Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E682EBEAF65111EE8802A287775412E6.roa
File: E682EBEAF65111EE8802A287775412E6.roa (raw, json)
Hash identifier: cC9V3Oxp3jWMAdM7eSQaw+YYxWtYq82CHx3bT9jXKiU=
Subject key identifier: 55:65:88:1E:DF:8B:67:C8:C8:F7:30:8D:25:C4:92:94:36:EA:C0:60
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AA63
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E682EBEAF65111EE8802A287775412E6.roa
Signing time: Tue 09 Apr 2024 09:16:53 +0000
ROA not before: Tue 09 Apr 2024 09:16:48 +0000
ROA not after: Thu 30 May 2024 09:16:48 +0000
asID: 63139
IP address blocks: 154.94.123.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43619 (0xaa63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 9 09:16:48 2024 GMT
Not After : May 30 09:16:48 2024 GMT
Subject: CN=66150784-d8d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:7a:ac:34:cb:38:e3:03:5d:b7:88:03:f8:5a:
86:83:27:2f:45:fd:e5:88:e6:08:63:c7:d4:a9:67:
9e:76:45:3c:5e:ff:d9:65:f4:45:c3:2e:09:4e:bf:
70:90:b2:79:11:f8:1b:1b:00:2d:49:81:45:3b:d9:
b0:f3:f9:b9:df:b7:14:57:6b:3b:f1:3b:2f:f3:5f:
85:bf:af:57:4c:a4:d5:43:cd:ad:e1:5c:bf:97:c9:
99:fb:05:1c:af:7e:ee:47:c0:62:df:9b:51:ae:55:
c8:ab:37:a3:29:61:0c:88:b6:97:04:a2:70:be:ca:
e0:3f:65:bf:fe:3a:24:9a:13:d9:d2:fd:ef:9c:8a:
0f:10:66:d3:a5:47:31:75:74:1a:40:71:ca:d6:f9:
cf:8f:f3:a2:66:ff:84:0d:7d:ee:3e:76:a1:6e:60:
f5:8c:4f:99:d9:19:04:70:b9:08:69:5a:24:29:00:
40:b9:74:5f:71:04:db:6a:49:67:eb:d9:23:13:8a:
43:bd:3a:5a:97:29:b5:cc:be:8e:ba:ba:73:4b:64:
36:8b:bc:1e:ae:86:eb:fa:6c:1e:fe:6f:2e:7c:1a:
a4:be:99:3a:c1:7b:ff:97:d8:60:a9:f5:bd:2e:79:
bc:05:46:a9:98:93:ec:4a:f6:c2:64:77:ac:73:31:
fa:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:65:88:1E:DF:8B:67:C8:C8:F7:30:8D:25:C4:92:94:36:EA:C0:60
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E682EBEAF65111EE8802A287775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.123.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:22:a1:a1:1a:a0:2f:48:7a:f2:c7:17:85:d3:ba:d2:09:65:
a1:c1:25:67:aa:1d:7c:18:8e:3d:bd:40:c7:ca:fb:bf:59:3f:
1f:d7:17:51:b8:6e:5b:8a:96:ee:a3:f5:0f:8a:c5:09:d3:d7:
4f:f7:00:72:af:b7:fe:e3:a0:18:81:7a:c1:ea:4e:17:55:4c:
69:a7:4f:a4:36:d2:01:06:aa:4d:05:1f:e7:d0:2d:d5:d8:d8:
e2:45:e2:d0:8a:41:34:e6:26:1d:c9:ae:f8:9a:24:b5:43:b1:
36:af:3f:da:13:c0:d8:5d:d9:dc:41:4c:ca:bd:97:4e:90:a4:
f9:3c:23:82:35:b4:c5:88:c0:c8:55:36:a8:25:7c:4c:af:54:
f8:45:0c:42:3f:70:04:d6:fe:c2:91:a4:1b:5a:a0:84:1a:14:
56:94:b1:aa:d2:7f:22:e4:ca:e9:57:d5:17:de:17:a3:e3:55:
fa:60:06:55:7a:dc:1c:63:2b:ba:f5:70:11:f4:3f:d7:78:ec:
ca:88:67:5a:7d:7a:48:5a:50:20:6b:25:b4:ca:41:79:d9:6a:
05:7f:33:c7:b5:37:73:79:79:3c:dc:93:b3:fd:9a:f6:33:93:
84:96:39:48:c9:a8:36:28:5a:d6:c3:2f:40:d6:90:09:08:c1:
44:a9:79:4d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKpjMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNDA5MDkxNjQ4WhcNMjQwNTMwMDkxNjQ4WjAYMRYw
FAYDVQQDEw02NjE1MDc4NC1kOGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAs3qsNMs44wNdt4gD+FqGgycvRf3liOYIY8fUqWeedkU8Xv/ZZfRFwy4J
Tr9wkLJ5EfgbGwAtSYFFO9mw8/m537cUV2s78Tsv81+Fv69XTKTVQ82t4Vy/l8mZ
+wUcr37uR8Bi35tRrlXIqzejKWEMiLaXBKJwvsrgP2W//jokmhPZ0v3vnIoPEGbT
pUcxdXQaQHHK1vnPj/OiZv+EDX3uPnahbmD1jE+Z2RkEcLkIaVokKQBAuXRfcQTb
akln69kjE4pDvTpalym1zL6OurpzS2Q2i7werobr+mwe/m8ufBqkvpk6wXv/l9hg
qfW9Lnm8BUapmJPsSvbCZHesczH6EwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFVl
iB7fi2fIyPcwjSXEkpQ26sBgMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FNjgyRUJFQUY2NTExMUVFODgwMkEyODc3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml57MA0GCSqGSIb3DQEB
CwUAA4IBAQBeIqGhGqAvSHryxxeF07rSCWWhwSVnqh18GI49vUDHyvu/WT8f1xdR
uG5bipbuo/UPisUJ09dP9wByr7f+46AYgXrB6k4XVUxpp0+kNtIBBqpNBR/n0C3V
2NjiReLQikE05iYdya74miS1Q7E2rz/aE8DYXdncQUzKvZdOkKT5PCOCNbTFiMDI
VTaoJXxMr1T4RQxCP3AE1v7CkaQbWqCEGhRWlLGq0n8i5MrpV9UX3hej41X6YAZV
etwcYyu69XAR9D/XeOzKiGdafXpIWlAgayW0ykF52WoFfzPHtTdzeXk83JOz/Zr2
M5OEljlIyag2KFrWwy9A1pAJCMFEqXlN
-----END CERTIFICATE-----
Generated at Fri May 3 01:30:04 2024 by rpki-client on console-fra.rpki-client.org