Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3034B980F70611EEA582D98E775412E6.roa
File: 3034B980F70611EEA582D98E775412E6.roa (raw, json)
Hash identifier: axbx/upywS3mGVeqS5pHD1K9OLeRs+btTFM4Am25/vU=
Subject key identifier: 0E:FB:24:69:D9:AB:22:0A:79:7D:DD:3E:92:1A:53:A7:55:B2:80:4A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AAD0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3034B980F70611EEA582D98E775412E6.roa
Signing time: Wed 10 Apr 2024 06:47:25 +0000
ROA not before: Wed 10 Apr 2024 06:47:21 +0000
ROA not after: Sat 20 Apr 2024 06:47:21 +0000
asID: 133180
IP address blocks: 154.209.160.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 20 Apr 2024 06:47:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43728 (0xaad0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 10 06:47:21 2024 GMT
Not After : Apr 20 06:47:21 2024 GMT
Subject: CN=661635fc-8d4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:7f:23:df:31:a4:9e:cc:be:bc:87:b2:69:1a:
19:4a:7c:b9:1a:af:52:80:ff:3a:3b:95:bf:13:53:
35:b2:cc:26:db:b4:9d:84:cc:28:a3:04:79:67:6c:
da:1a:15:70:8e:7d:57:77:b1:e0:45:7c:aa:8c:78:
fd:79:ba:35:94:62:cc:90:a7:58:06:37:cb:42:1d:
47:46:60:8e:fb:3b:a4:e3:e1:54:5b:e2:ed:41:a8:
c0:5c:e9:09:2f:af:c3:44:e2:c1:eb:bd:be:a8:02:
f3:83:b4:be:83:3d:89:8d:16:c7:b0:c5:d7:f8:83:
01:24:cf:15:2e:cd:f0:f0:a3:f5:b0:24:92:d6:7f:
27:47:ae:ff:72:92:11:83:47:e3:12:f8:6d:18:bb:
fe:87:49:35:01:72:2a:96:e4:1d:eb:40:28:b0:36:
1d:12:c9:b0:49:ab:ea:84:38:3f:4d:35:80:38:df:
56:d7:d0:c7:b1:c2:50:2b:89:5e:dd:4a:fb:14:7b:
4d:01:ff:fe:84:fb:c8:6b:49:2b:18:7f:09:86:57:
34:10:ba:94:c3:e9:00:1e:8e:54:3d:d4:30:b5:70:
b5:0f:84:4b:32:e9:80:82:6a:51:d3:3a:1b:03:fe:
32:21:97:d8:b0:c5:a8:b6:9c:46:2d:c9:67:dc:a7:
4c:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:FB:24:69:D9:AB:22:0A:79:7D:DD:3E:92:1A:53:A7:55:B2:80:4A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3034B980F70611EEA582D98E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.160.0/19
Signature Algorithm: sha256WithRSAEncryption
74:29:7f:e2:a5:17:bf:dc:bf:18:f8:80:55:d2:85:17:71:ec:
c0:4c:aa:95:9e:ea:7e:ec:ef:e4:42:03:89:a5:4f:56:ea:3d:
f1:a6:7f:8f:7e:f4:05:cd:63:75:f8:a8:f8:1a:87:63:56:19:
c7:cb:8e:d0:22:2a:a0:b6:c6:88:ce:18:79:e1:19:db:fc:b6:
d6:b0:80:f7:71:dd:b5:c9:39:16:c3:51:27:c3:27:99:14:f8:
c3:4d:41:a8:df:ed:33:16:e4:f6:12:ca:ce:66:69:24:ce:d7:
f5:5e:01:1b:54:a6:f2:0f:ae:9a:3e:61:87:77:94:cc:c8:35:
f8:e7:91:dd:48:5a:1f:d8:14:8e:24:3c:cf:b4:2b:96:ab:48:
5b:43:63:c2:23:90:09:9a:17:b0:47:29:80:1c:85:da:c8:e1:
ad:b9:d8:e6:9f:46:1a:7d:c5:fd:c7:7e:87:f0:0f:a1:95:8e:
90:68:69:fa:9b:0d:3e:0c:ad:59:6a:e5:f1:ea:2c:f2:24:f4:
c6:dc:b0:fa:7b:71:c7:4d:cb:84:da:55:05:5c:25:f4:96:f7:
47:7d:1c:61:dc:a5:ab:26:26:8c:77:9f:67:0b:f2:10:76:67:
4d:9c:94:ac:e6:35:2a:38:68:20:c2:85:e6:8a:ae:cb:1d:11:
6c:3a:26:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 01:48:19 2024 by rpki-client on console-fra.rpki-client.org