Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7DB7672EF00911EEB8F5A656775412E6.roa
File: 7DB7672EF00911EEB8F5A656775412E6.roa (raw, json)
Hash identifier: Cz9bwNntATyuWB/urIAsV+dFn9mFFBKGTXXbgfYHNlw=
Subject key identifier: 11:CB:D3:42:14:5F:11:67:49:70:4C:DC:62:18:3A:CC:DC:E9:1C:A1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A830
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7DB7672EF00911EEB8F5A656775412E6.roa
Signing time: Mon 01 Apr 2024 09:23:25 +0000
ROA not before: Mon 01 Apr 2024 09:23:22 +0000
ROA not after: Sat 11 May 2024 09:23:22 +0000
asID: 138915
IP address blocks: 154.205.144.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43056 (0xa830)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 09:23:22 2024 GMT
Not After : May 11 09:23:22 2024 GMT
Subject: CN=660a7d0d-52ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:23:6a:f8:94:0f:d1:0c:e6:5c:6f:b1:a8:fe:
35:c5:e6:76:f7:74:ad:a5:b3:04:fb:91:75:e6:68:
cf:85:76:cb:8e:8e:98:c4:10:cf:da:e7:24:78:b8:
6a:f4:38:d7:5a:fd:77:64:ed:89:52:af:94:6a:d7:
f0:94:68:4f:d0:30:3c:16:d9:76:da:c5:4f:52:ea:
12:05:ad:e5:4b:d3:46:c0:0d:a2:da:6c:a5:68:6d:
7d:fd:79:85:ba:f0:9e:5b:da:08:3b:21:ae:af:ca:
17:5b:c1:23:02:0e:4a:55:75:dd:87:9a:99:8e:6c:
26:5d:41:cb:85:64:fc:59:ac:6d:1e:ae:0e:43:b6:
5e:a6:30:22:e8:ef:4b:b5:19:07:d2:09:73:e9:5f:
d2:6e:0b:60:0a:3b:6e:89:0d:93:a7:06:a6:19:37:
f6:5b:23:64:a8:ad:61:3a:02:4f:30:d9:97:3d:1d:
a0:dc:de:60:6f:56:2b:25:ff:a0:f6:6f:12:7b:37:
8e:09:43:cd:bb:81:a6:02:54:f5:23:a7:dc:4d:ac:
77:27:48:23:9e:1c:6c:29:74:46:04:23:1d:f6:fc:
bf:8f:35:b2:81:45:28:0b:d8:d6:78:83:4b:45:da:
d7:0e:f1:a4:d4:90:29:e5:60:11:29:61:1e:08:f9:
a4:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:CB:D3:42:14:5F:11:67:49:70:4C:DC:62:18:3A:CC:DC:E9:1C:A1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7DB7672EF00911EEB8F5A656775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.144.0/24
Signature Algorithm: sha256WithRSAEncryption
05:ce:6c:1e:b9:12:16:7b:85:c7:43:ed:d1:1f:48:9d:e9:6f:
47:43:86:14:e3:10:34:3e:ed:4a:c9:4d:83:35:b7:d2:76:20:
a9:7d:23:4c:80:10:40:ff:e7:e9:25:4e:e3:10:48:02:df:14:
de:73:00:2e:c4:c8:61:bc:3d:cf:bb:98:13:4d:6f:72:6e:05:
1c:30:bb:3f:45:af:ab:88:e1:23:89:ac:c5:c3:e2:73:77:fd:
29:00:bc:a3:d2:45:19:e5:07:d8:79:fc:1b:b1:3c:2f:df:29:
52:77:3f:65:b4:12:d9:f4:51:32:43:36:f8:83:bb:8d:cc:22:
dc:12:7a:0d:9a:4f:c2:ad:42:fb:f0:80:97:15:6e:b4:89:9e:
0d:b8:18:75:8e:13:d0:76:66:20:0e:4c:ce:21:28:1a:88:21:
72:38:31:be:33:fa:ac:62:26:4c:8f:1e:cc:e2:0d:20:17:56:
06:7c:74:be:f0:37:85:3d:23:ca:82:b2:e7:6f:b4:a6:48:61:
af:8c:d2:80:a5:10:93:fd:d1:df:60:f8:16:f5:85:1f:fd:66:
8f:4a:58:69:7c:13:82:49:dc:b2:24:ec:59:a9:3a:91:05:15:
54:bf:55:9f:ac:d5:78:4e:16:c6:5b:c0:14:de:74:2a:47:df:
f3:52:cf:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:13 2024 by rpki-client on console-ams.rpki-client.org