Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F540B53EE9A611EE9C0E4166775412E6.roa
File: F540B53EE9A611EE9C0E4166775412E6.roa (raw, json)
Hash identifier: GrLF5L5EPC9prLRgA9t7B5jjWOUdlko10W3EbV1gtPc=
Subject key identifier: 61:50:11:69:B8:18:43:77:95:24:56:13:BD:CC:3F:47:19:DF:F2:4D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A654
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F540B53EE9A611EE9C0E4166775412E6.roa
Signing time: Sun 24 Mar 2024 06:22:58 +0000
ROA not before: Sun 24 Mar 2024 06:22:55 +0000
ROA not after: Fri 26 Apr 2024 06:22:55 +0000
asID: 55933
IP address blocks: 154.201.64.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 06:22:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42580 (0xa654)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 24 06:22:55 2024 GMT
Not After : Apr 26 06:22:55 2024 GMT
Subject: CN=65ffc6c2-4c03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:62:20:79:a9:9a:95:46:8a:4e:9d:8f:47:da:
3e:5b:a3:d3:f3:3e:70:c1:65:e0:ee:bd:8f:6c:28:
80:2d:ab:3a:b0:1b:b1:00:29:b0:26:73:b6:d5:4d:
37:c1:c2:db:09:02:64:91:99:2c:9b:9a:fa:39:b8:
f4:7c:13:bf:39:85:3d:59:ce:42:cd:14:e4:22:a5:
96:a4:eb:ed:f1:4c:bc:04:5d:59:9b:e2:84:ce:af:
ad:b6:86:5d:3d:19:4b:17:da:9a:51:e2:73:ef:88:
28:bc:39:f0:a4:07:1b:03:c4:68:e6:51:0c:71:1d:
f7:a1:b9:c2:73:9f:d1:9c:1a:0b:a1:ec:d2:7e:29:
27:b6:3d:14:2f:70:12:96:a6:0a:4a:ed:ba:65:45:
a1:12:17:66:78:bd:3a:33:39:25:cc:28:fc:c7:ae:
ff:d5:29:0f:32:20:ca:63:89:d9:42:3e:19:4a:d0:
85:77:38:b9:71:3d:1e:62:4e:83:b2:13:82:e0:cc:
d4:ec:e9:96:00:bf:b6:3c:cf:88:5e:d1:98:fd:6c:
57:d3:8a:d8:1c:f6:5b:18:5a:ea:45:a7:a0:7c:f2:
ef:16:87:ba:63:12:02:59:ae:45:12:38:9e:2f:cc:
ac:da:f5:c2:78:82:0e:70:35:09:31:7a:d6:fb:fc:
cd:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:50:11:69:B8:18:43:77:95:24:56:13:BD:CC:3F:47:19:DF:F2:4D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F540B53EE9A611EE9C0E4166775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.64.0/19
Signature Algorithm: sha256WithRSAEncryption
08:74:e2:ca:e6:5c:15:fa:49:bf:1d:0b:e8:95:b6:ca:3b:89:
19:34:f0:bf:65:71:44:89:9d:65:ac:59:48:a1:ca:a9:4a:e7:
95:eb:a7:43:e5:21:a3:45:81:ae:60:e4:d6:9a:8a:7a:67:6b:
cf:e7:b0:68:93:b3:e2:17:c5:a2:05:e2:a5:9e:be:7c:d4:9f:
52:a2:05:f6:14:c7:4a:3f:67:4a:ee:1a:d7:a2:3b:f8:1f:3d:
43:9b:e9:55:9f:57:06:ea:4f:46:00:4a:17:c2:12:dd:12:c8:
08:5f:0c:72:14:c2:bc:af:bc:81:7f:08:52:ac:46:bd:1e:41:
24:06:00:37:48:76:69:aa:c9:13:4b:ca:09:a1:6a:52:36:69:
10:6c:15:d3:da:40:43:36:4b:67:dc:88:b1:a5:33:2c:bc:64:
c9:34:64:ff:f7:fd:66:62:29:b6:5e:c4:4c:f4:b9:ff:36:d3:
1a:36:b8:6a:d0:7f:4c:1e:62:3f:a8:34:28:ae:cf:c4:b0:80:
41:b6:e2:b9:80:c3:c8:44:51:8a:c7:ff:41:fb:2e:46:09:fa:
1b:ae:e4:8f:1a:01:56:8a:c9:b2:57:20:90:be:fd:8a:b5:33:
43:9c:1f:2c:51:d6:60:5c:b1:0e:f3:7b:0b:e5:29:4f:16:a0:
60:f0:05:dc
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKZUMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzI0MDYyMjU1WhcNMjQwNDI2MDYyMjU1WjAYMRYw
FAYDVQQDEw02NWZmYzZjMi00YzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAt2IgeamalUaKTp2PR9o+W6PT8z5wwWXg7r2PbCiALas6sBuxACmwJnO2
1U03wcLbCQJkkZksm5r6Obj0fBO/OYU9Wc5CzRTkIqWWpOvt8Uy8BF1Zm+KEzq+t
toZdPRlLF9qaUeJz74govDnwpAcbA8Ro5lEMcR33obnCc5/RnBoLoezSfikntj0U
L3ASlqYKSu26ZUWhEhdmeL06MzklzCj8x67/1SkPMiDKY4nZQj4ZStCFdzi5cT0e
Yk6DshOC4MzU7OmWAL+2PM+IXtGY/WxX04rYHPZbGFrqRaegfPLvFoe6YxICWa5F
EjieL8ys2vXCeIIOcDUJMXrW+/zNFQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGFQ
EWm4GEN3lSRWE73MP0cZ3/JNMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GNTQwQjUzRUU5QTYxMUVFOUMwRTQxNjY3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFmslAMA0GCSqGSIb3DQEB
CwUAA4IBAQAIdOLK5lwV+km/HQvolbbKO4kZNPC/ZXFEiZ1lrFlIocqpSueV66dD
5SGjRYGuYOTWmop6Z2vP57Bok7PiF8WiBeKlnr581J9SogX2FMdKP2dK7hrXojv4
Hz1Dm+lVn1cG6k9GAEoXwhLdEsgIXwxyFMK8r7yBfwhSrEa9HkEkBgA3SHZpqskT
S8oJoWpSNmkQbBXT2kBDNktn3IixpTMsvGTJNGT/9/1mYim2XsRM9Ln/NtMaNrhq
0H9MHmI/qDQors/EsIBBtuK5gMPIRFGKx/9B+y5GCfobruSPGgFWismyVyCQvv2K
tTNDnB8sUdZgXLEO83sL5SlPFqBg8AXc
-----END CERTIFICATE-----
Generated at Thu Apr 25 22:33:41 2024 by rpki-client on console-fra.rpki-client.org