Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0B8D2CC0EDB011EEBDDD4D76775412E6.roa
File: 0B8D2CC0EDB011EEBDDD4D76775412E6.roa (raw, json)
Hash identifier: 0VqxoQjV1UVk3jIF5KsXGjXocuvFuYEM6auP/CPwBpw=
Subject key identifier: 91:BE:38:D5:A5:BF:C5:B5:8A:89:11:DE:8B:62:8C:5E:CA:20:9D:DE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A6ED
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0B8D2CC0EDB011EEBDDD4D76775412E6.roa
Signing time: Fri 29 Mar 2024 09:38:06 +0000
ROA not before: Fri 29 Mar 2024 09:38:02 +0000
ROA not after: Fri 26 Apr 2024 09:38:02 +0000
asID: 62240
IP address blocks: 154.194.4.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 09:38:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42733 (0xa6ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 29 09:38:02 2024 GMT
Not After : Apr 26 09:38:02 2024 GMT
Subject: CN=66068bfe-1bde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b1:91:65:49:dc:d3:06:ff:97:c0:f4:90:c3:
3e:a2:6f:2a:44:9a:40:0c:a0:2a:58:4f:ef:a7:23:
56:fe:a2:5a:97:dc:2b:48:23:c5:8b:e6:4e:c8:c0:
67:55:0a:2f:74:68:c7:5e:6b:e2:d7:85:7a:33:23:
1b:f9:05:7c:10:db:c0:cb:4c:f3:e0:c5:44:ff:9d:
a0:d3:a0:3d:f9:e4:f4:07:e4:1c:f1:12:6d:47:20:
42:c3:92:c6:30:e9:61:ae:6b:d0:11:4d:e5:f6:f5:
e3:63:ff:a5:6e:1f:41:8c:e8:95:75:b7:80:3b:36:
1f:7b:de:f6:05:82:f5:a5:a3:6c:a2:f5:c2:9e:63:
7b:16:b9:d2:ca:83:b8:b6:5e:d6:26:0b:ee:3f:7f:
ca:50:2e:ff:87:5e:e6:15:12:82:27:f4:2b:9f:67:
29:74:57:27:41:d9:f4:7f:2b:04:a1:26:ec:46:e2:
bb:5e:cd:d6:c2:56:e0:97:62:ba:f6:07:97:9b:5a:
41:1a:3f:40:02:26:d2:1c:7e:19:eb:84:f1:57:84:
03:09:85:06:33:01:af:e4:bb:62:ff:e9:53:b4:37:
88:d4:12:99:c6:59:a2:7f:ba:f2:b3:82:94:1e:f5:
53:47:1e:e1:7d:f4:27:2e:e7:55:5b:2b:aa:aa:08:
c0:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:BE:38:D5:A5:BF:C5:B5:8A:89:11:DE:8B:62:8C:5E:CA:20:9D:DE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0B8D2CC0EDB011EEBDDD4D76775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.4.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:a8:5b:14:26:ee:5d:13:65:a3:6a:a2:6a:c7:ff:91:0f:24:
a8:c4:5c:f5:e4:ba:88:7e:c9:7d:56:cf:f8:1a:7d:4b:32:65:
49:21:5f:58:b0:ad:86:62:c8:86:0c:d5:d9:86:2a:8c:63:83:
d1:3c:3d:cf:8f:26:b0:61:a2:7b:27:8e:69:dd:62:e3:1e:24:
02:af:76:5d:d1:cc:1c:be:d0:2d:29:e6:3d:7c:6d:36:e1:dc:
c9:ad:52:d2:ed:ca:9a:03:d2:2d:c9:cb:41:ad:62:a2:bf:31:
01:8a:02:6a:a0:65:8f:5d:21:b9:91:50:9c:0d:c9:3d:eb:9d:
1c:fc:91:1f:87:75:72:be:20:79:a1:32:66:25:46:81:08:9a:
26:10:29:b5:12:f4:b2:42:ef:cd:a1:c5:89:19:7d:33:4f:ff:
7f:df:e4:99:70:7f:87:ad:e5:7b:66:5e:58:87:03:9c:da:79:
c0:ff:5a:01:99:7b:05:2b:4a:3c:29:f5:d2:0f:22:20:09:98:
32:ae:60:66:99:a1:11:36:cb:7b:9d:e3:d3:5b:6c:bc:2d:85:
0c:ee:ba:90:4e:93:c7:2f:d6:74:5f:e0:3a:fe:02:8c:48:5b:
f9:b7:df:34:a8:c2:9e:74:4d:ab:4c:73:81:68:95:ca:38:f2:
3a:d1:24:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:33:25 2024 by rpki-client on console-fra.rpki-client.org