3b:0b:5a:39:43:
8d:ba:55:ec:04:fe:21:9a:57:9c:0c:c7:97:ca:49:
bf:3a:c2:9c:0c:a9:e5:b9:b4:e5:4d:6a:92:1d:1c:
34:91:89:66:59:c9:e1:e8:4b:90:f5:75:9b:ab:45:
c8:11:35:bf:9a:31:9a:6b:c2:c2:43:d2:ca:d5:19:
4e:df:48:ce:34:35:82:d3:61:da:bc:9a:23:3e:68:
80:6a:ab:9d:04:37:ef:6b:80:69:62:1f:bb:73:1e:
99:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:D9:76:F7:12:6C:80:40:0F:00:27:CE:20:41:91:FF:AB:31:57:C2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DCFFC710E9A311EEB047864C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.59.0/24
Signature Algorithm: sha256WithRSAEncryption
29:fa:30:60:de:32:2a:00:5a:93:bc:41:b2:6a:b1:06:75:0c:
51:ee:44:bb:c7:3c:7a:cc:df:61:24:e9:5c:d2:7d:f8:db:e4:
82:a4:ad:6c:72:1a:07:69:2f:df:2d:eb:7c:56:d6:5b:dc:b9:
c6:26:75:fc:41:f9:15:f7:b9:9e:8e:89:62:9b:0e:41:02:6a:
14:ce:23:07:da:b2:cf:7b:9c:70:28:4d:e2:00:99:84:c8:72:
1a:03:59:74:0d:7d:8d:56:53:3b:a5:13:8f:1e:72:70:75:eb:
ac:fc:94:fa:9e:0e:d2:96:6e:5c:ab:80:73:b7:13:96:a5:16:
15:9b:c4:98:c4:6b:12:fa:11:15:20:45:58:1d:c7:eb:82:bb:
64:f6:75:7e:47:42:ee:9b:89:4c:30:45:35:52:3e:67:9e:29:
de:0d:87:51:a8:a0:0f:bb:db:27:24:a1:47:f5:56:82:61:81:
53:20:6d:a5:67:58:c7:c3:78:58:1d:f8:7c:82:aa:67:28:09:
8b:59:63:67:50:18:a3:66:94:5c:49:3b:e3:93:2a:dd:b2:c0:
a2:b1:a7:d1:ac:65:67:90:4e:50:9c:02:86:98:07:ab:0b:ec:
28:85:98:af:ec:b2:d1:52:fc:52:b0:45:f8:ee:35:06:05:6e:
c9:8f:15:b9
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKY6MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzI0MDYwMDQ0WhcNMjQwNDIxMDYwMDQ0WjAYMRYw
FAYDVQQDEw02NWZmYzE5MS01NWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqQUjA/h370AUWetV3aEv2PEDePz3Xe3PSRjFzaLUWI9BciMECGJyvoec
87FN0Nb+l2U/2ZXP1x96DeZKuqtKziOsRwxB+hAUHFXW2rDNkQ2sPkucKNkm52K7
laZZbA/6u1xX1M9YqCez9ahkt/D8O1QrkVL7JERdNkHTDM2H5wf9WiTa/68gADaU
mN9050NhhwojA/lXw5pO+/7ssHS3OwtaOUONulXsBP4hmlecDMeXykm/OsKcDKnl
ubTlTWqSHRw0kYlmWcnh6EuQ9XWbq0XIETW/mjGaa8LCQ9LK1RlO30jONDWC02Ha
vJojPmiAaqudBDfva4BpYh+7cx6ZpwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFKTZ
dvcSbIBADwAnziBBkf+rMVfCMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9EQ0ZGQzcxMEU5QTMxMUVFQjA0Nzg2NEM3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsI7MA0GCSqGSIb3DQEB
CwUAA4IBAQAp+jBg3jIqAFqTvEGyarEGdQxR7kS7xzx6zN9hJOlc0n342+SCpK1s
choHaS/fLet8VtZb3LnGJnX8QfkV97mejolimw5BAmoUziMH2rLPe5xwKE3iAJmE
yHIaA1l0DX2NVlM7pROPHnJwdeus/JT6ng7Slm5cq4BztxOWpRYVm8SYxGsS+hEV
IEVYHcfrgrtk9nV+R0Lum4lMMEU1Uj5nnineDYdRqKAPu9snJKFH9VaCYYFTIG2l
Z1jHw3hYHfh8gqpnKAmLWWNnUBijZpRcSTvjkyrdssCisafRrGVnkE5QnAKGmAer
C+wohZiv7LLRUvxSsEX47jUGBW7JjxW5
-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:25 2024 by rpki-client on console-fra.rpki-client.org