Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7383EBAEFAE711EE8A157B57017001B1.roa
File: 7383EBAEFAE711EE8A157B57017001B1.roa (raw, json)
Hash identifier: cNuRbhXctQfcK2t7ko4ZY63q0KRmnoTAif8gICB/0AU=
Subject key identifier: 04:89:2B:1C:9B:92:6B:B2:44:AF:11:3C:72:B6:9F:A3:C2:5E:F5:1B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AC84
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7383EBAEFAE711EE8A157B57017001B1.roa
Signing time: Mon 15 Apr 2024 05:17:28 +0000
ROA not before: Mon 15 Apr 2024 05:17:24 +0000
ROA not after: Sun 19 May 2024 05:17:24 +0000
asID: 9123
IP address blocks: 154.194.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44164 (0xac84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 05:17:24 2024 GMT
Not After : May 19 05:17:24 2024 GMT
Subject: CN=661cb868-e6ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:3d:dc:f1:fc:10:00:66:99:e0:c7:49:58:36:
fb:db:cd:e6:fb:bc:bf:17:54:26:61:e9:b5:53:82:
02:ab:51:4d:ab:f0:96:06:12:87:32:e2:55:6e:90:
17:9c:5c:f9:35:3e:7f:11:ec:03:83:79:4b:f9:e6:
37:d6:1f:fc:97:02:1f:01:31:8f:52:81:9b:b2:fa:
75:97:5f:cf:09:3c:c9:66:f7:32:6b:3e:8f:bb:35:
c9:29:8a:58:dc:70:6f:f1:82:5a:60:3c:18:f3:31:
cd:c3:66:a0:28:a1:ab:c8:0c:52:00:10:00:4c:da:
95:87:7a:5c:0e:bc:be:0c:58:cf:e3:f5:29:32:ba:
ec:52:8c:95:c1:09:e4:03:c3:f1:03:44:6f:f5:c2:
d1:6c:c7:10:56:b2:4f:ff:13:57:3f:d2:e8:54:78:
eb:73:78:78:e9:94:f6:2a:9c:e3:ed:98:75:e4:19:
87:aa:dc:03:d5:72:fc:61:2e:68:d1:f4:29:2f:5d:
20:77:ea:43:8a:2f:c3:2e:ca:a9:e9:fc:22:7b:d6:
bb:80:9b:00:44:f0:af:db:75:9e:e6:d2:1e:14:e8:
01:e5:4f:d5:eb:26:a3:7e:7d:29:95:4a:b8:ca:f8:
26:be:5d:f4:3b:34:23:86:d3:be:b6:16:2e:b3:5c:
27:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:89:2B:1C:9B:92:6B:B2:44:AF:11:3C:72:B6:9F:A3:C2:5E:F5:1B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7383EBAEFAE711EE8A157B57017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.52.0/24
Signature Algorithm: sha256WithRSAEncryption
02:fb:b5:92:dc:a0:f9:3e:30:ea:84:2a:73:cb:b0:17:4b:90:
9d:8c:ef:f6:92:cc:77:66:7e:be:7e:d7:0c:ad:ac:ca:f9:55:
07:76:5d:ef:aa:11:b2:a6:14:f8:e9:f4:01:6e:5b:3f:07:c2:
7a:5b:4e:75:fa:ea:ea:7f:ba:59:db:60:4a:d9:0d:8b:d7:d4:
0e:f0:dc:37:6d:b0:5c:a5:79:a5:98:df:cb:62:28:1c:ac:55:
8e:4f:bd:aa:a0:c9:0a:b8:3a:cd:dc:07:70:af:62:8d:8e:b1:
63:59:58:d1:f3:6c:86:e3:a8:2d:9e:d1:1a:eb:a6:24:06:bc:
a5:3e:e7:c9:2d:53:8b:a7:7e:64:8d:36:e7:18:4a:01:3d:1a:
03:74:fb:61:8a:e8:2f:e1:06:38:74:e6:63:a3:a9:e5:91:6d:
83:9a:be:64:5a:e7:0f:cf:bd:1c:95:1c:a1:82:d5:98:6f:d6:
d3:16:ec:cb:38:b2:dd:48:e5:b2:bc:d7:dc:d4:d4:c7:33:de:
07:c6:93:7a:b7:57:12:4a:da:e6:47:58:15:c3:5d:4e:31:bd:
23:f1:3b:2b:12:07:6b:a2:cf:e3:5f:d0:f1:78:50:41:aa:47:
31:b8:7e:43:4d:74:c1:0a:bd:40:7c:db:9c:02:0c:42:36:ea:
e8:20:d9:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:28 2024 by rpki-client on console-fra.rpki-client.org