Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/28820D68F47D11EE8FF1CCA7775412E6.roa
File: 28820D68F47D11EE8FF1CCA7775412E6.roa (raw, json)
Hash identifier: h3ZOC+3ea6dHOXXk/38IrOwo1vIB8TlbxJ7vjBMKtaw=
Subject key identifier: 78:C7:61:83:5C:59:61:C9:60:BA:B1:77:F3:45:E9:E7:FF:78:A6:D4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A98A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/28820D68F47D11EE8FF1CCA7775412E6.roa
Signing time: Sun 07 Apr 2024 01:21:28 +0000
ROA not before: Sun 07 Apr 2024 01:21:25 +0000
ROA not after: Mon 13 May 2024 01:21:25 +0000
asID: 138915
IP address blocks: 154.206.66.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43402 (0xa98a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 01:21:25 2024 GMT
Not After : May 13 01:21:25 2024 GMT
Subject: CN=6611f518-767c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:f5:eb:f2:cd:9a:c9:90:d6:a0:13:d4:57:bf:
c7:02:81:50:c4:6b:fe:f6:ac:6b:11:1b:a6:f9:16:
22:ba:41:6d:14:ff:5b:74:e3:ab:98:0e:7f:36:b9:
e4:22:4a:5b:d3:11:60:09:28:e9:65:40:b0:10:a4:
e0:47:53:c7:f1:4f:31:83:8e:46:5c:fe:c6:2e:9b:
a2:91:76:c2:82:97:ce:0c:7a:2e:46:c9:cc:57:e7:
f6:5f:f4:1b:b7:20:73:6b:40:c8:e5:e7:ed:00:f2:
78:f4:56:b3:41:83:cb:38:a6:c9:14:41:27:29:b4:
22:ea:e2:6c:cf:ff:b4:a2:19:b0:92:f5:2f:31:53:
36:a9:46:4b:ea:ce:62:57:ee:68:2b:da:87:06:f8:
cf:21:8d:5a:69:89:50:44:22:88:02:79:40:b9:be:
73:b5:c0:1e:d6:34:63:5d:51:69:b1:6d:55:d6:a6:
79:b0:21:71:e2:53:4c:5d:b2:3e:71:bb:f0:6c:e9:
6a:17:76:47:40:62:90:48:01:c6:02:85:26:e6:b4:
4c:35:4f:f7:91:a9:83:a6:25:bf:5d:ec:f1:81:f7:
8b:ab:5f:9d:e1:91:25:35:c2:c6:c7:89:cc:7d:4c:
cf:5f:23:99:f6:ba:58:24:62:91:20:02:18:e8:8f:
60:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:C7:61:83:5C:59:61:C9:60:BA:B1:77:F3:45:E9:E7:FF:78:A6:D4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/28820D68F47D11EE8FF1CCA7775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.66.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:aa:60:0e:85:8b:25:bf:2e:ed:c5:cb:5f:48:88:5c:57:71:
69:16:98:55:45:af:32:4e:b6:22:06:b2:69:43:42:bf:bf:ac:
19:61:be:08:31:cd:af:5f:b9:f2:47:c4:cc:f6:0b:03:f9:e4:
f9:73:1e:02:87:0c:c6:5d:c6:80:1c:09:bb:30:38:09:7d:93:
45:0d:ef:b9:3d:e2:33:ac:14:93:1d:98:d3:e1:5a:62:5a:cf:
e3:66:1d:26:47:c9:a4:9a:f5:39:fd:fd:d8:1e:2f:c7:b7:ff:
be:f7:ad:cf:37:6a:4b:cc:8f:81:72:2f:94:be:02:ae:f6:fb:
58:b7:36:c2:46:12:1b:d3:91:33:c6:d1:fe:98:67:cd:a1:ce:
be:1b:10:bd:19:67:25:5e:f6:11:29:d7:db:11:bc:3b:5d:10:
61:bc:da:97:1b:50:c4:f8:34:b7:d2:db:e3:5d:dc:71:3f:c8:
a5:16:6e:ed:00:58:92:e7:35:a4:90:d2:ea:9e:f1:00:05:87:
9c:d2:d2:50:82:7b:31:30:22:76:c6:8e:15:78:80:3a:1d:78:
8f:a4:f7:6d:a4:6e:0d:49:d6:5f:49:cb:8d:33:94:e3:0c:5c:
88:4f:4e:69:46:f9:bb:77:f0:74:90:53:f6:ee:a6:2a:7f:d1:
98:d6:8d:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:04 2024 by rpki-client on console-ams.rpki-client.org