Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/555A53E0EDB611EE85AB40A6775412E6.roa
File: 555A53E0EDB611EE85AB40A6775412E6.roa (raw, json)
Hash identifier: UXbmCD4cRZEu+IsKfLf8b7TGwZOgysxl262sufN7fik=
Subject key identifier: 6E:D4:0B:D0:8B:7C:4A:30:A8:14:35:D3:94:93:FB:01:71:AA:12:0B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A727
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/555A53E0EDB611EE85AB40A6775412E6.roa
Signing time: Fri 29 Mar 2024 10:23:07 +0000
ROA not before: Fri 29 Mar 2024 10:23:03 +0000
ROA not after: Sat 04 May 2024 10:23:03 +0000
asID: 142062
IP address blocks: 154.86.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 10:23:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42791 (0xa727)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 29 10:23:03 2024 GMT
Not After : May 4 10:23:03 2024 GMT
Subject: CN=6606968b-ffde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:16:ca:c8:09:2d:d6:88:f8:75:93:3e:d5:7d:
75:fa:2b:0a:35:f4:56:e4:ff:78:9d:9f:05:82:e3:
13:f3:0e:38:c1:1f:29:c1:c3:f0:94:bd:34:fa:2e:
05:47:39:58:c3:cc:ce:3e:d5:8e:c3:e4:68:ff:4f:
bb:99:1e:05:05:4a:6e:69:68:c2:d9:19:f6:9f:df:
f6:41:22:e2:0e:70:5d:3e:0c:cd:66:36:dd:f0:9c:
2e:5f:a1:64:1d:8e:26:a9:4e:c4:28:39:d5:c8:e1:
fd:c3:2e:2b:9c:37:0b:e4:37:94:51:f2:69:01:ce:
dc:de:fb:9c:af:99:ef:7e:eb:03:00:69:1f:5b:58:
63:92:14:ac:e9:23:a1:01:37:ec:7d:83:eb:91:6f:
dd:b8:4f:64:43:6d:61:c8:c8:29:ff:e0:bb:c2:a3:
29:5b:92:b9:e9:57:13:af:db:f4:64:14:7e:22:06:
bc:da:d6:8c:ce:3c:18:69:d8:81:78:5e:3c:d8:fc:
fe:63:df:23:c1:78:da:49:cc:f4:22:e4:ba:31:61:
6b:90:90:99:05:aa:df:12:97:5c:09:0d:ab:01:35:
80:08:66:8a:06:44:48:11:c5:8a:ac:7a:50:20:de:
b0:f8:5e:5a:2c:71:25:ca:20:55:84:55:2d:e0:0f:
10:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:D4:0B:D0:8B:7C:4A:30:A8:14:35:D3:94:93:FB:01:71:AA:12:0B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/555A53E0EDB611EE85AB40A6775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.76.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:12:d0:36:4a:b2:50:71:f5:5a:24:37:33:e0:75:c9:c3:4e:
24:07:f7:fd:86:17:d8:6f:25:d6:1c:07:0a:bc:7c:a9:be:54:
e8:41:24:24:a1:97:94:e6:1a:f8:67:50:23:7b:c0:d3:de:92:
1a:ff:9e:92:19:c3:0c:7e:63:89:4a:37:df:f7:6a:f8:34:ab:
f9:b9:9e:74:c6:37:f6:9d:9d:3f:ff:f7:86:c8:ca:6b:65:37:
06:3c:50:30:62:88:4c:6c:cb:a4:a9:82:7d:cb:ec:25:af:00:
15:6b:f5:77:55:6d:5f:ad:7b:9b:26:ef:d4:c9:58:68:17:3f:
31:2e:55:ae:e0:72:ad:69:89:4c:36:30:3b:05:af:36:9e:ed:
bc:f2:82:f9:0c:ea:f4:58:29:ce:35:73:c0:5e:3d:3b:4e:d7:
7d:d6:d8:2d:d4:13:52:fd:ec:bd:48:22:d2:be:89:55:2f:9d:
09:5d:b5:c5:0b:80:90:02:8f:6c:f9:13:e0:67:96:bd:55:9e:
b5:da:a6:01:6a:67:3c:8f:ee:71:2e:aa:61:b0:db:2a:13:29:
4a:60:65:db:6b:6b:15:ee:b1:a5:92:4d:97:fb:7a:ea:33:ae:
b3:1f:de:73:45:58:33:18:e9:8c:de:07:46:ec:53:82:92:f5:
f1:f6:b5:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:24 2024 by rpki-client on console-fra.rpki-client.org