Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EAB93F560DD111EFB1ED7D05017001B1.roa
File: EAB93F560DD111EFB1ED7D05017001B1.roa (raw, json)
Hash identifier: sRX7wXr6wikm0TleBtNazzr4DniZ7fKgOO8TakvzGYc=
Subject key identifier: 38:09:07:3E:5F:72:86:63:0B:06:DD:8B:84:9F:8F:89:B3:BF:0D:08
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B62B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EAB93F560DD111EFB1ED7D05017001B1.roa
Signing time: Thu 09 May 2024 07:01:11 +0000
ROA not before: Thu 09 May 2024 07:01:06 +0000
ROA not after: Wed 29 May 2024 07:01:06 +0000
asID: 141883
IP address blocks: 154.86.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46635 (0xb62b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 9 07:01:06 2024 GMT
Not After : May 29 07:01:06 2024 GMT
Subject: CN=663c74b7-15da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c1:5d:fd:80:5b:90:a5:f1:21:70:ec:c0:8c:
b1:3e:db:68:89:13:77:71:dc:23:f8:38:9f:d2:3e:
e3:55:6c:df:79:3a:4b:77:0d:3d:0d:b6:7f:8d:dc:
0a:c7:c7:4b:6e:f8:30:4e:d3:ee:82:ab:94:0e:fa:
82:cb:4a:e9:56:b5:f0:b9:e6:e9:ae:9a:86:5b:eb:
61:a0:ba:42:da:3c:0e:bf:1d:ee:db:2a:67:ee:34:
5f:dc:75:78:14:26:2c:2d:85:64:b8:96:31:57:bd:
e3:ae:f5:1c:a7:b5:26:7e:81:15:35:32:b4:83:68:
d4:da:31:97:69:22:b0:d5:5c:88:af:71:99:c1:60:
f0:4f:94:d5:f2:ad:4f:e8:94:97:22:a5:ad:60:90:
6f:f4:92:db:94:75:8a:2e:9f:aa:fb:91:6f:15:18:
5f:d7:8f:85:c6:6e:28:ba:42:52:2b:e7:74:42:30:
fe:6e:cf:79:7a:86:f5:78:14:80:27:9e:78:35:e4:
38:7e:cb:58:97:92:65:ed:1a:f8:0e:4e:e8:a7:a7:
30:3a:89:af:54:71:83:76:42:23:d4:32:36:4c:1c:
44:cb:ff:3a:11:38:57:22:d6:4f:54:ec:39:65:f9:
d3:08:a5:35:a4:8b:3c:3d:52:57:b9:b5:b9:27:7e:
fb:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:09:07:3E:5F:72:86:63:0B:06:DD:8B:84:9F:8F:89:B3:BF:0D:08
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EAB93F560DD111EFB1ED7D05017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.0.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:91:f2:dd:89:d5:7c:a9:45:11:6e:05:35:21:21:e8:56:58:
c8:6c:70:e7:fa:7c:44:13:c6:ce:dc:32:a3:4f:e1:62:80:ae:
95:c8:b1:ab:ab:1c:87:ff:3d:2c:ac:c2:f4:c3:25:08:81:25:
aa:72:e1:c9:47:ce:79:9b:1c:b2:c4:d3:b5:99:f3:5b:10:08:
a4:e2:fa:5e:cb:79:27:89:8f:36:7a:70:be:e7:4b:42:5a:51:
b9:37:5a:21:5e:cb:9e:e5:74:4a:1d:b4:1e:97:24:b7:68:b5:
aa:b5:ac:58:ce:fb:eb:28:02:7e:6b:48:e9:7f:19:0f:c1:69:
ea:f1:88:f2:d3:1d:00:fa:dc:2c:7b:df:9c:73:6e:bf:d5:06:
d7:89:4b:b0:3e:18:71:a6:09:18:0a:10:04:72:23:49:18:d9:
d3:9e:e1:1f:9f:c1:45:a9:10:11:65:33:2c:8f:02:1a:16:9a:
ec:28:ef:ff:9b:2f:bc:35:4c:54:b1:48:6e:2f:62:d2:0e:fb:
cc:a4:c5:d9:75:a4:a2:b4:79:e6:84:17:48:c2:6a:15:73:dd:
85:b9:52:11:2a:13:8f:50:91:c2:58:cf:95:0e:eb:6c:c7:3c:
e9:a0:21:f1:47:6c:ca:e4:7d:ce:e1:f3:25:f4:d7:19:67:86:
e4:a0:f3:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:25 2024 by rpki-client on console-fra.rpki-client.org