Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7AD9CD04EFF411EEA96C9AB1775412E6.roa
File: 7AD9CD04EFF411EEA96C9AB1775412E6.roa (raw, json)
Hash identifier: am7iHc93SeDYUono8T0poieQ71jTgNBqvFoCrerC+vk=
Subject key identifier: 59:67:A5:9C:C5:57:44:7C:B7:B6:15:10:3C:2E:1F:E4:0C:59:D2:06
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A7E8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7AD9CD04EFF411EEA96C9AB1775412E6.roa
Signing time: Mon 01 Apr 2024 06:53:01 +0000
ROA not before: Mon 01 Apr 2024 06:52:57 +0000
ROA not after: Tue 07 May 2024 06:52:57 +0000
asID: 138915
IP address blocks: 154.223.74.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42984 (0xa7e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 06:52:57 2024 GMT
Not After : May 7 06:52:57 2024 GMT
Subject: CN=660a59cd-4550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:51:96:3f:4a:44:b3:73:c6:48:92:1c:6a:aa:
d1:d5:31:68:07:f1:d9:c9:cb:f9:55:8d:41:56:05:
95:26:52:6b:fc:16:f9:c7:ce:e0:0d:0d:1d:74:49:
bf:ec:6e:9c:40:d0:2c:6c:62:70:e2:de:ca:09:75:
7e:91:46:da:b6:bb:7f:d2:74:26:49:80:5b:7a:d4:
2e:13:f7:d1:48:c7:78:54:ff:27:3b:3a:c3:02:00:
78:5f:fa:1c:f1:8b:58:1d:18:1a:6d:fe:4d:48:8b:
51:a1:41:fb:54:f0:f3:a7:6d:d0:ab:6d:c6:c7:a8:
2e:86:96:1f:65:b1:17:66:bd:00:37:b5:60:f4:27:
69:4a:5b:e7:dc:a1:bd:14:98:44:3c:b5:da:60:47:
c7:17:b4:0b:ef:d7:42:9c:b2:6f:7d:5e:7c:81:b3:
3d:2a:11:19:79:a9:0c:2f:9d:15:62:e9:7c:90:73:
df:8f:5a:e9:19:40:70:75:73:f5:8a:5d:f6:0a:79:
1a:68:78:a8:13:c1:4e:81:ae:4a:b8:5c:4d:42:c7:
73:42:30:19:62:81:2e:d2:b4:0c:d5:69:44:bd:ef:
f0:2e:1e:db:b7:91:8e:e9:8b:4d:2a:dd:a5:6a:c8:
85:f7:3b:f0:5c:5c:10:f9:42:6a:f1:68:57:35:37:
5f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:67:A5:9C:C5:57:44:7C:B7:B6:15:10:3C:2E:1F:E4:0C:59:D2:06
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7AD9CD04EFF411EEA96C9AB1775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.74.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:0a:04:6f:4c:f9:09:96:18:59:4b:e7:be:98:04:d3:e2:a9:
24:d9:21:86:b6:bd:34:ab:24:71:d0:16:42:d9:93:94:25:e2:
cf:ee:6b:9a:d8:cb:26:36:8c:29:03:c8:2d:9f:45:2c:fa:2c:
7f:a4:fd:42:7e:4c:ca:5d:99:99:d6:45:e5:6b:cf:c2:65:52:
fe:38:9c:13:33:3e:36:64:1b:b3:72:f3:7c:09:4f:35:cf:d5:
e1:ef:d3:08:79:d4:55:b9:a5:01:8f:59:f0:15:e2:af:62:c9:
72:a0:c9:86:6c:c0:12:24:f7:7f:64:bb:59:e0:97:81:0f:c7:
03:64:5c:71:3b:ce:bf:15:22:e9:5b:11:55:dc:72:03:c2:51:
9d:49:87:93:02:6f:a2:c3:12:b9:0c:80:1d:2b:a6:34:34:7d:
43:99:7a:db:ef:0c:96:d8:cb:d0:0f:cf:c2:15:d6:5d:04:31:
69:16:30:fd:ec:52:b4:b9:aa:4d:29:fb:f4:f3:5c:c7:f9:d6:
a1:c8:dc:83:34:cc:67:48:01:cb:50:f9:28:d8:7e:0e:fc:ee:
59:65:16:18:b6:a5:8e:76:a5:6a:08:8d:cd:11:b7:c8:81:be:
18:2f:81:7e:aa:c3:b4:3e:44:39:47:7a:06:3e:c7:d2:3a:be:
b6:07:55:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:28 2024 by rpki-client on console-fra.rpki-client.org