Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/07D94948F86D11EEB5B01A1F017001B1.roa
File: 07D94948F86D11EEB5B01A1F017001B1.roa (raw, json)
Hash identifier: 0UPuxToDEDIWwL8dDdk9GYLx3gI8xRrPyW83PR8rXwk=
Subject key identifier: 69:29:06:6E:A6:E2:7A:73:24:77:06:30:DE:4C:E2:B6:A4:D0:DE:8D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB8E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/07D94948F86D11EEB5B01A1F017001B1.roa
Signing time: Fri 12 Apr 2024 01:36:06 +0000
ROA not before: Fri 12 Apr 2024 01:36:03 +0000
ROA not after: Sun 19 May 2024 01:36:03 +0000
asID: 138915
IP address blocks: 154.93.52.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43918 (0xab8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 12 01:36:03 2024 GMT
Not After : May 19 01:36:03 2024 GMT
Subject: CN=66189006-3215
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:42:83:df:9f:78:ab:c2:df:1b:1b:45:4b:78:
37:ee:ad:e5:e2:79:de:c5:46:63:8c:28:d6:91:81:
e5:78:c6:b4:32:68:b2:1d:41:15:42:7a:cc:e3:dc:
55:22:57:e7:d4:01:d6:8e:85:49:42:34:79:a4:5a:
6b:eb:38:db:2d:7d:2f:52:2f:81:b1:44:97:78:a1:
ea:6c:5f:7f:8e:18:b7:fe:0d:b2:8e:0a:bb:24:94:
99:60:c8:75:c6:f8:6b:36:dc:12:46:07:8d:5d:b2:
60:3b:2e:1e:e0:cf:2f:0e:10:04:22:85:da:9e:ad:
45:c3:28:3b:fe:a4:f9:3c:ef:5c:9f:6b:e4:0f:b4:
dc:8d:ca:a3:61:50:18:63:39:db:0c:16:10:c7:85:
ab:17:ab:4d:79:c7:43:b2:da:b1:7b:40:99:58:05:
6e:49:4e:ff:04:75:4a:b8:1e:4e:ae:82:08:9c:de:
57:30:96:15:d5:56:9e:89:3d:f9:8e:41:38:ab:f6:
a1:90:e7:27:47:1f:18:d5:26:55:0e:40:99:ef:1c:
8f:cd:2e:cc:11:52:89:44:4f:1d:95:8b:91:4c:eb:
5d:de:09:d0:b7:49:6e:9c:95:f7:92:13:21:76:f4:
22:70:54:ea:e8:22:63:83:f0:4e:eb:26:f2:92:fe:
ca:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:29:06:6E:A6:E2:7A:73:24:77:06:30:DE:4C:E2:B6:A4:D0:DE:8D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/07D94948F86D11EEB5B01A1F017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.52.0/23
Signature Algorithm: sha256WithRSAEncryption
51:f6:da:dc:f6:42:f2:dc:50:aa:46:ec:43:4f:fa:27:6b:47:
35:44:1f:f6:37:2f:db:2b:3f:12:8c:e2:60:a2:a7:73:71:1f:
54:a2:74:88:dd:b2:5b:7f:73:fb:6d:02:c2:fc:8c:18:8e:e2:
3d:ca:c0:b3:2f:10:d7:0b:af:ea:d1:71:54:78:a5:87:c3:71:
fb:d1:56:80:80:12:5c:d7:0d:1d:3f:2d:dc:11:3c:21:e8:bc:
5e:6c:90:1d:44:7c:b6:77:44:2d:aa:4d:04:27:a1:9a:e3:84:
e3:14:99:40:c8:83:72:88:c0:e9:a3:71:15:f1:0d:12:df:fd:
03:fa:96:69:f0:74:54:05:ac:ba:06:a6:0b:cc:58:f3:db:b5:
ce:8d:3c:5f:3f:da:f7:28:a4:69:32:12:66:56:48:7e:8c:84:
cb:79:6f:2b:64:f7:ac:51:27:64:05:4f:b7:51:78:44:cd:d3:
07:65:c7:9d:be:ae:27:a1:41:05:e7:ff:a3:8c:d2:d4:f8:40:
3d:8c:25:83:ac:fb:52:d5:e4:fc:da:a6:dd:3c:d6:cf:05:d7:
20:09:3b:dd:a5:d1:fb:86:7a:bf:b9:b7:84:0f:f0:4c:e0:27:
3c:d1:49:10:19:75:da:14:89:53:42:cc:99:1c:d2:3b:f9:32:
7f:47:21:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:15 2024 by rpki-client on console-fra.rpki-client.org