Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54E053EEEFF311EEAF57BBA7775412E6.roa
File: 54E053EEEFF311EEAF57BBA7775412E6.roa (raw, json)
Hash identifier: MUkBi1L7Q1U6M8SOLPVKLLHvJyIzSYz9p3QAbEce1oI=
Subject key identifier: 07:11:AC:4D:DC:35:F7:5E:D9:31:FB:11:63:41:F4:C7:16:2A:8C:E5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A7D8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54E053EEEFF311EEAF57BBA7775412E6.roa
Signing time: Mon 01 Apr 2024 06:44:47 +0000
ROA not before: Mon 01 Apr 2024 06:44:44 +0000
ROA not after: Tue 07 May 2024 06:44:44 +0000
asID: 63139
IP address blocks: 154.223.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42968 (0xa7d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 06:44:44 2024 GMT
Not After : May 7 06:44:44 2024 GMT
Subject: CN=660a57df-71f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:52:52:cf:ac:60:af:e0:a8:66:27:df:d8:10:
12:2b:30:ef:d1:01:31:53:97:92:b2:c1:e6:eb:b5:
f2:68:4d:bf:54:ef:ef:33:4b:7c:f8:57:49:c2:b6:
7b:c0:90:f8:c0:6e:45:db:a2:9e:9e:51:90:2f:55:
1a:25:8e:c3:b2:a5:0b:72:c2:19:6d:ee:62:2d:8c:
7f:6d:71:d2:b5:88:5c:60:cc:a8:37:ef:f8:75:12:
0c:19:ee:1a:3e:22:43:72:8d:a0:6c:23:bb:40:ed:
c3:44:aa:08:30:ce:ff:ff:4f:d5:7b:2b:cc:20:2a:
b5:b0:1e:19:ba:15:64:06:18:dd:47:24:71:be:39:
5e:99:f2:bf:a6:01:0b:30:43:72:70:c1:b4:2f:b4:
b3:d3:14:32:76:fb:dd:24:e7:e3:49:cf:8e:70:8c:
bc:f2:a7:bc:75:c2:8e:97:a8:3c:d1:e9:3e:7b:42:
a5:9d:f1:8b:33:47:ad:ed:89:d3:73:91:6f:21:60:
de:8b:2f:e4:2d:77:9e:1f:44:bf:b5:5c:98:89:a3:
cd:d2:a3:de:5f:45:2b:eb:1f:be:c6:b1:52:04:9e:
2f:9c:e6:fd:92:df:b1:fa:d7:de:27:d4:b9:76:e6:
36:9c:44:b5:75:22:4f:72:3c:72:25:a8:72:83:54:
09:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:11:AC:4D:DC:35:F7:5E:D9:31:FB:11:63:41:F4:C7:16:2A:8C:E5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54E053EEEFF311EEAF57BBA7775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.30.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:44:81:b8:77:9a:8c:84:37:2f:ff:8e:31:56:8e:41:7c:5f:
b0:30:e3:53:42:43:c2:89:5f:3d:c9:af:46:b7:dc:bc:76:fc:
32:7b:b5:be:ed:e1:df:f7:10:b2:af:87:9d:75:1d:52:f8:22:
4c:f1:fe:7d:0c:23:b3:73:3a:db:97:70:f7:dc:4e:80:23:44:
91:34:e6:6e:83:b5:15:23:70:ad:3c:fe:01:87:26:bb:8e:74:
4e:29:8f:bd:6a:6b:cd:88:3e:f5:9b:e5:84:19:00:08:14:cd:
88:a7:d9:e7:c7:e7:92:25:b1:0b:e0:56:50:82:13:44:04:34:
29:11:a4:a9:a9:3f:02:c2:84:a1:87:3b:75:15:1f:19:46:83:
26:ee:4f:97:6a:fb:81:8e:0f:38:f1:91:ae:93:42:33:e9:a3:
98:53:5a:ce:fb:9e:7d:3b:60:1f:a8:93:10:42:df:90:67:87:
da:7e:06:05:5f:5f:e6:e1:c5:32:e0:a4:98:0f:12:5c:61:99:
cb:8d:91:4c:8f:05:a7:98:14:e8:48:e9:78:11:4f:a1:34:c6:
a6:fb:86:e1:a0:07:6a:9f:a1:02:95:29:10:7a:32:cc:fa:46:
19:05:52:bf:0b:1d:23:5f:14:34:18:4a:58:a2:43:02:e7:5b:
4b:b7:3e:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:24 2024 by rpki-client on console-fra.rpki-client.org