Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2CC64790F1A311EEA3ED205D775412E6.roa
File: 2CC64790F1A311EEA3ED205D775412E6.roa (raw, json)
Hash identifier: iLRrUjnoZKBa5NSiuUbN3srnCOBqC2rpvaPyElhlYlo=
Subject key identifier: 52:56:30:32:90:BA:48:52:2A:DB:0C:44:EF:BD:2E:BB:3C:FC:57:28
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A94A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2CC64790F1A311EEA3ED205D775412E6.roa
Signing time: Wed 03 Apr 2024 10:16:03 +0000
ROA not before: Wed 03 Apr 2024 10:15:59 +0000
ROA not after: Mon 22 Apr 2024 10:15:59 +0000
asID: 210542
IP address blocks: 154.91.200.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 22 Apr 2024 10:15:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43338 (0xa94a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 3 10:15:59 2024 GMT
Not After : Apr 22 10:15:59 2024 GMT
Subject: CN=660d2c63-e22b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:6b:2e:1f:49:b4:91:69:19:5c:73:20:ae:0c:
af:c7:41:1b:0b:87:6e:9a:fe:7d:24:19:f5:83:8d:
82:f1:b7:d8:1c:4a:0f:18:20:bd:8b:21:01:0b:0f:
83:fb:82:7c:a0:5f:35:a1:27:a2:ac:a8:55:5f:3b:
ea:76:7d:55:63:16:09:ff:27:a7:aa:4c:77:04:32:
8a:7a:9c:97:81:a8:69:8b:14:e2:21:6d:0a:22:0e:
0a:65:e1:d0:51:0f:fe:4e:b9:03:eb:d0:30:66:43:
79:0b:2e:9c:74:be:af:5e:be:38:1c:54:44:20:b6:
6d:10:85:90:0a:3b:44:ec:15:2e:6f:d8:a3:fe:fb:
90:8c:35:99:21:43:44:66:8d:f4:e0:21:83:42:7e:
15:4a:4d:46:3b:05:01:53:d4:9f:08:f7:ea:68:37:
85:c7:5d:9b:e2:ce:9e:f1:2c:70:e7:f0:43:71:4c:
1d:03:bb:0e:61:bf:3d:40:84:24:b7:5a:82:d6:d2:
34:6b:57:c9:ff:4a:e6:b6:6e:d4:89:68:90:16:69:
16:c5:50:77:72:93:6f:54:59:05:19:24:37:06:e6:
a2:de:11:55:0f:12:e8:08:2f:21:22:27:d2:1f:13:
28:e0:e0:3e:65:60:b1:b8:61:a6:ba:bd:56:42:c1:
32:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:56:30:32:90:BA:48:52:2A:DB:0C:44:EF:BD:2E:BB:3C:FC:57:28
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2CC64790F1A311EEA3ED205D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.200.0/23
Signature Algorithm: sha256WithRSAEncryption
96:5a:b9:ad:bb:73:42:e0:02:b7:70:f9:04:b7:5d:88:b9:c3:
ad:45:ad:aa:c0:85:aa:d9:3b:72:8d:fa:2b:41:1e:c9:c4:b2:
b1:0a:53:b3:4a:13:23:72:09:28:91:ba:3c:d8:ef:57:05:1c:
cc:63:94:e4:d4:e5:e6:6d:38:57:16:e5:32:d7:32:79:f9:15:
45:d3:c0:8e:10:b4:96:19:5b:cb:7b:58:ee:ee:64:ff:ee:16:
b5:2a:5d:d8:62:71:14:7d:86:db:15:a4:a5:1d:e1:f6:3a:69:
5d:14:7c:18:3f:0a:35:20:3d:42:80:ad:2c:c8:6d:01:7a:dc:
45:95:e8:33:2e:6d:1b:1f:14:e3:d6:3d:e5:1e:bc:19:91:8f:
a7:c3:69:9f:36:7c:ca:a8:3a:69:00:60:56:18:e9:46:1f:ac:
5d:31:f8:c3:eb:23:c3:d5:a1:55:e8:14:77:d3:40:9e:a0:d5:
23:d5:98:81:92:36:bc:4d:52:1a:c7:d6:be:52:5e:71:f1:1b:
1e:a4:0f:e1:30:cd:5c:8e:69:77:0c:04:e1:9a:df:ef:5a:26:
0d:4f:80:8e:ee:cf:8a:93:c9:4a:5f:4e:6b:1f:dc:03:0f:41:
43:1e:f0:f1:cc:d6:77:c1:55:b8:4f:f5:82:eb:4a:c9:3e:d9:
53:a6:51:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:15 2024 by rpki-client on console-fra.rpki-client.org