Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/56D1DE34F00C11EEA81A226C775412E6.roa
File: 56D1DE34F00C11EEA81A226C775412E6.roa (raw, json)
Hash identifier: jm4DPZwLU8fsOeDbj+cP0okSSSFOa1AtsN4Nxio+fxE=
Subject key identifier: EB:EF:3D:E7:8F:63:60:6D:97:D0:C0:78:56:1E:EE:26:59:BB:96:A1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A852
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/56D1DE34F00C11EEA81A226C775412E6.roa
Signing time: Mon 01 Apr 2024 09:43:48 +0000
ROA not before: Mon 01 Apr 2024 09:43:45 +0000
ROA not after: Sat 11 May 2024 09:43:45 +0000
asID: 138915
IP address blocks: 154.203.130.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43090 (0xa852)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 09:43:45 2024 GMT
Not After : May 11 09:43:45 2024 GMT
Subject: CN=660a81d4-0b71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:db:c3:c9:81:46:4e:ef:72:33:57:5f:a5:bb:
f8:e1:c5:27:89:6e:8b:03:6b:c4:e4:78:22:56:78:
f3:f7:7e:f3:a3:68:76:93:82:ab:5b:47:bb:65:54:
f5:05:83:24:f7:fd:85:77:03:39:24:22:e9:39:03:
77:f7:92:3d:23:9b:61:71:a6:0c:6d:23:c2:25:58:
8b:96:b8:f1:9e:a9:34:40:17:9d:b8:70:fb:f3:a1:
1a:c1:22:85:0d:b6:40:7c:69:f3:f5:bd:18:ee:bf:
79:e6:3d:ca:03:f3:cd:d9:44:89:31:34:55:01:eb:
4e:7f:ba:b4:95:dd:1a:56:ed:cd:45:a2:d9:a3:10:
bf:b4:29:43:1e:33:a3:6c:f2:2a:34:84:35:44:19:
69:5a:3d:7f:e1:f5:e6:16:ea:83:26:a8:ad:02:3b:
af:05:6a:10:74:a9:c1:aa:04:48:c5:59:c4:8a:e0:
f8:12:63:e9:89:72:6f:22:75:1b:97:a5:12:a1:c7:
54:b5:78:c4:e5:bc:bd:f5:ff:68:b3:4c:4d:aa:63:
fe:57:e4:8e:12:97:38:f0:82:a6:aa:60:cc:77:e3:
2b:93:18:ec:7c:45:69:dc:00:f6:37:9c:45:20:b1:
5b:0c:3e:ac:6f:3a:1f:6c:5e:16:c3:10:44:20:66:
fc:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:EF:3D:E7:8F:63:60:6D:97:D0:C0:78:56:1E:EE:26:59:BB:96:A1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/56D1DE34F00C11EEA81A226C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.130.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:b8:4e:7b:45:3f:82:7a:51:e6:79:c6:8a:79:3a:b3:23:1b:
b6:11:31:a7:17:4f:f9:41:75:16:f0:ef:d8:89:91:53:51:e6:
29:27:49:21:e2:7e:bd:c2:6c:52:60:97:29:fe:30:71:06:c5:
ff:5b:8c:13:35:2f:8a:78:17:bd:eb:b3:55:7c:32:ab:0c:8d:
29:7a:78:3c:e5:32:21:8e:79:01:be:7d:63:66:bd:98:51:83:
82:e3:62:14:0b:a4:6f:ff:98:f7:63:93:35:a8:8a:af:fd:14:
3e:04:09:f7:09:7a:66:8a:0c:0f:14:35:15:db:4f:be:5d:99:
be:ca:9e:23:4c:b6:4e:3a:d1:46:19:f8:68:92:04:ae:88:0a:
59:04:a8:67:1e:84:5a:2c:1b:4d:f2:26:cd:d4:65:c8:40:65:
0b:1c:70:0f:af:18:0b:08:e4:e4:10:72:3c:1e:5a:30:c6:2b:
c2:71:54:53:8b:39:70:11:12:44:7f:61:04:2e:5b:6f:00:3b:
e5:cd:4d:27:55:49:a8:fe:14:17:d9:b5:cb:24:d8:f6:46:7e:
30:9f:c5:7f:79:d4:90:11:da:6a:5d:15:cd:88:55:ee:a3:10:
31:91:cb:e3:15:22:10:35:25:98:f9:59:7c:0a:18:cb:99:4d:
a2:a7:df:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:24 2024 by rpki-client on console-fra.rpki-client.org