Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B89406EF17211EE8627ED62775412E6.roa
File: 4B89406EF17211EE8627ED62775412E6.roa (raw, json)
Hash identifier: l5Y4pw7LdVwDyTjU7Ka82gxiCMxa0duHYi6dgeD1Pp4=
Subject key identifier: 68:AE:46:8B:E7:01:1B:65:54:91:C5:E7:9F:EE:A6:70:AC:74:BC:D4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A930
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B89406EF17211EE8627ED62775412E6.roa
Signing time: Wed 03 Apr 2024 04:26:09 +0000
ROA not before: Wed 03 Apr 2024 04:26:06 +0000
ROA not after: Sat 04 May 2024 04:26:06 +0000
asID: 140869
IP address blocks: 154.81.34.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 04:26:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43312 (0xa930)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 3 04:26:06 2024 GMT
Not After : May 4 04:26:06 2024 GMT
Subject: CN=660cda61-1282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:54:86:9e:2f:99:1a:9c:a8:71:6d:7a:c0:b3:
d8:2c:8a:0e:2f:3f:f4:e4:82:b0:bf:09:7e:3a:d6:
38:5e:0e:06:9e:f4:e9:0f:c1:b9:f7:50:2a:5f:88:
6b:3b:b6:cd:4a:f4:63:48:a1:ee:4b:e6:7a:a3:b1:
e2:cb:b3:d5:a4:04:bd:2e:28:35:f9:6d:bf:55:c3:
fa:fd:64:a8:f3:f0:19:25:b3:b4:7c:11:fa:6d:55:
de:00:28:fb:f7:e2:ed:a8:cd:4c:fe:32:01:88:0d:
22:b8:91:54:3b:d3:8f:bd:d2:68:ea:e6:a6:b4:0f:
e5:d5:45:26:dd:6d:bc:20:52:aa:06:91:b6:7b:fe:
29:84:d5:c1:17:82:4b:e8:9d:83:85:3e:bc:b1:01:
f7:7b:20:b5:de:af:e8:69:51:03:93:7a:42:b5:9f:
9c:53:e7:9b:3d:63:08:da:12:f3:d1:dd:49:aa:e2:
11:7f:5d:2b:f8:0d:58:af:89:69:8f:b0:05:d1:c0:
6c:28:c3:96:83:ae:54:b6:50:e1:4e:7a:97:9b:6a:
f6:dd:e0:5c:83:c3:0a:b4:cc:e3:e1:da:8e:52:6e:
28:1e:4e:26:8a:12:f0:02:9e:5e:33:9b:a1:04:ec:
9d:12:46:23:f3:a6:49:1f:18:e7:94:7f:5b:cf:b0:
e7:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:AE:46:8B:E7:01:1B:65:54:91:C5:E7:9F:EE:A6:70:AC:74:BC:D4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B89406EF17211EE8627ED62775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.34.0/24
Signature Algorithm: sha256WithRSAEncryption
69:5e:60:cc:7f:e3:3f:50:ec:23:12:39:bd:fb:67:c1:31:d1:
31:6b:69:23:41:6f:06:78:38:af:1d:aa:eb:41:a8:d4:25:1b:
48:dd:49:6c:e0:3a:0e:11:13:75:27:a0:2b:f4:13:53:dd:8b:
af:72:a7:67:7c:d3:81:c9:c9:f1:fb:fe:2f:b8:1e:79:51:24:
74:43:ef:6f:9b:da:e3:04:31:17:3c:a3:24:ea:09:1c:5d:a6:
78:86:f6:59:a0:17:77:91:aa:97:60:71:60:46:d4:29:c6:c5:
b2:1c:41:47:f8:64:47:c9:88:c5:3b:1a:bf:38:cf:76:7c:af:
26:0f:57:5c:d6:3f:bd:cb:b8:4a:e8:bb:89:b3:c6:ff:5a:6b:
bc:10:aa:86:1a:b7:7b:8a:b2:58:07:79:74:01:d2:e3:84:4f:
53:be:80:86:3a:3b:77:e1:55:e1:0c:f1:a4:8e:4b:db:5c:f3:
6a:9e:8f:eb:56:dc:38:e3:d7:cb:97:f7:64:76:e3:9d:dd:af:
55:1b:55:39:62:cf:80:9e:c6:71:42:7a:5a:40:2b:66:b6:7d:
51:fd:5b:4d:78:9d:4c:86:68:15:53:42:52:18:6c:35:73:78:
8e:6c:3d:d8:a8:73:cb:30:77:3b:53:30:6e:04:fb:ef:25:6c:
3e:3a:09:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:23 2024 by rpki-client on console-fra.rpki-client.org