Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/687F2F82EFF411EEBB172EAE775412E6.roa
File: 687F2F82EFF411EEBB172EAE775412E6.roa (raw, json)
Hash identifier: CpdC5Pg49ZTa3/5Wdb4nLgnKhAJRc3ANPD8QvLMgneQ=
Subject key identifier: 86:3A:E8:FC:7E:87:CC:84:8B:A8:F2:03:6C:F5:30:7E:96:4A:7D:90
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A7E6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/687F2F82EFF411EEBB172EAE775412E6.roa
Signing time: Mon 01 Apr 2024 06:52:30 +0000
ROA not before: Mon 01 Apr 2024 06:52:26 +0000
ROA not after: Tue 07 May 2024 06:52:26 +0000
asID: 138915
IP address blocks: 154.223.76.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42982 (0xa7e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 06:52:26 2024 GMT
Not After : May 7 06:52:26 2024 GMT
Subject: CN=660a59ae-ad95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:97:a2:5b:be:58:3c:6d:ca:08:3a:2b:dd:ff:
ca:35:d1:e1:c2:bb:5c:14:40:73:41:c4:97:91:6e:
d8:80:0e:ea:6e:a1:0d:27:98:48:95:e9:fc:b0:e4:
2e:b5:89:12:87:14:32:af:d5:f4:6f:30:af:e6:f9:
2a:b5:0e:47:27:32:19:a9:58:e5:d5:1f:ad:f2:fc:
4b:f9:07:0a:46:12:bb:3c:fe:6f:d0:4f:75:47:ac:
c8:34:eb:33:be:63:86:84:f3:70:35:b0:f4:a2:bb:
53:72:91:79:52:69:f3:94:46:95:3e:d0:3d:eb:e7:
0f:21:70:b1:89:b8:f2:42:4b:49:f4:d9:7e:25:4d:
8f:fb:4e:54:a6:0d:91:16:34:a8:a2:9a:c2:83:c8:
81:63:cb:53:c2:6c:8b:64:09:92:01:9a:9d:ef:ab:
0f:82:11:86:dd:57:b8:67:ef:13:dd:3b:94:d3:af:
a3:cf:91:90:ef:d1:55:7f:4a:e9:5c:15:7e:27:70:
1d:0f:5d:c4:93:6c:1b:e4:cf:9a:f1:22:f9:da:ae:
7a:32:e8:ae:49:9a:53:01:0e:6b:a5:74:a0:ae:f5:
fa:54:ae:36:5f:1a:70:98:33:a1:3b:33:7e:86:63:
a9:b0:98:80:52:0f:e6:24:29:c3:91:c6:1a:cf:58:
60:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:3A:E8:FC:7E:87:CC:84:8B:A8:F2:03:6C:F5:30:7E:96:4A:7D:90
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/687F2F82EFF411EEBB172EAE775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.76.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:47:55:72:73:04:57:2f:57:89:47:04:39:0e:d3:ac:36:d9:
7e:4c:25:2c:96:d3:d5:81:63:fa:94:ed:28:1c:32:bb:32:b0:
ef:a3:76:b5:6f:4b:8a:58:d5:03:0e:c3:84:54:a0:b6:e0:04:
96:e7:03:60:41:fb:e9:70:d6:10:33:23:97:36:73:47:b0:16:
58:ba:57:46:bd:63:64:81:41:50:a8:fc:77:7d:18:74:48:38:
07:12:49:5e:d7:91:31:b0:3e:96:91:1c:14:09:85:6f:0e:b2:
b6:7c:78:8e:1d:cd:0e:e4:af:91:4d:e1:99:c9:9b:81:99:a1:
3f:a6:70:c7:0b:1a:ed:06:61:09:5f:2f:ce:96:37:3b:32:c1:
b6:2d:7d:24:29:c4:f3:9e:d4:61:b6:8e:a2:f5:db:68:ee:e1:
94:aa:3e:b6:9a:75:03:3f:5b:82:1b:55:21:d1:dc:1f:31:13:
9d:50:6b:73:e4:36:67:21:99:50:01:26:56:e6:16:7c:b1:4f:
85:cd:3c:64:90:80:b2:4e:c0:18:cc:2f:02:9c:bb:d3:16:4f:
c3:49:96:8c:b9:8a:fe:f6:44:99:b8:06:9d:54:1a:24:dd:2d:
4e:aa:5d:e9:01:8a:20:ed:c0:84:a1:d1:9c:ef:40:6d:2a:6c:
fb:11:40:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:11 2024 by rpki-client on console-ams.rpki-client.org