Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5C991ACCF7BD11EE9FEAB111017001B1.roa
File: 5C991ACCF7BD11EE9FEAB111017001B1.roa (raw, json)
Hash identifier: eodchxnf7nFETuLl7B8AdN4xhipJ/8c9q9Fl0Yx7LnY=
Subject key identifier: 95:E3:72:D9:3E:3F:39:6C:6C:BB:3A:E8:64:54:4F:73:A6:BB:04:B2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB07
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5C991ACCF7BD11EE9FEAB111017001B1.roa
Signing time: Thu 11 Apr 2024 04:38:37 +0000
ROA not before: Thu 11 Apr 2024 04:38:34 +0000
ROA not after: Sun 19 May 2024 04:38:34 +0000
asID: 138915
IP address blocks: 154.90.46.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43783 (0xab07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 11 04:38:34 2024 GMT
Not After : May 19 04:38:34 2024 GMT
Subject: CN=6617694d-03c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:1e:90:00:f5:0d:5b:32:c1:49:c6:e0:d9:eb:
3c:fb:94:c6:71:0e:c9:d6:b9:62:52:31:f8:ce:01:
9f:f9:c8:f2:f1:b3:09:18:d7:c3:3f:ef:e7:ea:4c:
99:20:08:0c:09:74:d8:12:d8:c5:5c:89:d0:77:15:
72:85:ec:eb:85:4b:3a:06:82:03:91:09:96:2c:3d:
93:cb:95:a7:8c:e3:36:52:71:30:8d:18:ac:90:cd:
dd:fe:c1:15:1a:8c:c0:d7:fd:f8:b9:1e:f2:ae:01:
b3:76:92:03:67:66:38:9d:84:2f:be:dd:2f:a4:0b:
5a:66:ec:80:bd:7c:6f:b0:98:c7:00:5b:1c:7d:2a:
02:71:41:67:9d:47:e6:31:09:c2:43:f1:92:9e:14:
a6:e8:1a:9f:fd:46:ba:3f:e0:c2:27:9c:14:58:5b:
16:ce:50:99:66:fb:96:1b:7b:d8:00:80:e4:3f:86:
e9:0a:b5:b9:9b:0d:9b:24:92:e5:7d:87:a1:4e:ab:
ed:54:e5:0f:8f:b9:bf:72:fe:0a:47:bd:d2:09:60:
bc:29:65:7b:52:ec:a3:81:5e:63:53:e0:20:e3:af:
ef:fd:a8:eb:89:af:bb:93:39:3f:17:49:62:6a:6c:
f9:26:f3:cf:8f:3c:9b:5f:15:c1:df:7c:72:3c:8f:
02:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:E3:72:D9:3E:3F:39:6C:6C:BB:3A:E8:64:54:4F:73:A6:BB:04:B2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5C991ACCF7BD11EE9FEAB111017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.46.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:16:dd:bd:91:74:ce:99:c1:d9:11:54:29:03:fd:36:1a:ed:
fe:e8:17:d8:7f:48:51:9d:ed:44:a0:e6:b3:b1:96:0d:c9:82:
67:11:28:88:e4:77:8e:c3:f0:7d:3d:c3:77:e2:5f:66:ed:bf:
85:6a:a4:63:53:50:3e:c2:eb:4f:9e:7b:41:d5:e7:48:6f:5c:
78:65:48:65:35:85:b1:be:b5:0b:00:25:c0:d2:51:fc:2a:e0:
fe:9c:07:6b:fb:71:81:29:d2:41:0b:ee:95:9e:66:47:8d:b1:
b8:65:fb:27:14:82:c6:0d:5c:18:fb:7a:35:29:3a:13:58:cb:
7c:fa:ff:84:ee:8a:5b:9b:98:4b:1f:68:03:73:68:e2:47:25:
6a:1e:dd:a5:d5:d2:a3:d3:8f:56:28:a1:fb:7f:98:ec:25:50:
d8:49:26:07:0d:75:56:3e:09:60:de:24:51:25:c5:c8:fb:5b:
a1:47:57:2b:4e:69:0c:bb:9c:e7:34:3e:26:62:6d:89:1e:a4:
e3:83:68:d7:fa:b1:2e:8f:bc:2b:46:4a:0b:fe:49:1d:f3:fa:
25:60:57:c8:7b:8e:85:c5:aa:c1:05:03:7f:fc:5f:15:15:8b:
87:5f:2c:1c:af:d0:b9:db:d8:67:1a:82:55:11:f4:e9:dd:85:
a1:f1:2a:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:25 2024 by rpki-client on console-fra.rpki-client.org