Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/740DB3AEFAEA11EE8D304AF4007001B1.roa
File: 740DB3AEFAEA11EE8D304AF4007001B1.roa (raw, json)
Hash identifier: 6s+Df1xypWmXTlH0uWTrVvW9k8BZwPMbhmv7bNOmGbs=
Subject key identifier: 5E:22:4D:34:82:2A:ED:C8:0C:C1:8B:30:D9:39:66:FC:3D:0D:7E:24
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ACA0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/740DB3AEFAEA11EE8D304AF4007001B1.roa
Signing time: Mon 15 Apr 2024 05:38:57 +0000
ROA not before: Mon 15 Apr 2024 05:38:54 +0000
ROA not after: Thu 30 May 2024 05:38:54 +0000
asID: 63139
IP address blocks: 154.93.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44192 (0xaca0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 05:38:54 2024 GMT
Not After : May 30 05:38:54 2024 GMT
Subject: CN=661cbd71-6d5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:48:94:ae:2f:1b:b6:e8:b5:4d:fe:b2:a0:4f:
82:4f:8f:b1:d9:a8:c7:97:93:d6:0c:7f:66:44:6c:
14:61:af:67:09:1b:e3:36:51:cc:fa:7c:84:bd:df:
e1:c0:20:9e:2e:2b:c5:07:48:1a:e7:2f:85:e4:33:
bb:2c:60:aa:b4:22:02:79:52:6e:2e:55:ba:21:d1:
fe:37:e7:4a:d1:0d:63:d8:8c:8b:53:94:12:03:64:
87:c0:dc:4c:4c:be:f7:11:4d:85:db:b5:25:3f:80:
e8:5e:69:a0:9a:46:dd:bf:ae:74:31:b2:29:b6:97:
a2:66:97:65:c6:b4:24:bd:2e:3b:b7:c3:ee:7d:3a:
5e:c2:36:32:b7:1a:36:0d:42:6b:d3:53:8c:1a:db:
3e:93:3c:11:b9:51:e2:15:fc:f0:08:46:b4:c3:4a:
05:15:e8:ce:50:fb:e5:f6:44:93:1a:87:4c:a7:3a:
dc:d8:db:4c:2d:1a:f8:77:8a:ae:03:13:3b:e9:8b:
80:ed:fe:cf:38:cd:0c:40:11:90:3f:6a:52:01:5f:
fe:c7:6d:31:34:29:ad:38:b7:ee:a0:92:8c:ed:25:
5d:0f:a7:94:ee:12:cf:7b:0a:2a:83:d6:be:d3:e6:
b5:27:23:a4:31:ea:3c:ce:c5:94:a0:2c:41:b7:ef:
42:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:22:4D:34:82:2A:ED:C8:0C:C1:8B:30:D9:39:66:FC:3D:0D:7E:24
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/740DB3AEFAEA11EE8D304AF4007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.75.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:e1:3c:73:70:55:45:32:07:96:7b:99:b4:dc:10:f6:b2:f9:
19:78:24:9b:d2:12:35:a9:61:19:77:cd:e5:9b:eb:ba:23:52:
5a:f8:80:ca:24:74:ef:f8:ad:3d:66:70:36:c5:20:6b:a9:44:
22:5d:b4:de:37:fd:71:c9:89:77:e2:0b:1e:a1:fa:72:e4:67:
a3:79:b8:d8:00:c7:d4:4e:86:02:cc:bf:a6:88:65:ee:ae:43:
82:c7:9b:62:0b:89:4b:d2:fd:d6:6d:48:09:a2:09:5e:f9:87:
41:87:92:dd:a2:cc:46:08:b3:60:57:0b:5f:3c:8c:51:c6:2c:
93:20:ba:a7:8d:e9:11:3e:e1:c3:2d:34:d6:50:1e:ba:14:ac:
8a:86:e0:db:ff:4f:ff:86:be:1b:8c:83:68:f2:fd:19:59:a2:
69:87:0e:33:7b:0a:bc:ab:54:14:85:39:17:de:0d:1b:8e:7c:
1e:8a:ce:bd:55:e8:7b:e2:ed:92:e7:82:60:eb:88:a3:7f:4b:
6d:44:2e:e8:85:0f:a8:a5:82:75:4f:f8:3c:e9:73:ac:e3:8b:
b7:69:9c:50:04:2c:d4:a8:61:a3:9e:ab:c7:f2:ee:be:ac:07:
af:57:37:c9:be:7a:cc:b1:d7:f7:92:01:45:4c:53:b6:38:3f:
1a:5e:ff:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:28 2024 by rpki-client on console-fra.rpki-client.org