Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5BEF5CA8E78211EEB80C6896775412E6.roa
File: 5BEF5CA8E78211EEB80C6896775412E6.roa (raw, json)
Hash identifier: yg7971tHlNdY+/geJRojVv46RPLpS+tbPNQKGjBUq4I=
Subject key identifier: 47:12:84:20:36:07:59:55:A2:78:C1:6B:B2:FD:2F:E5:5B:4C:59:2B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A57F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5BEF5CA8E78211EEB80C6896775412E6.roa
Signing time: Thu 21 Mar 2024 12:55:57 +0000
ROA not before: Thu 21 Mar 2024 12:55:53 +0000
ROA not after: Tue 23 Apr 2024 12:55:53 +0000
asID: 44559
IP address blocks: 154.210.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42367 (0xa57f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 12:55:53 2024 GMT
Not After : Apr 23 12:55:53 2024 GMT
Subject: CN=65fc2e5d-8faf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:08:98:0a:04:91:97:e2:08:78:27:03:86:77:
79:4a:1f:ce:27:08:a9:13:0a:a2:bd:b5:7b:38:bc:
1c:8a:f6:25:d0:d1:e3:5f:e7:10:b6:7a:bf:b9:e5:
47:ad:a1:85:e6:16:f8:1f:ad:8b:c5:82:a4:55:e7:
61:b8:94:a1:61:28:91:77:a4:aa:64:ee:ef:33:bd:
73:eb:c3:88:0c:4d:09:c8:d9:12:20:42:59:c5:e8:
a7:43:f0:ef:4d:0a:ff:39:06:14:4e:8e:63:d8:19:
92:6b:d0:60:2b:db:13:6b:bf:8b:e9:09:ea:6e:3b:
cd:5a:25:69:d4:d6:c9:af:5f:a2:05:6a:66:d5:51:
b7:0e:99:e1:87:80:fa:06:f3:d6:29:88:98:ca:22:
6c:65:0f:ec:b4:98:15:d7:12:e3:7a:c4:a7:a9:46:
65:5d:ba:9e:5e:d8:6e:d0:22:42:e0:c5:5a:19:e7:
39:11:df:ad:24:83:ec:3b:e0:b6:5f:59:fc:22:ee:
31:ed:43:05:ae:5a:ab:c8:ca:8d:80:d9:7a:f3:7b:
49:97:b8:92:b1:18:db:47:53:e7:44:66:e1:f5:f1:
30:87:c7:2f:88:61:db:f4:f8:38:12:86:01:dc:75:
38:56:96:06:4c:43:2c:c3:ca:98:97:c5:a8:c4:91:
f7:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:12:84:20:36:07:59:55:A2:78:C1:6B:B2:FD:2F:E5:5B:4C:59:2B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5BEF5CA8E78211EEB80C6896775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.93.0/24
Signature Algorithm: sha256WithRSAEncryption
54:86:71:58:8f:58:dd:9d:c4:63:4a:95:59:87:c6:99:cf:55:
d0:59:eb:67:58:ef:05:74:6e:65:98:b9:8f:18:a5:8a:c3:bc:
7b:cf:e5:d6:6a:53:36:65:b1:96:96:f1:2b:74:89:42:b0:6e:
55:91:82:52:79:ff:0e:81:da:74:a4:13:f0:11:59:ce:de:d8:
db:da:9e:ed:82:b0:5e:c6:95:8a:4b:d9:f4:e9:1d:a7:a8:0a:
37:53:7b:2a:aa:21:f1:85:43:2e:98:b9:6c:c5:c9:93:f4:d1:
93:4c:b1:d9:b6:83:17:b3:32:f8:e9:ae:45:3b:6d:2c:17:48:
2e:56:16:85:a3:b4:38:3e:4d:b4:7b:2a:0e:5f:9c:d6:87:0b:
90:ed:e1:dd:c5:5a:62:84:82:0d:d6:09:91:06:71:28:ac:f2:
5b:2c:00:cd:3d:19:15:e8:cb:12:1c:58:f1:ce:31:9f:1d:77:
d2:b9:5f:a1:52:69:df:6a:c3:ff:77:5e:de:3b:2b:b4:70:5c:
c8:2d:d4:34:9c:d3:17:de:26:a8:61:85:00:30:78:d3:0d:e2:
16:d5:69:17:e9:76:93:fc:fa:19:01:af:17:da:62:b7:7d:ff:
6a:67:85:8a:f3:bb:07:11:7b:58:4d:ab:f8:06:b4:ea:14:d5:
42:7e:f5:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:19 2024 by rpki-client on console-fra.rpki-client.org