Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/39ACBE96D15811EE974B308C775412E6.roa
File: 39ACBE96D15811EE974B308C775412E6.roa (raw, json)
Hash identifier: yH+JUrcnAzTEgUa6z3qsf7DCpH4fVQ29Pn+PawepseA=
Subject key identifier: 7E:63:CA:E8:45:37:C9:6E:6B:27:BB:AC:75:9E:2E:E8:65:B4:BD:5D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8D19
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/39ACBE96D15811EE974B308C775412E6.roa
Signing time: Thu 22 Feb 2024 07:58:55 +0000
ROA not before: Thu 22 Feb 2024 07:58:52 +0000
ROA not after: Sun 23 Feb 2025 07:58:52 +0000
asID: 197730
IP address blocks: 154.208.160.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36121 (0x8d19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 22 07:58:52 2024 GMT
Not After : Feb 23 07:58:52 2025 GMT
Subject: CN=65d6febf-777d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:af:a4:22:aa:14:33:b5:01:77:7d:af:bc:68:
8b:d3:93:ca:db:c3:eb:54:f2:f7:a3:49:ea:50:8b:
16:58:41:f8:88:e8:1f:3b:a6:e6:8b:2e:ee:2c:ca:
c4:dc:7e:bf:07:50:37:44:9e:13:f2:14:a8:1c:72:
af:12:53:d7:3b:3c:24:af:89:8e:e4:c4:9d:f3:0a:
c5:02:a3:b9:6f:dd:dc:fc:fe:15:cf:cc:32:24:50:
45:a6:1d:07:61:a9:2e:50:b6:e5:88:08:75:f5:0d:
42:59:f5:dd:38:27:50:ab:1b:ef:ca:ed:dd:63:65:
6e:08:05:fd:a7:58:93:c3:66:21:4b:1a:f4:f3:c7:
f9:42:70:08:74:e4:90:9a:01:a0:51:71:22:ff:43:
6a:44:8c:7b:de:c3:60:4e:38:5d:dd:78:6c:3e:d7:
f3:3a:c7:d8:c3:c6:7f:0a:81:47:d6:6e:a0:34:06:
8a:7c:2a:0a:f1:e8:a1:0b:f4:a0:84:80:dc:65:ca:
e8:dd:2b:ec:aa:c3:34:4b:fd:2d:0b:9c:8c:ed:2d:
78:22:94:5f:79:e3:04:8d:c6:cd:b5:7f:2e:cb:d1:
21:9a:2c:45:73:a4:0a:4f:0a:e7:8c:cd:c4:20:d9:
b0:35:51:c2:d1:32:93:0e:0e:0d:ec:c8:64:b9:13:
53:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:63:CA:E8:45:37:C9:6E:6B:27:BB:AC:75:9E:2E:E8:65:B4:BD:5D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/39ACBE96D15811EE974B308C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.160.0/21
Signature Algorithm: sha256WithRSAEncryption
90:4e:08:9c:d0:31:a8:46:b3:f0:14:ea:e6:87:9b:8a:1e:23:
8e:0b:cf:00:10:f6:1b:88:1c:ee:eb:bf:8f:25:0c:f4:53:5d:
be:db:63:27:f6:08:0b:e7:4f:18:08:71:4d:81:88:a2:54:f9:
aa:f5:1f:dd:8d:0d:c9:29:de:ac:c4:0f:79:1c:54:c8:f1:56:
12:35:6f:b4:de:c8:d4:4a:62:d8:7a:70:68:a4:62:88:fd:5a:
bc:d4:cd:37:e1:cd:f2:09:4e:4e:f5:0e:a5:aa:6d:21:28:80:
85:2f:29:f8:e6:b0:f8:da:48:a3:af:d2:4e:91:f8:0b:ff:d4:
43:a4:a9:9b:3e:cd:e6:bb:39:ed:7f:0f:0c:84:b2:a3:46:85:
79:da:8d:62:37:5a:6d:97:e4:1f:85:4d:d4:71:78:aa:96:28:
f1:f7:26:bf:40:7c:39:15:99:a0:f2:7b:a9:ba:f2:c3:6d:19:
3f:bd:c3:00:8a:33:f7:e4:0e:79:bc:0d:a3:25:58:44:aa:3b:
56:83:01:0f:d1:30:08:66:34:5c:9b:62:9a:d0:d0:60:32:df:
78:a0:2b:77:e8:db:0d:d4:f1:8d:87:84:63:ac:6b:ec:62:56:
96:20:30:19:3c:1b:f9:50:a6:9a:d3:f2:ed:05:fd:0d:c7:3c:
b9:34:20:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:21 2024 by rpki-client on console-fra.rpki-client.org