Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2B639B80B09B11EEABEB0E9B775412E6.roa
File: 2B639B80B09B11EEABEB0E9B775412E6.roa (raw, json)
Hash identifier: A9+w1VV4LZqImadu7FTfgZRGrkRsIzFZTFPzLuOMcEM=
Subject key identifier: 29:AD:4E:E5:65:F8:87:07:A4:F8:F4:06:FD:15:38:BC:C2:8A:2E:0F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 7424
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2B639B80B09B11EEABEB0E9B775412E6.roa
Signing time: Thu 11 Jan 2024 16:04:59 +0000
ROA not before: Thu 11 Jan 2024 16:04:56 +0000
ROA not after: Sun 22 Dec 2024 16:04:56 +0000
asID: 137184
IP address blocks: 154.198.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29732 (0x7424)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 11 16:04:56 2024 GMT
Not After : Dec 22 16:04:56 2024 GMT
Subject: CN=65a011ab-2583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:89:32:1b:be:db:d5:01:2a:43:b1:79:f4:c9:
d4:6d:ea:fe:30:d5:1b:66:f9:60:d2:fc:b5:67:c1:
8c:1f:61:4d:0f:a2:c9:3b:c7:49:e0:9f:56:b5:18:
32:3d:e2:bf:73:93:cd:8c:cc:5b:cd:60:bd:64:f3:
6c:b6:55:25:bc:9f:a8:31:4a:0c:63:e3:7d:15:df:
19:39:d1:8e:2f:ab:c4:81:02:ae:e9:f3:f6:d9:d4:
ba:49:d8:2f:52:d7:ce:07:71:1f:96:39:cc:a5:88:
a7:a9:e9:53:33:db:6a:d3:f3:7a:51:e0:93:a9:79:
a3:5a:ce:2a:a5:5d:39:78:31:bf:37:d1:25:5f:ea:
46:d8:f6:57:4b:b0:5a:24:f5:08:8a:ab:86:09:cf:
f2:a0:1a:f2:77:7e:e2:a4:85:db:0e:42:a2:5f:77:
a3:ab:7d:54:70:e3:0a:34:60:43:33:02:8e:a6:01:
d3:34:76:d1:59:a4:a8:e4:4d:8f:0f:ba:b3:a9:ad:
73:be:45:81:d5:43:c0:c1:1f:52:8c:4b:99:a5:84:
7e:a1:e3:79:a5:27:b4:75:d0:f8:26:33:7f:53:0b:
16:cb:e8:24:60:44:18:55:aa:4b:9e:a1:b5:60:49:
6b:a8:0e:90:8f:00:5c:37:d9:5f:f0:d9:ef:f6:8d:
8d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:AD:4E:E5:65:F8:87:07:A4:F8:F4:06:FD:15:38:BC:C2:8A:2E:0F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2B639B80B09B11EEABEB0E9B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.5.0/24
Signature Algorithm: sha256WithRSAEncryption
25:10:f2:2e:47:3f:98:71:22:bf:5f:eb:05:96:fe:99:7a:e4:
cc:57:04:1b:48:cc:82:1d:f0:8c:85:40:d3:5a:4c:63:a1:99:
1b:c6:2d:07:ec:26:09:92:2a:c9:f4:6f:7e:70:74:88:26:c3:
f7:cd:f5:be:b6:1c:af:0a:76:b6:07:63:5c:92:a8:d7:3f:08:
76:fa:00:36:70:2a:f7:7b:1d:84:c0:10:54:3e:0c:4e:62:bd:
3f:f5:47:25:ee:5e:df:6a:bd:58:c5:8e:49:dc:9c:c9:0d:f9:
fc:53:67:3d:0b:bb:ad:1e:00:0a:0f:c5:b1:09:af:14:92:22:
7f:a7:44:8f:c7:0c:5c:95:d2:a8:c8:0c:d1:2b:37:03:e0:7d:
88:12:30:4d:ae:69:f3:56:fb:a3:fb:de:60:10:37:78:00:99:
22:30:c5:f1:d8:67:d0:26:6d:02:c7:a3:9e:a9:9f:ad:0d:12:
71:86:c1:ee:97:ca:85:ab:cc:a0:d0:0e:37:d7:5e:66:a1:33:
16:d5:c8:1e:ec:41:13:4a:40:45:4c:d2:a7:65:35:95:84:e8:
f8:ee:56:7c:58:cf:18:fa:e9:fa:1e:fe:ef:a3:55:d3:f2:0e:
93:82:05:f4:59:c3:6f:42:1b:f2:e4:f6:2e:64:21:9a:58:09:
20:33:b0:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:19 2024 by rpki-client on console-fra.rpki-client.org