Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9F6DB00A060F11EFAD90FC51017001B1.roa
File: 9F6DB00A060F11EFAD90FC51017001B1.roa (raw, json)
Hash identifier: s/0g8cw3RAcFZUb2t91JlfsokYKEXavXWgIONTSVNfU=
Subject key identifier: 3B:6E:60:C1:6B:BA:8B:D4:91:89:66:6B:22:7F:06:0D:5F:5E:3A:E6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B21E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9F6DB00A060F11EFAD90FC51017001B1.roa
Signing time: Mon 29 Apr 2024 10:02:44 +0000
ROA not before: Mon 29 Apr 2024 10:02:41 +0000
ROA not after: Fri 07 Jun 2024 10:02:41 +0000
asID: 138915
IP address blocks: 154.223.60.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45598 (0xb21e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 10:02:41 2024 GMT
Not After : Jun 7 10:02:41 2024 GMT
Subject: CN=662f7044-7545
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:36:e7:b6:21:81:86:4c:39:85:7d:09:95:02:
8b:c4:08:47:28:6d:1c:18:9a:6b:ee:2a:28:f5:f3:
d9:f5:54:ba:bf:ee:8a:23:d1:96:66:f4:b1:20:b1:
2f:30:90:10:1c:85:52:90:af:1b:10:3d:60:6e:06:
6a:ce:80:2a:90:2a:f2:dd:f8:55:b2:e1:e9:03:2a:
11:09:b2:64:6e:4b:00:63:a6:3f:02:40:8c:32:6d:
8b:69:f4:8c:6c:14:12:f1:13:70:f9:7a:e4:53:37:
af:86:b4:a7:da:de:9a:a6:4a:d3:94:87:cf:be:53:
39:5c:40:16:d1:f7:15:79:c4:ce:de:9f:b6:72:43:
c0:83:6f:c7:7f:e8:a5:7e:7f:48:6b:45:c2:e7:8d:
97:9c:ca:bb:1b:25:18:ec:f7:de:33:1a:af:15:37:
6d:70:a1:6d:eb:90:58:4e:9d:8a:21:24:93:1d:58:
a1:90:fb:a5:d9:93:5e:82:b3:da:f3:77:fb:07:e5:
c4:c5:e6:bd:6f:4c:ae:fe:3e:f7:25:b4:e8:c4:8a:
f9:50:5d:4c:59:ef:55:55:fd:37:c6:12:e7:be:e1:
57:d7:df:a9:b2:da:94:d1:3c:84:54:ac:65:8e:8a:
e5:07:23:74:f4:2f:f0:ed:c1:7d:b0:3c:7d:82:63:
46:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:6E:60:C1:6B:BA:8B:D4:91:89:66:6B:22:7F:06:0D:5F:5E:3A:E6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9F6DB00A060F11EFAD90FC51017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.60.0/23
Signature Algorithm: sha256WithRSAEncryption
1e:72:b7:75:c1:d4:65:6e:49:f8:4f:f9:8e:44:b2:b2:2d:e5:
30:e0:02:a6:a2:c9:35:9e:e7:51:06:73:34:ab:f0:29:2c:fe:
db:03:c6:cd:72:e4:5c:39:8f:e8:87:1b:d3:c3:5c:4a:c2:f1:
bc:43:11:9b:b2:3e:1f:b5:ea:10:ca:58:e0:f6:6f:b3:04:7a:
a3:ea:30:2c:d0:53:0e:10:0d:3f:3c:2f:cf:65:32:cc:ac:16:
cb:08:98:87:3a:41:b2:76:45:2b:05:98:33:7a:12:25:6c:9f:
c4:e1:3a:0e:91:8f:72:43:76:86:b5:aa:c0:9e:3f:e4:10:72:
3e:ca:4d:c4:40:45:fa:13:78:e4:8c:71:0e:2f:23:a2:65:ed:
e6:96:c7:0d:d7:10:f3:fe:b8:bd:97:6d:d2:7e:c5:83:d7:3c:
97:49:c2:48:c1:6d:08:4c:5e:fe:8c:a8:f1:ee:25:fc:b5:56:
3d:f9:11:8a:2b:56:21:3b:c4:be:86:bb:b4:86:19:44:cb:4c:
1d:ba:a5:36:59:6e:b2:ec:ea:6b:80:25:56:63:38:08:03:2b:
54:f3:38:95:f0:1d:27:51:7e:6e:34:44:13:10:f2:9e:3a:fc:
0d:f0:33:c4:d2:9f:7d:43:72:f5:d5:8b:7f:16:46:ab:9b:cc:
40:b7:aa:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:20 2024 by rpki-client on console-fra.rpki-client.org