Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3EDCF216014411EF8C8BD334017001B1.roa
File: 3EDCF216014411EF8C8BD334017001B1.roa (raw, json)
Hash identifier: m8QezgFgNgk49uV6y7SV2ALEPjhmFmo2XOCUqERCnno=
Subject key identifier: 90:D4:C6:86:F4:E4:C4:1E:92:33:4D:0B:7C:80:7D:64:4F:72:87:60
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AEF5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3EDCF216014411EF8C8BD334017001B1.roa
Signing time: Tue 23 Apr 2024 07:36:50 +0000
ROA not before: Tue 23 Apr 2024 07:36:46 +0000
ROA not after: Mon 13 May 2024 07:36:46 +0000
asID: 137951
IP address blocks: 154.221.4.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44789 (0xaef5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 07:36:46 2024 GMT
Not After : May 13 07:36:46 2024 GMT
Subject: CN=66276512-5892
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:31:d4:c8:68:9e:f2:8f:2a:65:f9:7e:94:ea:
94:10:5a:de:f3:57:78:b3:9a:c4:cc:f3:12:cd:9e:
02:52:0f:f9:84:89:bf:82:9e:76:09:9c:b1:28:b3:
b0:4f:76:92:09:b9:ea:8e:5f:90:fb:52:39:f5:8e:
0d:3a:f1:ae:70:f6:ba:05:12:3b:a7:bf:d7:66:33:
cd:05:7b:ea:bd:48:2f:f2:5c:c9:11:e6:77:6a:62:
e9:c8:6d:53:91:d5:4c:66:47:0f:5e:73:0c:a5:f1:
d5:cc:b1:c2:52:1a:c8:3a:ff:e3:fb:91:51:c9:e1:
26:69:b2:e0:04:48:0e:be:33:2b:76:a3:df:ce:68:
da:a3:81:d7:2f:1d:f9:88:67:f7:38:6e:38:f2:ae:
fe:7e:1e:10:17:e3:a6:7a:b5:2e:b2:23:5f:b0:ed:
29:37:0e:b2:4f:fe:21:cf:e2:12:b7:dc:ab:75:cf:
52:48:cd:10:21:b7:b5:26:e3:e9:84:91:73:47:23:
06:84:48:f3:0c:eb:b0:99:c9:30:34:64:99:eb:66:
dd:2d:62:96:40:9b:ab:e0:d3:be:f7:64:64:5b:37:
4c:b4:23:ef:61:f2:df:4e:0d:81:47:24:0b:45:4a:
cf:3c:3f:d7:5f:f4:11:4f:60:0d:8c:bb:93:db:ec:
13:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:D4:C6:86:F4:E4:C4:1E:92:33:4D:0B:7C:80:7D:64:4F:72:87:60
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3EDCF216014411EF8C8BD334017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.4.0/22
Signature Algorithm: sha256WithRSAEncryption
43:c4:6a:5a:cd:27:02:c3:33:f6:2b:8e:bc:4e:f1:40:48:12:
e7:e5:dc:41:ec:4d:60:73:de:8b:9f:b9:76:36:1b:e3:76:cf:
a0:f3:c5:bc:f9:8a:0a:38:94:50:23:23:ba:66:99:d6:68:4a:
a0:de:3c:9c:c7:1c:1e:84:01:27:2b:8d:28:05:2d:6c:c4:0f:
36:18:e4:ee:dd:c8:d1:34:c3:1f:cc:25:78:a2:1d:55:34:f0:
ff:41:ae:26:ad:8d:ed:e7:8f:66:bd:48:fd:72:e6:9c:c4:55:
a7:b6:46:35:a3:10:c8:84:c1:83:e4:4c:eb:f3:7a:4b:c5:88:
9b:3a:76:27:d8:e2:53:1e:f8:fe:eb:35:23:58:d5:c1:5f:ca:
09:c7:a3:08:1f:a9:4b:07:5d:47:36:21:29:f5:d0:69:ed:69:
d1:ec:8f:9b:8e:6b:f4:6e:6f:fc:35:bd:4c:82:f0:ba:a4:8b:
a4:7c:e2:ed:9b:01:95:b1:22:d8:7b:1f:a4:0d:32:a1:d3:c7:
6c:21:1e:77:2e:4a:de:2d:3c:65:5b:b7:55:46:7c:9f:61:c3:
d2:09:f2:fd:15:fe:b9:7a:0a:cc:46:2b:52:9f:66:85:d6:ee:
40:25:c4:6b:8c:d7:b9:83:ab:9c:c6:55:32:7a:66:72:dc:d3:
7f:e2:64:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 02:32:52 2024 by rpki-client on console-fra.rpki-client.org