Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/49214EDCF48011EEB196DAC5775412E6.roa
File: 49214EDCF48011EEB196DAC5775412E6.roa (raw, json)
Hash identifier: GUZhU8mktB59FYJrjFLTk8KmJaDlwdCFmuxHi4WlbcA=
Subject key identifier: 93:98:EA:33:98:C4:B1:4B:F6:47:DD:47:4C:19:02:34:A1:4D:C6:B4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A9AC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/49214EDCF48011EEB196DAC5775412E6.roa
Signing time: Sun 07 Apr 2024 01:43:51 +0000
ROA not before: Sun 07 Apr 2024 01:43:48 +0000
ROA not after: Mon 13 May 2024 01:43:48 +0000
asID: 138915
IP address blocks: 154.206.100.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43436 (0xa9ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 01:43:48 2024 GMT
Not After : May 13 01:43:48 2024 GMT
Subject: CN=6611fa57-5de3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:2c:73:de:7d:e9:8b:04:a1:5c:6f:2e:f6:35:
9f:38:29:1e:90:f0:50:fe:99:d8:39:5c:00:80:8c:
26:61:18:c8:19:e2:32:31:b3:be:e7:19:16:7f:fa:
11:9a:d9:99:3c:c0:98:99:32:17:ba:18:41:b1:42:
6f:aa:e5:3d:64:c6:98:08:36:d6:cb:28:99:04:3b:
69:aa:1e:73:89:cb:d4:d3:cb:bd:a7:fe:49:90:8a:
d5:98:d9:15:c5:01:f1:96:f1:37:eb:59:ee:70:f7:
b8:86:4f:9f:f6:25:c8:b0:6c:2c:4c:9c:26:89:5a:
80:56:ab:04:44:ab:43:c4:ab:77:0c:1d:2d:e8:02:
dd:e0:7f:5e:6b:47:bc:39:b2:c3:d5:3c:42:62:ba:
2c:28:95:c3:78:cb:dc:78:a1:5b:05:14:04:53:53:
cd:ee:fd:50:f8:5a:36:d6:dd:14:11:b1:41:8e:01:
ca:ba:28:15:1e:da:cd:03:f6:1b:ab:8a:5e:8e:da:
9c:08:fd:5f:f4:9c:6e:11:e3:33:38:08:3f:37:88:
e7:78:49:9c:96:9b:5b:e3:26:a9:90:16:0d:ca:15:
02:ee:cb:41:61:c3:55:25:ef:4f:56:61:3e:b1:f1:
64:bb:89:00:3d:51:40:25:bc:4e:80:79:c0:be:a3:
b8:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:98:EA:33:98:C4:B1:4B:F6:47:DD:47:4C:19:02:34:A1:4D:C6:B4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/49214EDCF48011EEB196DAC5775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.100.0/23
Signature Algorithm: sha256WithRSAEncryption
ce:08:f3:90:11:40:79:29:4d:43:83:af:33:23:2c:13:64:6f:
42:89:e7:de:2f:b5:b7:25:a8:b8:80:d2:56:ed:02:15:fc:4c:
56:9e:f5:bb:69:b5:f1:e5:56:12:14:93:ba:a0:14:75:3a:a5:
98:2e:aa:fc:ee:96:d5:f8:5c:b9:42:59:28:c4:92:39:2a:62:
6d:56:5d:84:00:3f:2b:ef:fa:9a:b8:d2:a2:81:43:d7:bb:92:
20:6f:62:61:7d:ea:2f:2e:aa:41:5b:3f:81:b8:92:70:5a:44:
e3:89:47:54:f1:a8:08:b2:74:08:12:43:b5:11:ab:ed:4a:6f:
d5:d4:30:f0:14:6b:40:86:82:66:6f:92:62:33:7e:bb:a6:ba:
60:e3:f4:6d:66:ce:0b:4b:17:a6:83:c2:c5:01:38:07:39:b8:
bf:ca:d3:ce:60:75:11:e8:0f:aa:bd:2c:8f:66:12:ea:72:57:
96:4f:96:a9:d7:a6:28:02:70:55:e7:f4:41:c6:90:1e:d3:7b:
73:7c:c7:d3:de:41:b7:d9:9a:37:9a:7a:9d:e2:fe:c8:7a:64:
6a:93:a6:aa:98:8d:f8:c1:67:56:84:da:79:8b:5e:ce:18:51:
95:3b:40:e5:e4:7c:d8:8e:9f:35:67:f1:25:6a:a2:ac:a8:7a:
2e:59:a2:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:22 2024 by rpki-client on console-fra.rpki-client.org