Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/227CFD00EFF611EE87A84ABE775412E6.roa
File: 227CFD00EFF611EE87A84ABE775412E6.roa (raw, json)
Hash identifier: n7zXPZlEPjLG3IJ4id8jfzH+GkmXOoc+B+1KQCdKNvE=
Subject key identifier: C1:96:23:F9:94:2B:FC:78:3F:C3:42:3A:80:00:11:03:3D:58:D7:91
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A7FE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/227CFD00EFF611EE87A84ABE775412E6.roa
Signing time: Mon 01 Apr 2024 07:04:51 +0000
ROA not before: Mon 01 Apr 2024 07:04:48 +0000
ROA not after: Tue 07 May 2024 07:04:48 +0000
asID: 138915
IP address blocks: 154.223.38.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43006 (0xa7fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 07:04:48 2024 GMT
Not After : May 7 07:04:48 2024 GMT
Subject: CN=660a5c93-bf59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:35:b2:da:ea:53:6f:ff:8f:3e:43:91:16:a5:
d2:7f:23:84:63:5c:bd:22:cc:a2:7b:1d:c9:ff:28:
e5:ea:b5:f7:16:5e:76:3c:c3:7a:2f:28:d2:b0:cf:
05:d1:e8:b4:4f:39:b9:3c:b8:15:b7:d2:1b:e2:2c:
9d:ae:27:54:92:06:c3:7d:61:9a:ad:39:b6:5c:e4:
12:e0:ef:6e:99:a7:56:a0:00:5d:75:dc:be:c2:b1:
52:7e:59:7e:82:6c:6f:5f:e2:e5:6a:ae:c4:ac:1b:
f9:91:ba:b1:3c:29:dd:09:5d:e3:ef:d3:e0:04:a2:
f6:70:47:d8:f6:0b:12:7a:f6:47:b9:c8:0c:b5:85:
ca:b8:0e:a6:da:dd:98:28:36:ce:74:0d:8b:8a:75:
8e:d0:db:94:8b:b3:e2:93:4c:da:be:d6:5a:62:8e:
50:b0:b0:47:be:a9:97:a9:39:8c:63:54:19:02:3e:
09:6b:0a:cf:7f:c3:b0:d8:2b:33:dd:6b:76:7d:a1:
f2:88:05:f9:26:86:75:de:f6:77:98:d3:40:72:c4:
e1:da:af:64:89:2d:58:06:3b:34:2c:a6:14:a0:b5:
70:99:76:5e:dd:9a:3c:a8:b8:37:4e:e1:9a:57:a4:
6f:9b:cf:96:ba:b4:ff:b1:39:f3:4f:f2:e0:98:3b:
53:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:96:23:F9:94:2B:FC:78:3F:C3:42:3A:80:00:11:03:3D:58:D7:91
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/227CFD00EFF611EE87A84ABE775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.38.0/24
Signature Algorithm: sha256WithRSAEncryption
22:31:4d:d5:0d:1c:6b:b8:d6:00:1e:f7:05:d9:c5:01:a4:20:
18:9b:c9:56:d8:3d:99:e0:af:7d:5f:32:cf:1d:06:8a:02:0d:
88:02:11:8e:1a:8a:34:18:4d:d5:fd:01:14:58:e2:86:19:b8:
94:2e:d3:8c:82:c4:64:c2:76:c8:74:a4:d1:98:ae:b6:0b:e4:
86:74:98:5b:2a:42:57:ff:46:28:92:f6:f8:de:f2:c6:99:a2:
a4:d3:58:a5:88:ec:4b:1f:e3:84:41:c1:aa:98:6d:98:85:13:
ee:22:80:fb:f2:d3:70:d9:87:a5:6a:e7:28:5c:d2:96:ab:2d:
b2:a3:85:3b:a0:25:46:76:e1:03:3a:69:88:9d:47:5a:54:e1:
bd:6d:14:99:6f:92:72:60:be:2f:cb:d3:9e:72:b4:05:5f:82:
a7:be:c7:db:dd:fa:51:b4:20:72:37:da:4d:5a:f0:48:0f:eb:
2d:35:c7:75:f4:9c:47:cf:a7:1e:bf:97:2b:4f:67:9c:75:f4:
0e:ee:35:4f:8c:79:d8:93:0a:52:c1:25:e5:5f:0e:28:b6:fa:
ae:bc:dc:29:4b:71:9f:2d:47:75:23:17:60:46:1d:98:7e:5f:
83:08:c3:b3:40:33:9d:13:dd:8e:80:e7:22:3c:61:b8:71:d4:
c3:94:f1:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:17 2024 by rpki-client on console-fra.rpki-client.org