Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/850901E4E4F211EE9430D2B0775412E6.roa
File: 850901E4E4F211EE9430D2B0775412E6.roa (raw, json)
Hash identifier: n86iRw6eH2tXzYDFP7Ed5fWP/0WcDMJLiLb1dgvlFxw=
Subject key identifier: 7D:D4:2A:D0:CD:AA:FF:BC:DB:24:12:B8:D4:4E:B0:D7:FE:8E:4C:C2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A2A1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/850901E4E4F211EE9430D2B0775412E6.roa
Signing time: Mon 18 Mar 2024 06:41:16 +0000
ROA not before: Mon 18 Mar 2024 06:41:13 +0000
ROA not after: Sat 20 Apr 2024 06:41:13 +0000
asID: 39600
IP address blocks: 154.91.128.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 20 Apr 2024 06:41:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41633 (0xa2a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 18 06:41:13 2024 GMT
Not After : Apr 20 06:41:13 2024 GMT
Subject: CN=65f7e20c-4278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4d:3e:b4:f3:8e:c2:05:67:ba:66:94:f4:00:
ec:17:51:ee:7a:57:28:8e:72:d5:90:81:5a:6f:bd:
7d:98:7b:4e:31:aa:21:a5:8c:c6:e4:38:07:37:7f:
17:db:66:8c:b9:02:03:b3:f0:89:88:e6:a3:39:87:
22:45:68:60:5d:9e:ff:6b:54:72:7d:8f:fe:b0:25:
6c:49:8b:52:cc:9a:b0:a8:7d:91:87:49:ef:22:ca:
4f:42:a4:29:3c:ba:6c:6e:47:ec:47:4a:c7:85:32:
00:1e:3a:70:f3:d5:08:40:9d:8d:e6:99:8e:e4:5f:
e9:e0:74:fc:94:c2:5d:1b:aa:d5:8e:7b:8a:53:ea:
3f:13:fa:e7:2a:f5:71:d6:ae:4a:0a:54:22:55:49:
01:f1:71:df:99:c2:ae:a9:b7:46:6b:a1:5d:e9:87:
5a:38:59:5a:3d:a7:3c:de:dc:a2:67:ce:19:87:65:
d7:6d:38:9b:27:79:0a:63:6d:75:e3:02:c7:e1:e3:
84:2c:5d:85:8c:35:4a:af:9e:50:6d:53:e8:93:c4:
da:89:43:14:77:0f:ac:20:35:d8:63:dd:d5:be:28:
f1:31:8e:36:08:05:0c:f9:40:2c:b9:a8:2e:3a:af:
ed:53:64:2a:31:56:15:33:ce:34:36:31:34:d6:d8:
9f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:D4:2A:D0:CD:AA:FF:BC:DB:24:12:B8:D4:4E:B0:D7:FE:8E:4C:C2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/850901E4E4F211EE9430D2B0775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.128.0/21
Signature Algorithm: sha256WithRSAEncryption
cf:08:56:45:42:41:be:10:ba:a8:e8:09:44:6d:d1:89:4a:4c:
2a:c5:a5:fb:8c:6a:f8:a0:c1:ec:70:2c:84:67:e6:2d:a2:6b:
59:78:f1:30:14:9f:6d:d4:34:2b:7f:93:d9:5f:f4:40:c8:e5:
de:10:c1:5a:23:bb:88:08:56:20:c1:ec:25:06:96:a3:7a:22:
bd:de:ea:66:78:01:93:9d:f9:81:1e:19:b2:e2:f3:01:27:19:
c8:6e:76:3e:59:db:5d:f0:99:90:00:64:96:55:64:98:8e:f4:
3e:3c:a1:da:63:31:e7:97:34:6e:35:ab:7c:d8:54:f7:67:6d:
f7:a5:cc:0b:ea:fa:24:e5:a0:e4:33:69:ab:bd:ab:c7:13:1e:
61:6f:28:71:a0:ff:de:60:26:62:65:29:8c:5e:22:36:82:00:
87:c5:b3:a9:de:5e:9d:25:ef:31:40:9e:12:74:fe:1a:a1:c9:
34:01:f8:d4:67:7f:3e:1d:64:b4:87:b0:35:4f:3f:e4:39:7b:
bd:b4:18:4b:1e:06:b2:e7:a5:07:74:59:0f:91:91:19:bf:7e:
f4:a5:17:dd:da:6f:3a:34:b4:73:2f:b4:eb:24:cd:11:14:80:
24:18:fa:91:61:c5:5a:7f:fb:24:fd:81:b9:c5:2a:ee:0a:02:
23:a3:7e:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 01:48:28 2024 by rpki-client on console-fra.rpki-client.org