Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7BA7023AF00B11EE9F2E6066775412E6.roa
File: 7BA7023AF00B11EE9F2E6066775412E6.roa (raw, json)
Hash identifier: t9CqJkabYF1RF0RY1MitS8+Uqr9NuTqSGp53IP/2gKU=
Subject key identifier: 91:87:35:5A:5F:92:07:BA:74:65:3D:82:73:2C:E4:6D:87:7F:B6:65
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A848
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7BA7023AF00B11EE9F2E6066775412E6.roa
Signing time: Mon 01 Apr 2024 09:37:41 +0000
ROA not before: Mon 01 Apr 2024 09:37:37 +0000
ROA not after: Sat 11 May 2024 09:37:37 +0000
asID: 138915
IP address blocks: 154.205.131.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43080 (0xa848)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 09:37:37 2024 GMT
Not After : May 11 09:37:37 2024 GMT
Subject: CN=660a8064-f76e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f4:2a:63:89:38:48:ae:55:c7:75:d6:2c:60:
fe:89:33:f1:e8:a2:76:f9:8f:b8:80:da:9d:16:a7:
73:c7:40:0c:6b:76:91:21:34:95:dc:d5:ab:fb:24:
3d:99:ad:e1:a7:d5:59:9c:da:12:d0:69:59:ff:b5:
32:94:95:33:f2:f7:b5:d1:aa:6a:45:e5:30:6c:6b:
6e:61:e5:de:0a:37:c9:f3:0f:40:b8:52:91:ba:80:
16:b8:31:4c:f7:7a:c1:00:a9:7f:12:28:ab:f2:d5:
8b:46:5b:bd:b8:81:63:a2:47:e2:3d:7a:a1:33:49:
f9:51:18:89:18:07:a0:44:fa:23:42:d3:f0:68:7a:
09:c6:a8:03:fd:a1:ae:24:7b:02:a4:df:53:b6:b0:
da:72:3e:a5:39:3c:8c:16:f1:1d:49:b8:bb:30:7c:
56:f6:b4:06:95:41:85:4b:96:53:c8:de:73:56:ee:
48:a7:c9:f7:84:b8:12:e7:39:31:2b:f7:dd:53:00:
01:f4:6e:25:96:d9:02:40:b8:76:ad:77:5d:0a:20:
de:c8:cb:8a:c8:0d:94:e1:da:93:78:c3:00:47:a0:
ec:78:71:85:16:8d:df:a6:69:34:04:3d:95:70:bf:
fa:5a:5f:07:d5:46:22:84:ef:88:b2:65:d6:2c:7d:
02:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:87:35:5A:5F:92:07:BA:74:65:3D:82:73:2C:E4:6D:87:7F:B6:65
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7BA7023AF00B11EE9F2E6066775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.131.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:db:8a:7d:43:8e:a9:9c:32:ab:5e:0b:a8:1d:ca:a1:a9:b3:
35:db:41:79:02:7d:7a:b8:b2:0d:af:18:c1:16:91:6a:00:61:
f3:b6:ab:b4:59:f8:5c:88:f9:27:00:57:80:4d:fe:7f:5d:b4:
f0:70:f1:4e:9d:cf:40:75:ca:b4:85:6c:b2:af:1d:0e:50:98:
a8:20:a5:c9:00:a2:1e:90:2d:74:6d:c8:93:7b:b2:fa:4b:bb:
77:f3:89:6e:1c:2b:91:fb:f1:0e:d5:29:2c:93:b3:42:9c:c0:
ee:cc:71:1e:7e:f5:97:40:0e:5d:2a:67:9f:16:e9:c3:c2:31:
7c:bc:4c:6b:a4:8c:10:23:d3:55:87:d2:22:07:ad:2f:34:ca:
b3:f8:3e:d1:08:78:45:0f:96:2c:39:97:f6:dd:0a:70:e0:e7:
ab:2d:c5:a1:1d:b5:93:05:b9:56:6c:2d:8a:c2:fe:b6:52:5c:
31:59:68:e2:10:a1:9d:89:06:c2:54:75:b1:1f:e0:a8:ee:a7:
3a:98:5d:1a:4c:58:d5:57:5c:7d:f6:fe:c7:57:ea:9f:12:74:
49:37:00:52:0d:93:6a:34:10:ea:33:b1:70:6b:51:fd:fd:22:
77:44:a9:93:a0:b3:62:81:a7:17:5d:6c:3c:2d:2f:e1:26:8c:
08:6f:84:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:13 2024 by rpki-client on console-ams.rpki-client.org