Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E937A53EA2BD11EE8B401311D25BE465.roa
File: E937A53EA2BD11EE8B401311D25BE465.roa (raw, json)
Hash identifier: Ohpo5s7yEe5A1WhW+CFtfrhfNw3Xw3dLsfI6y/Xe0Vo=
Subject key identifier: E5:BC:1F:47:2D:4E:47:AD:F8:72:60:28:E9:D7:E4:CE:7C:3E:17:1D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 6670
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E937A53EA2BD11EE8B401311D25BE465.roa
Signing time: Mon 25 Dec 2023 00:38:24 +0000
ROA not before: Mon 25 Dec 2023 00:00:21 +0000
ROA not after: Mon 24 Jun 2024 00:00:21 +0000
asID: 27947
IP address blocks: 154.84.160.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26224 (0x6670)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 25 00:00:21 2023 GMT
Not After : Jun 24 00:00:21 2024 GMT
Subject: CN=6588cf00-a203
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:6b:03:a4:c7:6f:20:9e:31:ff:2a:4f:13:89:
4a:a3:9d:e1:9c:21:da:5d:b9:5a:14:4b:cb:f4:bc:
64:2f:44:94:5b:ca:5d:d3:c1:23:7a:e8:e4:4b:a7:
ed:fa:45:63:47:d9:0e:c5:c0:fd:a0:5e:b0:f4:78:
9a:cb:1e:fe:96:82:fb:d6:11:2a:ab:96:a8:76:b2:
4e:fd:2b:cc:19:7e:68:99:39:47:76:94:b9:fe:37:
e4:b4:a3:9b:39:05:cb:58:8e:ed:78:c2:29:b9:5b:
94:3e:06:74:cd:87:18:f4:05:31:6c:03:a7:49:92:
59:a2:af:71:d8:b3:ee:f5:8e:3f:b0:37:b5:06:d1:
e9:c9:4c:df:09:bb:e2:cf:75:25:c0:4d:d8:27:51:
64:66:b6:6b:94:4f:4e:ab:52:fa:2e:0b:97:89:eb:
13:a2:08:fb:c3:f5:8a:b2:e8:0f:29:d4:20:e4:52:
f3:f5:6a:70:ca:78:2d:c4:6e:c5:53:af:f1:5f:db:
c0:9c:7f:34:ce:b3:ed:ad:89:6e:b0:14:b0:7c:cf:
17:99:ae:0d:70:23:13:24:d3:cd:ce:34:2f:0d:1f:
21:d8:72:4d:5d:1d:48:94:a5:d9:cf:9b:96:cb:79:
8f:fc:58:49:6c:8b:d6:35:7f:7e:36:9f:f9:be:a7:
a2:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:BC:1F:47:2D:4E:47:AD:F8:72:60:28:E9:D7:E4:CE:7C:3E:17:1D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E937A53EA2BD11EE8B401311D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.160.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:84:1b:64:7c:df:60:e2:5c:1b:c5:2f:38:a9:9c:17:03:4a:
b7:70:c0:9e:dc:56:df:71:93:7b:de:11:4b:07:b5:cc:1e:6e:
b0:e9:02:1f:b8:29:4d:81:0e:1c:aa:00:30:53:c0:aa:6a:33:
1e:67:fe:2e:de:4e:63:e5:22:8f:b0:c1:d8:bc:b2:ce:8b:4f:
41:2d:04:d8:b1:87:df:65:e8:6d:11:4f:35:a8:b9:8c:78:30:
74:89:05:e1:a2:72:cd:b7:52:58:96:ee:83:16:dc:c9:c0:cd:
2a:15:fc:88:e3:cd:3f:fc:ff:2f:c1:5b:de:a5:c0:32:86:ed:
a9:15:ba:a4:6a:89:ad:c0:65:3f:d2:5f:cd:42:d8:2f:61:bf:
e7:2e:88:f0:33:ba:18:bb:38:7c:08:73:71:94:70:bd:57:cd:
d7:e9:7c:d9:16:71:22:03:f0:e0:bd:ba:e4:a3:11:0f:cb:46:
6b:fe:0d:13:c2:d0:05:46:96:57:c1:bb:db:2e:47:ec:97:f3:
ce:17:ea:36:68:f1:6b:40:c8:80:5d:45:a0:db:01:9b:39:e0:
25:25:fa:5e:bc:82:48:f6:d3:61:54:83:f3:ab:d7:98:5a:2b:
9e:18:a0:0b:08:a2:32:cb:8e:51:88:5e:52:ef:60:f3:82:b1:
29:ba:2d:47
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICZnAwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzEyMjUwMDAwMjFaFw0yNDA2MjQwMDAwMjFaMBgxFjAU
BgNVBAMTDTY1ODhjZjAwLWEyMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDmawOkx28gnjH/Kk8TiUqjneGcIdpduVoUS8v0vGQvRJRbyl3TwSN66ORL
p+36RWNH2Q7FwP2gXrD0eJrLHv6WgvvWESqrlqh2sk79K8wZfmiZOUd2lLn+N+S0
o5s5BctYju14wim5W5Q+BnTNhxj0BTFsA6dJklmir3HYs+71jj+wN7UG0enJTN8J
u+LPdSXATdgnUWRmtmuUT06rUvouC5eJ6xOiCPvD9Yqy6A8p1CDkUvP1anDKeC3E
bsVTr/Ff28CcfzTOs+2tiW6wFLB8zxeZrg1wIxMk083ONC8NHyHYck1dHUiUpdnP
m5bLeY/8WElsi9Y1f342n/m+p6KpAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU5bwf
Ry1OR634cmAo6dfkznw+Fx0wHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4L0U5MzdBNTNFQTJCRDExRUU4QjQwMTMxMUQyNUJFNDY1LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKaVKAwDQYJKoZIhvcNAQEL
BQADggEBAKuEG2R832DiXBvFLzipnBcDSrdwwJ7cVt9xk3veEUsHtcwebrDpAh+4
KU2BDhyqADBTwKpqMx5n/i7eTmPlIo+wwdi8ss6LT0EtBNixh99l6G0RTzWouYx4
MHSJBeGics23UliW7oMW3MnAzSoV/IjjzT/8/y/BW96lwDKG7akVuqRqia3AZT/S
X81C2C9hv+cuiPAzuhi7OHwIc3GUcL1XzdfpfNkWcSID8OC9uuSjEQ/LRmv+DRPC
0AVGllfBu9suR+yX884X6jZo8WtAyIBdRaDbAZs54CUl+l68gkj202FUg/Or15ha
K54YoAsIojLLjlGIXlLvYPOCsSm6LUc=
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:42 2024 by rpki-client on console-fra.rpki-client.org