Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0B5EB2E8F7C211EEB422B335017001B1.roa
File: 0B5EB2E8F7C211EEB422B335017001B1.roa (raw, json)
Hash identifier: 4Nlcw98svgF1Q8LzWcZH5A5Hmb1apPeNo7oPeJFoVG0=
Subject key identifier: 0E:6B:63:2E:29:4E:65:50:C4:12:D3:AD:AB:E5:19:F2:45:9A:F3:8B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB37
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0B5EB2E8F7C211EEB422B335017001B1.roa
Signing time: Thu 11 Apr 2024 05:12:08 +0000
ROA not before: Thu 11 Apr 2024 05:12:05 +0000
ROA not after: Sun 19 May 2024 05:12:05 +0000
asID: 138915
IP address blocks: 154.93.42.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43831 (0xab37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 11 05:12:05 2024 GMT
Not After : May 19 05:12:05 2024 GMT
Subject: CN=66177128-4ff4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:40:36:20:a3:45:7e:c6:fe:64:df:44:c3:57:
53:99:87:90:0a:fa:91:f3:ae:9a:35:c5:f1:c0:a7:
80:46:2e:49:88:1c:1d:c9:a6:b8:56:63:bc:c8:ab:
9e:23:cc:6b:66:59:44:12:0a:ad:cb:89:fc:c2:f1:
25:64:10:05:0f:d8:23:ee:44:f2:27:a0:e1:f8:03:
c2:30:b8:76:47:f1:4e:c5:54:b4:e2:d4:a8:13:a6:
77:d6:f0:7a:6c:cf:ca:fc:39:6d:6e:c4:e0:b8:7c:
9e:8c:51:a9:6f:86:0d:bf:4f:e5:ae:f3:e3:ed:4a:
83:0e:2b:5b:43:63:1b:4c:14:92:42:7c:58:dc:26:
ae:b4:93:74:62:96:9c:da:2e:83:c0:1b:5d:2f:db:
43:4b:4e:25:d1:1d:2a:ba:44:5b:a7:d5:7f:55:55:
07:2e:ff:a5:0a:c5:b6:f4:68:a6:39:77:8c:8d:87:
96:28:f6:ed:77:08:6c:a2:aa:fd:06:14:bf:2f:f8:
a0:8c:bc:f9:21:6e:1f:38:22:a1:f1:6c:af:38:a3:
31:c9:0b:34:f3:21:ba:1f:0c:a9:21:dc:9d:40:1a:
5d:89:fd:b5:c4:8c:e8:28:b2:93:e9:ab:f3:6c:b5:
22:7a:86:9c:56:00:c9:12:db:e2:0b:9e:fc:44:ed:
00:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:6B:63:2E:29:4E:65:50:C4:12:D3:AD:AB:E5:19:F2:45:9A:F3:8B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0B5EB2E8F7C211EEB422B335017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.42.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:9c:58:1a:02:df:f4:11:98:ff:a9:af:95:6f:31:14:e5:3b:
54:f5:e2:06:91:5f:a0:fb:d3:1b:94:bc:1f:42:b7:5d:fd:a0:
a1:fe:ba:d1:51:cc:56:28:58:d4:13:73:1c:0e:10:f2:14:bc:
8d:dc:c7:32:f9:c9:ea:48:d3:cd:53:94:86:3c:66:72:df:44:
21:80:6e:7c:63:52:90:22:28:79:94:1f:57:c2:84:79:5b:65:
c6:22:60:8b:23:2e:37:18:6b:2c:44:87:0f:53:f1:ea:f8:e6:
5b:27:78:70:bd:26:77:91:68:18:7b:d0:2f:7f:21:07:b0:4d:
44:f0:89:a4:0b:57:9d:6a:49:77:3c:d1:b4:b4:12:5e:d3:d7:
0d:1f:95:88:74:47:b4:d6:a1:69:c2:0e:5b:71:e0:34:7e:a2:
bc:75:5d:27:96:9c:bc:d6:83:f0:f6:02:5f:86:04:66:8a:b9:
0c:1a:ed:bc:bb:a6:1f:45:ac:da:40:0a:ac:9b:91:13:a4:52:
db:c1:01:62:69:d3:04:98:f1:b3:d1:98:ff:33:7f:1c:b8:bf:
e6:bb:46:50:9b:15:80:a4:5f:7b:c1:0a:ab:24:f9:27:96:3b:
05:45:93:20:9e:5c:d4:f8:84:fe:c0:a7:36:c4:17:93:3b:f0:
49:75:22:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:15 2024 by rpki-client on console-fra.rpki-client.org