Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8B90B12EF49211EE886F025F775412E6.roa
File: 8B90B12EF49211EE886F025F775412E6.roa (raw, json)
Hash identifier: WOc7tnNbKz5xbV+9zSc9qQkrbQrgAxutiWixKW0Bl64=
Subject key identifier: B9:2C:C2:F9:A0:4B:F7:C1:37:2C:62:96:E4:F9:C0:FA:4B:4E:40:F6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A9C8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8B90B12EF49211EE886F025F775412E6.roa
Signing time: Sun 07 Apr 2024 03:54:34 +0000
ROA not before: Sun 07 Apr 2024 03:54:30 +0000
ROA not after: Mon 13 May 2024 03:54:30 +0000
asID: 138915
IP address blocks: 154.206.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43464 (0xa9c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 03:54:30 2024 GMT
Not After : May 13 03:54:30 2024 GMT
Subject: CN=661218fa-1ba0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:49:0b:40:e3:04:95:7f:05:36:b0:67:41:49:
59:39:48:cf:31:fc:80:82:0b:7f:eb:06:0b:4a:be:
a8:a7:6f:9f:9d:1b:b8:66:9c:b0:fd:f5:0e:46:44:
ee:fe:3e:a3:92:c5:1f:25:c4:6d:3e:19:67:aa:7f:
71:33:51:8b:9d:10:91:d8:e9:52:4a:3b:a5:bd:5f:
2b:58:85:26:66:48:5b:8e:5f:d3:c8:3e:f1:36:da:
91:fe:c9:15:13:3f:ff:fd:a2:f9:a3:25:17:1e:6a:
62:1f:0e:89:82:5c:ab:23:d0:b6:4b:5f:3d:64:38:
62:16:6c:0c:6e:a5:da:fe:38:3a:8d:08:1e:40:ea:
a2:bb:c4:42:f8:c0:7f:d4:1d:69:89:2c:da:e2:59:
df:07:13:ee:b0:eb:fe:bc:8d:81:39:b2:a5:05:f3:
cd:0b:75:a2:6a:95:03:b8:f8:5b:02:ef:97:f8:27:
13:10:fd:6c:e8:83:3e:35:c0:40:74:3c:18:3f:58:
c4:6b:3d:72:3b:6f:1f:93:66:a9:b6:27:0c:f5:8d:
dc:94:b5:3a:81:53:0c:7e:c0:0b:c5:09:cc:9f:63:
d3:ae:d0:85:6c:b4:2a:25:9d:3e:23:6f:4d:c2:99:
aa:90:4b:54:e1:91:6f:ec:27:76:97:de:01:10:62:
d0:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:2C:C2:F9:A0:4B:F7:C1:37:2C:62:96:E4:F9:C0:FA:4B:4E:40:F6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8B90B12EF49211EE886F025F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.64.0/24
Signature Algorithm: sha256WithRSAEncryption
17:0b:ca:79:19:7a:5d:b2:c9:26:e1:71:fe:dd:87:61:fe:f6:
7f:a7:0c:ec:2b:95:74:2c:6d:6e:07:56:ba:40:b3:06:95:8f:
a3:6a:5e:93:fd:64:9f:c6:c7:94:09:54:f1:a2:ca:bc:cd:85:
45:45:8f:4a:c5:ce:97:30:7f:e8:fa:ae:6d:aa:ed:a0:13:6c:
9a:22:6a:ca:4c:e4:ac:55:ae:d9:b2:22:9d:d8:07:60:90:b7:
87:3d:20:ef:c2:71:e0:74:9a:39:12:6a:9e:6e:3f:12:ca:6b:
dd:5c:27:11:9f:de:cb:ce:b2:08:b7:9c:46:91:e7:e1:db:8b:
03:17:07:4d:47:06:e4:e0:ae:b4:91:a3:7a:7d:8d:97:8d:0a:
ef:c0:80:af:15:15:c1:a4:ca:5f:97:3d:a9:e9:44:87:38:a8:
e1:70:04:0a:d8:77:cc:3c:83:bc:21:b8:04:ef:4d:f6:db:63:
1e:19:6f:c4:a2:8d:22:88:75:d3:36:c6:d0:8e:7d:41:02:ac:
11:00:93:63:32:24:53:d8:44:72:b1:0d:97:b2:be:ec:27:e9:
9b:09:42:55:99:07:db:b4:6f:19:b1:51:e3:57:07:e5:85:81:
96:1d:99:93:49:94:b2:3a:ee:f8:04:56:78:5d:f6:9a:9a:30:
35:18:ca:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:31 2024 by rpki-client on console-fra.rpki-client.org