Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/56765294F70011EE838A5162775412E6.roa
File: 56765294F70011EE838A5162775412E6.roa (raw, json)
Hash identifier: iIZNjNGtN8kmiOo3YNCdfZfp/mneJdRKqz3MTQzf3Kk=
Subject key identifier: 68:92:23:B8:A8:DA:68:CC:EF:12:06:C3:5D:3D:73:AE:16:55:37:E5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AAA8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/56765294F70011EE838A5162775412E6.roa
Signing time: Wed 10 Apr 2024 06:05:32 +0000
ROA not before: Wed 10 Apr 2024 06:05:28 +0000
ROA not after: Sat 12 Oct 2024 06:05:28 +0000
asID: 150698
IP address blocks: 154.201.8.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43688 (0xaaa8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 10 06:05:28 2024 GMT
Not After : Oct 12 06:05:28 2024 GMT
Subject: CN=66162c2c-4b58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9e:58:cf:07:86:05:22:c8:42:89:2a:fe:a0:
3e:aa:b8:bd:d2:8d:59:36:4a:6e:04:70:82:8b:4e:
39:2c:1f:e2:a6:bb:39:80:f3:10:ac:fa:a1:22:d8:
f8:c2:90:c3:21:1c:65:1c:ef:e3:a8:a0:6a:e3:ba:
dc:99:64:16:99:91:f2:8a:d1:1f:8a:34:6b:77:6a:
2e:69:cd:e9:3d:07:60:f0:50:f5:42:46:f8:2e:12:
e9:5b:5b:d0:08:31:14:ce:4f:78:6a:43:52:e1:72:
84:e5:e2:d0:66:54:1d:67:cf:69:ad:af:3d:39:09:
2d:b8:32:64:37:c3:61:e8:e8:55:86:4c:41:31:a1:
f9:7b:10:14:fc:7c:5a:f5:c7:aa:f8:31:fd:ca:64:
22:dd:fb:4e:c4:9d:e2:f1:e3:79:b7:ed:db:b6:b5:
97:91:59:1d:98:f7:b1:bd:fa:45:44:1d:14:10:92:
ef:1b:1e:04:0a:e2:45:d3:25:57:3f:52:81:bf:13:
ec:38:8f:85:23:96:16:33:93:eb:6c:03:8c:25:50:
83:b5:32:9d:a3:83:f9:67:49:89:1e:1d:8e:bc:30:
d1:f3:fd:ce:79:b4:65:be:ed:cc:dd:98:6c:58:5e:
05:2d:e8:34:fd:47:a7:29:a7:c3:57:51:72:ce:eb:
71:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:92:23:B8:A8:DA:68:CC:EF:12:06:C3:5D:3D:73:AE:16:55:37:E5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/56765294F70011EE838A5162775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.8.0/21
Signature Algorithm: sha256WithRSAEncryption
36:5d:2d:98:b2:69:cc:69:de:a5:d7:70:53:50:c3:7f:6e:be:
a8:d7:bb:20:b5:e2:0e:6d:ba:75:59:fc:59:27:db:5d:3d:dd:
28:42:e4:6b:87:52:bc:87:75:d0:d3:fd:e9:9e:7f:11:06:ac:
78:52:ef:1f:c5:11:f2:c1:d3:cf:cd:76:05:f4:f3:2b:47:69:
b4:bc:2b:11:10:58:d6:71:79:d8:dc:da:e8:67:b1:06:31:1b:
8a:bc:27:b2:dc:96:ef:b0:37:6a:47:39:a1:b6:7c:ce:e7:cb:
b9:23:2d:86:1f:4e:d5:94:7e:fd:9e:7b:1a:64:4c:e4:54:ae:
b7:6e:1d:8e:52:1d:50:da:bd:eb:26:24:9d:9f:f7:6a:2b:e1:
2c:88:8a:78:be:9f:6a:66:dc:8b:9e:7f:a2:db:8c:48:22:b4:
bc:11:6d:26:87:82:70:3a:e8:4f:1b:41:e4:de:de:0b:bd:df:
06:c7:03:a1:c7:53:ba:eb:e7:a6:08:86:b5:d7:85:b8:2d:49:
84:92:64:4c:2e:6b:ae:76:88:07:91:ce:b6:44:e4:38:c3:65:
c6:05:55:83:b7:f5:25:97:f1:e0:b7:56:c4:5b:04:5e:a5:57:
7f:6f:7e:ca:84:5d:86:5a:75:6b:1f:0a:a6:d2:40:85:bd:49:
1a:5d:f0:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:24 2024 by rpki-client on console-fra.rpki-client.org