Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/231288D4F57811EEB365D563775412E6.roa
File: 231288D4F57811EEB365D563775412E6.roa (raw, json)
Hash identifier: ePCMkP7YUCG/K8uSdtViax4KpGcIrBMuXcEy8AlUZyA=
Subject key identifier: 72:71:AD:FF:85:32:1D:29:08:0E:7A:54:F0:4A:A7:EA:6E:C3:F9:DA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AA55
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/231288D4F57811EEB365D563775412E6.roa
Signing time: Mon 08 Apr 2024 07:18:03 +0000
ROA not before: Mon 08 Apr 2024 07:17:59 +0000
ROA not after: Mon 13 May 2024 07:17:59 +0000
asID: 138915
IP address blocks: 154.206.106.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43605 (0xaa55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 8 07:17:59 2024 GMT
Not After : May 13 07:17:59 2024 GMT
Subject: CN=66139a2b-c877
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:28:5f:a3:85:a7:51:b0:53:3d:70:eb:ed:3b:
d0:df:22:a1:fb:1a:06:80:99:23:79:ea:b5:07:1e:
91:3d:6f:07:8c:74:4e:25:db:a1:97:a0:db:e8:b3:
25:22:50:de:34:b1:85:ff:69:35:83:be:5c:f6:cc:
8b:46:da:67:ff:01:9a:01:9e:d2:c7:41:bc:5b:fe:
56:62:14:e9:7f:ec:e4:1a:2c:15:18:04:7c:19:41:
f0:ed:d1:c1:ea:e4:e8:41:6e:05:89:cb:56:8c:0c:
2d:ef:6a:2e:bf:b3:51:76:93:63:3f:b3:21:20:6c:
e9:5e:6d:50:5f:ce:81:46:bb:09:03:23:89:c3:d7:
8b:c8:2b:0e:ef:73:9d:91:82:76:a3:ac:f2:59:48:
32:56:56:aa:c5:ec:bd:22:03:4a:f9:34:ca:1e:db:
ae:f1:48:03:f6:7f:7d:08:1b:3a:70:04:ab:b1:dd:
ab:20:05:36:88:be:93:8c:82:45:eb:ae:2d:4c:68:
56:80:97:21:70:4e:8f:1b:80:51:15:f1:af:e0:51:
e9:79:91:24:23:24:85:7f:4b:bf:19:c7:a6:27:dd:
33:80:bd:6c:d1:92:65:af:a1:2e:04:64:0f:f0:71:
c0:f7:d3:fb:20:bf:f7:2b:bd:71:99:21:f1:08:60:
53:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:71:AD:FF:85:32:1D:29:08:0E:7A:54:F0:4A:A7:EA:6E:C3:F9:DA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/231288D4F57811EEB365D563775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.106.0/24
Signature Algorithm: sha256WithRSAEncryption
28:d6:e8:a7:44:44:16:8f:d5:92:03:81:00:92:d3:3e:a7:bc:
cc:3e:4f:70:33:4a:62:31:27:1a:a3:1b:fc:b8:b7:f3:0d:18:
94:9b:f0:ba:5e:d6:c6:a9:c6:5f:ce:8d:a5:34:96:55:24:87:
42:8c:37:a3:42:87:fc:70:40:67:1c:8d:17:c8:45:80:55:b9:
11:8a:42:80:bf:fa:c8:26:c8:48:f4:60:e1:ce:80:b2:ef:1b:
15:c4:6c:c3:fe:ce:fc:b5:8e:34:00:ad:2f:ad:33:9f:fb:39:
34:b4:9e:4a:3a:df:ab:d9:e1:a7:14:f9:19:6d:3c:03:6d:21:
e7:fd:32:c0:76:d2:a5:81:92:42:46:18:58:2e:4f:69:42:e2:
0b:f2:64:d1:34:a5:a6:a3:ac:be:2e:6a:17:c3:86:11:2f:02:
01:a6:e7:d9:6e:e0:ea:81:13:ae:85:39:cd:c2:29:60:54:37:
a8:eb:8c:51:50:90:1b:8a:9a:da:65:32:1f:70:fe:ef:48:80:
d7:e1:25:f2:11:5a:a8:a7:e7:a6:6f:7e:57:be:ec:47:99:f2:
63:f3:6e:53:66:3e:92:49:18:89:05:47:b2:85:7e:74:39:2d:
95:90:d6:35:a9:cc:29:93:46:be:31:fb:c4:6b:80:c3:59:fb:
36:d3:e1:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:17 2024 by rpki-client on console-fra.rpki-client.org