Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/50CEBAAEEFF111EE98F61B98775412E6.roa
File: 50CEBAAEEFF111EE98F61B98775412E6.roa (raw, json)
Hash identifier: 8tiKMANURuZxavC+SKrvu56nos0qBcOYS2aLtbC5r74=
Subject key identifier: 84:1F:76:9F:BE:C7:69:03:30:9E:DC:6B:8F:51:92:5E:9A:90:DA:62
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A7BE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/50CEBAAEEFF111EE98F61B98775412E6.roa
Signing time: Mon 01 Apr 2024 06:30:22 +0000
ROA not before: Mon 01 Apr 2024 06:30:18 +0000
ROA not after: Tue 07 May 2024 06:30:18 +0000
asID: 63139
IP address blocks: 154.223.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42942 (0xa7be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 06:30:18 2024 GMT
Not After : May 7 06:30:18 2024 GMT
Subject: CN=660a547e-b5f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:74:99:21:64:64:62:3c:0a:1f:40:ff:d0:c7:
35:cf:a7:50:64:31:e9:09:47:35:97:7e:d8:6a:07:
35:46:30:37:26:62:c7:13:7e:bc:52:1f:c6:43:3a:
cc:59:dc:9d:6b:83:95:fd:b9:18:5d:39:18:9c:58:
b9:ee:99:ee:24:2e:56:06:21:09:07:2f:d2:7a:4c:
2d:5d:f7:db:03:e8:47:1c:81:f6:0e:7d:5a:af:c5:
33:0b:79:46:8b:56:28:4f:a5:cc:ce:1b:39:5d:b4:
38:5c:d8:22:ac:82:00:a5:6f:46:cf:f6:db:74:c0:
15:c7:b7:92:b3:7a:aa:46:f4:91:d7:c5:8d:c7:78:
0a:95:79:78:07:49:90:aa:4c:9b:6b:4a:38:83:55:
0f:c2:91:57:dc:a1:fc:54:cf:4d:59:49:21:17:a9:
c2:02:aa:76:11:e9:0c:de:ee:22:5a:0f:9e:d9:10:
ad:09:91:a3:5d:28:f0:69:f2:bb:10:2c:e2:a9:8c:
21:7a:5e:96:76:89:7b:73:20:36:19:19:21:64:e0:
fc:f1:36:3c:28:de:9f:14:62:df:ca:a8:00:02:ba:
59:13:59:27:b3:94:ef:2f:56:60:4d:50:21:41:00:
37:cf:ba:5a:d0:c1:57:19:af:19:1f:85:86:1f:40:
cb:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:1F:76:9F:BE:C7:69:03:30:9E:DC:6B:8F:51:92:5E:9A:90:DA:62
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/50CEBAAEEFF111EE98F61B98775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.31.0/24
Signature Algorithm: sha256WithRSAEncryption
af:05:27:bb:cb:23:2b:c1:99:f3:77:ca:e3:86:82:b8:ea:c2:
48:d6:4d:3e:e5:7f:d2:ad:48:5d:ba:94:69:00:3a:4d:d0:7d:
14:58:61:4e:7c:9b:5f:52:b4:1f:49:19:f7:bd:a8:93:7e:a1:
55:24:08:d9:ba:b6:aa:a1:ba:6f:be:84:c0:7c:88:e6:b1:ae:
b7:7d:4b:2e:db:2f:a2:ab:08:52:7f:0f:7e:d4:13:92:40:e3:
f0:b4:d9:60:ec:7b:2e:1e:b0:ce:ea:ef:40:83:82:96:21:fa:
73:77:da:1c:92:b0:eb:21:34:cd:4c:ce:2b:c2:b2:04:8e:85:
07:d3:a3:d8:f8:35:96:81:be:a1:f1:37:49:03:80:04:4a:3b:
0f:27:e5:36:f6:d3:c6:43:6f:0e:57:2d:55:69:c6:f9:ce:f4:
31:2a:a6:8d:29:ba:6d:ad:89:ac:70:fb:46:59:58:ce:01:c2:
fe:a2:0e:0a:6c:c6:ab:9d:e7:77:aa:9b:d9:08:1a:21:86:07:
a7:d4:0f:6a:b7:af:83:dd:87:8e:fd:63:28:7b:04:0b:15:c9:
26:06:6e:ac:94:59:da:d4:32:a2:85:bc:6d:43:d3:32:72:b5:
88:0b:fe:3b:b2:c5:31:fd:1b:b0:ec:f3:97:df:a5:c1:55:21:
eb:a6:a1:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:23 2024 by rpki-client on console-fra.rpki-client.org