Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/71EAF792F8BC11EE9957AE2C017001B1.roa
File: 71EAF792F8BC11EE9957AE2C017001B1.roa (raw, json)
Hash identifier: Li3oR487QgkxPZVYSiEkdHWnwdgzv9cxUwj13JWxysM=
Subject key identifier: B2:A5:F6:4E:D0:D3:A1:3C:06:AC:14:43:CB:BE:7B:A9:7D:8E:9F:31
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ABBE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/71EAF792F8BC11EE9957AE2C017001B1.roa
Signing time: Fri 12 Apr 2024 11:04:34 +0000
ROA not before: Fri 12 Apr 2024 11:04:31 +0000
ROA not after: Tue 14 May 2024 11:04:31 +0000
asID: 135983
IP address blocks: 154.200.30.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43966 (0xabbe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 12 11:04:31 2024 GMT
Not After : May 14 11:04:31 2024 GMT
Subject: CN=66191542-95d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e3:80:0f:b6:50:38:a1:a7:8b:d5:0f:98:2a:
15:6e:1e:a6:ad:8c:5e:94:16:93:94:d7:94:da:67:
15:9d:3f:10:81:14:3e:d3:ad:9a:20:b7:05:ff:e2:
fe:82:eb:b1:75:bd:14:43:94:28:21:36:28:c1:57:
56:eb:8d:50:60:d3:a1:58:2d:0a:dc:8a:b1:94:ed:
1d:4e:9f:3e:5f:52:67:eb:05:ca:e4:18:63:30:0f:
67:37:55:d9:c6:eb:d7:d0:14:8f:f3:41:18:3f:3a:
65:01:0b:8a:fd:9d:a2:09:4f:41:44:f9:19:8d:db:
99:69:48:34:a5:61:be:48:f0:2a:2d:b2:b0:2a:b1:
b5:a8:29:f2:ed:c2:27:df:e0:01:ff:c2:46:31:04:
2b:88:ec:51:89:46:06:38:52:df:37:75:cc:20:f9:
46:c0:41:d2:6d:cd:8b:0a:3c:8f:fb:c6:11:c1:86:
a9:31:62:69:18:55:83:47:b5:a6:21:23:7e:0d:9c:
6e:ef:41:15:25:8d:05:54:78:3b:b2:a6:84:ee:3a:
db:b4:9e:d6:46:93:fc:85:5b:b7:a6:26:36:75:42:
63:62:f8:5c:23:98:5b:a5:db:76:50:6a:b5:01:81:
af:fb:96:19:44:9f:55:8c:4f:05:e2:19:e9:05:2d:
98:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:A5:F6:4E:D0:D3:A1:3C:06:AC:14:43:CB:BE:7B:A9:7D:8E:9F:31
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/71EAF792F8BC11EE9957AE2C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.30.0/23
Signature Algorithm: sha256WithRSAEncryption
05:c9:2a:16:45:8d:03:72:a1:03:76:d6:b1:ba:e5:07:c8:0c:
fd:1b:d5:f8:f6:ed:37:55:a8:64:65:48:67:37:0a:1e:47:7d:
e8:44:3e:10:a9:ad:01:c1:a7:f4:52:67:cb:41:1b:aa:b5:24:
06:6f:c4:97:d8:82:23:db:7e:58:6d:c0:cd:58:1a:f3:b9:c6:
ac:28:10:e1:23:07:85:50:d8:16:a4:a3:fb:8a:13:eb:94:c0:
c7:ae:5f:05:e3:bb:da:f4:58:f4:65:f9:c4:06:2f:27:75:28:
c7:43:33:57:97:9e:a5:6a:c1:83:40:af:e1:4d:ec:58:d9:d0:
ff:0b:88:52:b7:0a:14:09:3b:b4:4b:22:0f:39:12:41:a6:f6:
35:cd:ce:6a:10:a6:d6:4a:e0:fa:a7:37:03:e4:65:b2:9a:61:
67:1e:e9:63:bb:33:9b:39:9f:e5:71:27:83:ca:d5:a0:e2:08:
0e:8e:38:f6:47:ca:66:aa:58:7a:58:b6:ff:be:3a:60:c5:92:
49:20:8a:52:67:f8:97:92:05:90:e9:32:c9:e2:ef:92:a2:16:
58:46:c8:1b:69:5a:f0:a8:46:5e:de:7e:54:9e:ca:45:b1:e1:
5c:60:43:5f:97:e4:ad:dc:30:c7:08:0a:0f:b2:33:27:95:e4:
34:9f:40:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:10:22 2024 by rpki-client on console-ams.rpki-client.org