Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7A93CCD4FBAF11EE8920863D017001B1.roa
File: 7A93CCD4FBAF11EE8920863D017001B1.roa (raw, json)
Hash identifier: 0LfAjn94JOVMpX3pCXuEtkl1KAkQVysns0ckMGyXCdM=
Subject key identifier: E7:98:3E:62:B5:98:B9:B4:40:3A:86:DA:00:5E:71:13:0F:8E:D5:34
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ADD9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7A93CCD4FBAF11EE8920863D017001B1.roa
Signing time: Tue 16 Apr 2024 05:09:19 +0000
ROA not before: Tue 16 Apr 2024 05:09:16 +0000
ROA not after: Tue 04 Jun 2024 05:09:16 +0000
asID: 209242
IP address blocks: 154.197.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44505 (0xadd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 05:09:16 2024 GMT
Not After : Jun 4 05:09:16 2024 GMT
Subject: CN=661e07ff-0951
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e6:e0:60:3a:6d:b4:4f:e1:46:32:6b:07:df:
35:8c:c8:fc:b7:c6:1b:d4:eb:85:6f:cf:9e:4d:6d:
c6:b1:82:b9:16:91:ab:df:c5:b0:f5:fc:0f:73:54:
41:9c:39:b1:58:55:60:f8:9c:c5:2c:e7:c6:a8:e3:
19:fb:53:1c:e2:b9:2b:10:6a:f3:96:19:aa:a8:ea:
c9:08:2c:16:45:74:62:0b:f3:69:56:30:69:79:ae:
70:e6:c5:33:bf:7c:60:be:47:32:89:87:5a:a2:44:
d9:84:82:93:9b:bb:cc:a4:2e:90:a6:9e:01:58:4a:
09:07:58:ed:f6:c8:95:10:c7:1b:b1:d8:43:5f:34:
ec:cd:4c:17:20:1e:d9:7c:7e:ce:b6:b9:eb:23:c4:
28:0a:87:c9:42:67:43:3e:ca:40:24:6a:dd:93:70:
35:3b:31:97:0b:b4:77:c4:4c:64:e0:24:b5:f7:c0:
08:53:4e:8e:fc:c8:0a:74:29:6f:3f:9d:5f:ea:3d:
13:48:74:71:08:53:33:ca:f4:4b:27:1e:98:4a:0a:
12:a1:0a:a7:cb:37:53:3d:74:71:22:8d:d0:88:d1:
1a:67:77:d4:ed:29:4b:09:69:fd:17:c9:96:83:1b:
0b:4a:70:d5:8c:06:35:ef:51:a2:ba:f1:85:dc:8d:
40:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:98:3E:62:B5:98:B9:B4:40:3A:86:DA:00:5E:71:13:0F:8E:D5:34
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7A93CCD4FBAF11EE8920863D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.75.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:57:68:3a:d9:a9:d5:65:fc:b3:4a:f7:53:0b:69:cc:96:9f:
62:90:68:78:5a:9b:13:a0:6e:a6:14:e6:47:93:b2:22:1e:a4:
5d:66:1d:38:a7:a0:64:90:89:38:75:e4:d4:d3:f4:2c:0d:19:
0d:66:6e:2f:33:da:3b:a4:03:73:98:96:25:ac:eb:0a:47:0f:
27:38:75:bb:a6:ae:ae:0b:6f:5d:49:ea:6e:d8:b2:51:a0:3d:
7d:7e:33:3a:32:98:90:fc:d4:0c:5d:e4:f3:d4:c0:a8:c1:4c:
d2:98:1a:05:ef:89:7b:9a:28:bb:86:9b:65:d7:c4:f0:83:bd:
af:c3:5f:eb:3b:58:52:87:cf:a1:57:c6:55:d7:39:74:3f:94:
1f:c6:a5:89:00:63:a4:8c:88:6a:a9:59:b7:34:8d:a3:d4:b3:
31:32:f4:14:35:0c:b4:e4:47:a0:89:b7:92:47:b0:86:4f:ad:
16:17:b3:b4:37:98:18:bc:fb:0c:8c:94:73:ad:70:b0:97:a5:
87:eb:4a:d0:ab:7e:bb:19:a5:e2:c5:44:da:f7:28:eb:c7:3c:
3f:f2:25:0b:00:0a:f0:d8:29:ea:c5:da:1f:0b:9b:77:8e:c4:
4a:81:5e:da:5f:4d:b7:f7:f5:c1:8a:ca:f4:48:f9:00:54:d0:
f7:b4:9c:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:28 2024 by rpki-client on console-fra.rpki-client.org