Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C1BB1BAE28D11EE990E75BE775412E6.roa
File: 7C1BB1BAE28D11EE990E75BE775412E6.roa (raw, json)
Hash identifier: 22429RFbDuNPMIubMUn4PcHUgPkDE4b9YRq56Xm5ZqU=
Subject key identifier: DB:28:01:BF:01:27:09:1D:4B:B1:7E:B6:68:21:39:B1:54:05:72:78
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A199
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C1BB1BAE28D11EE990E75BE775412E6.roa
Signing time: Fri 15 Mar 2024 05:33:00 +0000
ROA not before: Fri 15 Mar 2024 05:32:56 +0000
ROA not after: Fri 20 Sep 2024 05:32:56 +0000
asID: 47890
IP address blocks: 154.214.207.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41369 (0xa199)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 15 05:32:56 2024 GMT
Not After : Sep 20 05:32:56 2024 GMT
Subject: CN=65f3dd8b-5ac3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1d:bd:42:b7:3a:48:64:f9:7b:a7:a2:0e:eb:
52:86:f1:bd:2a:14:35:ce:01:ce:74:f1:f8:eb:b7:
36:9c:42:bb:07:66:4a:6d:f3:c4:d5:81:89:c4:08:
b1:5a:b9:75:7d:3c:92:69:4a:4a:5e:69:2d:a4:08:
51:70:c8:b8:f3:64:1d:bf:a5:13:96:f3:52:e9:06:
20:01:e7:e0:fd:63:06:08:31:85:65:74:26:d8:b8:
b6:de:34:cc:da:3f:e7:4d:80:92:58:47:3c:c9:de:
a3:01:1e:11:32:a9:cf:24:c7:da:9c:0e:46:1f:8f:
02:44:7d:04:6e:20:c4:72:9b:91:c7:a6:7f:a8:15:
4a:df:8c:66:e4:4c:cd:e5:e4:89:d8:de:da:8c:e5:
4b:b2:a9:df:b1:f0:be:68:47:03:59:4c:39:7d:6a:
c5:eb:1e:9b:2c:ca:c0:a0:6c:5c:d4:c8:f9:84:06:
38:d3:05:aa:92:e3:3e:ee:03:c2:f5:f5:77:f3:dd:
6c:a3:29:81:f1:12:b6:98:95:fa:95:d4:d1:fb:d4:
59:4f:80:b3:02:34:9d:22:eb:3f:f8:e2:bc:da:be:
ff:8c:35:7b:1b:4e:11:1e:7a:e9:e9:9d:05:e0:99:
69:a9:4c:97:37:78:9e:0e:ef:5d:48:35:79:38:95:
d5:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:28:01:BF:01:27:09:1D:4B:B1:7E:B6:68:21:39:B1:54:05:72:78
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C1BB1BAE28D11EE990E75BE775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.207.0/24
Signature Algorithm: sha256WithRSAEncryption
93:63:70:ac:81:40:63:fd:d7:5a:0d:cc:6c:ab:26:a9:12:b8:
50:55:83:d8:d9:6b:48:0d:39:03:b0:d0:a4:60:20:61:b2:96:
0b:c4:4d:91:cf:56:1b:8f:e4:27:2c:8d:ba:b5:7f:24:fe:a5:
c6:95:e3:01:4e:48:6e:d4:24:61:a9:7f:b8:06:64:fc:c1:bf:
c3:b6:c0:30:a6:2f:05:38:d6:bb:b1:4a:1a:12:ba:fb:93:2a:
b7:64:ca:1b:28:17:9c:e5:8a:ef:f1:14:ab:63:12:1c:ba:d7:
1b:7e:a4:07:e3:28:e0:4f:03:94:af:8f:5a:9d:6a:e5:88:80:
11:83:d1:2f:e3:6f:f3:13:f8:00:4f:40:ea:18:32:da:af:dc:
8b:b5:27:19:69:b2:00:e8:f7:33:22:10:74:d6:ad:1d:d3:dd:
cd:e6:a0:03:29:88:bf:03:ed:51:1b:45:c9:e7:a8:b6:b6:c0:
93:9a:78:f6:8d:ab:55:65:16:49:89:33:1e:8a:97:ec:2e:e1:
15:0d:b4:ff:7b:b9:65:00:c0:21:40:88:05:d2:e1:eb:42:2b:
ff:13:67:81:05:1f:99:30:22:89:26:e7:a0:6b:78:7c:77:8e:
62:61:2f:ca:b6:7f:17:91:db:6f:fd:ec:b4:3a:c0:d6:b8:59:
e5:16:9a:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:29:58 2024 by rpki-client on console-fra.rpki-client.org