Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/213CE3A2EDB111EEBFC3C97C775412E6.roa
File: 213CE3A2EDB111EEBFC3C97C775412E6.roa (raw, json)
Hash identifier: drqAnlyPEAYzKXZrGY5lfJhVgiOGpxBRl62//frXKbU=
Subject key identifier: 3B:00:A4:49:2D:09:70:95:97:8A:D1:A9:CE:E5:08:67:6E:59:26:60
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A6F7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/213CE3A2EDB111EEBFC3C97C775412E6.roa
Signing time: Fri 29 Mar 2024 09:45:52 +0000
ROA not before: Fri 29 Mar 2024 09:45:48 +0000
ROA not after: Fri 26 Apr 2024 09:45:48 +0000
asID: 62240
IP address blocks: 154.194.96.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 09:45:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42743 (0xa6f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 29 09:45:48 2024 GMT
Not After : Apr 26 09:45:48 2024 GMT
Subject: CN=66068dd0-d9ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:bf:3d:9d:84:3d:3b:3b:2b:40:f2:1d:6d:12:
e5:2a:00:6e:5a:93:12:4f:fb:fd:be:db:7f:91:00:
66:e1:0d:de:11:fc:4a:2b:44:e7:53:b4:91:40:ec:
c6:66:67:08:c1:17:7b:3c:c6:a3:c2:80:04:15:06:
83:33:7c:73:ec:9b:a4:87:73:20:6f:17:fe:5e:63:
47:3f:01:31:a3:f0:63:bf:19:d5:34:44:03:31:49:
99:f4:09:7b:b7:7f:82:fc:f1:b7:b6:16:0a:3f:42:
4d:9b:6c:2e:27:04:5b:fa:cf:05:8d:ba:8f:d0:3a:
09:35:1d:7d:4b:b4:97:fc:ad:58:ea:ea:d1:1a:44:
69:9f:80:67:bb:11:d5:72:e9:bc:e5:34:3d:c5:26:
5b:29:72:35:7e:ac:86:4d:73:85:c8:08:54:88:63:
01:98:bb:93:4b:91:e5:03:c5:7a:81:87:7a:c2:6c:
74:bc:9a:ea:d9:d0:38:58:07:b0:1f:35:0a:04:92:
84:b2:f5:18:2e:cf:79:f3:76:22:b1:c1:4d:a4:eb:
12:4a:32:d7:05:1e:ce:ee:12:06:13:b3:65:1f:42:
5e:9a:cf:4d:74:cd:ff:be:7d:44:ab:50:23:bd:c8:
3b:e9:3d:88:ef:96:b3:94:82:d1:37:ad:ba:fb:91:
94:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:00:A4:49:2D:09:70:95:97:8A:D1:A9:CE:E5:08:67:6E:59:26:60
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/213CE3A2EDB111EEBFC3C97C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.96.0/19
Signature Algorithm: sha256WithRSAEncryption
63:dc:f8:87:22:8b:ab:5b:3d:82:08:de:d4:a2:06:03:43:31:
23:ae:ea:8e:2a:5a:36:43:e7:f4:60:a5:aa:49:c0:bc:1d:54:
8f:23:ea:3b:89:15:e2:d7:40:6d:04:06:4d:21:13:68:3d:5b:
c4:c3:84:a9:1d:ca:4e:a1:5b:1a:1c:a5:aa:50:c5:2c:11:2e:
ab:e3:83:a9:39:24:92:57:15:94:19:cc:b3:5f:61:c1:33:a5:
25:7b:36:2c:29:17:2f:e1:29:25:6f:38:78:38:49:d3:f9:d2:
8a:ee:6b:07:3c:a5:f3:3d:9d:36:b4:ca:50:7d:27:ef:7d:e8:
9c:d8:ab:bd:94:19:db:d6:88:76:4e:5c:ab:e9:c2:97:df:a2:
71:38:d9:6b:e8:ce:15:3e:3f:74:92:dd:1d:16:d9:62:3e:cc:
a2:fd:0e:ee:80:4d:be:0b:b1:81:c1:c7:c1:9d:da:48:92:47:
83:6a:29:67:d6:cd:1b:0f:db:6e:66:0d:68:84:9a:c7:f2:2a:
93:bf:0f:fd:7c:35:5f:6b:8e:51:81:54:3d:1f:f2:fc:7a:ac:
d0:e6:48:cd:ac:92:c8:c7:be:69:12:fc:73:8c:e5:ef:20:99:
84:d5:fe:d6:a3:28:6a:b8:86:af:d7:cc:4f:b7:dd:28:52:41:
46:c4:98:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:33:27 2024 by rpki-client on console-fra.rpki-client.org