Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/90BE4F72EDBB11EE9F595E4F775412E6.roa
File: 90BE4F72EDBB11EE9F595E4F775412E6.roa (raw, json)
Hash identifier: Zn986VpKrKZVaM37+1QtFJMyNGGJGjK2N+MAEfw/hZU=
Subject key identifier: 4A:37:C1:A6:3D:EC:4D:7D:C1:04:E3:45:1D:69:1F:52:53:D4:A6:32
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A751
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/90BE4F72EDBB11EE9F595E4F775412E6.roa
Signing time: Fri 29 Mar 2024 11:00:34 +0000
ROA not before: Fri 29 Mar 2024 11:00:30 +0000
ROA not after: Sat 04 May 2024 11:00:30 +0000
asID: 142062
IP address blocks: 154.86.67.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 11:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42833 (0xa751)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 29 11:00:30 2024 GMT
Not After : May 4 11:00:30 2024 GMT
Subject: CN=66069f52-af97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:7d:d7:b3:46:d2:96:bf:7a:b0:d4:6a:95:71:
6a:07:db:9e:e0:0e:0a:2b:f2:19:17:e1:06:30:4a:
f7:e3:ac:7d:5e:e3:81:de:76:08:89:de:30:b5:23:
92:9a:e1:27:41:d2:28:6c:1e:e6:fe:84:96:44:af:
82:e7:be:41:b5:af:e0:88:b5:9d:f1:56:e9:e2:23:
a3:3d:3e:e4:89:25:fe:42:b5:7f:43:8b:eb:4e:7f:
f0:55:bc:61:13:05:25:a0:c1:9f:22:6c:25:e3:4e:
09:bc:29:de:ea:50:4a:b7:c6:a7:83:c9:14:f3:28:
17:67:02:1f:ad:a5:ba:71:ee:74:aa:d7:ad:c5:6f:
5f:12:b1:31:8f:4e:fa:df:55:23:a2:d6:57:0a:ec:
50:36:b2:07:5e:c6:a8:ad:e6:0c:7e:07:fb:ed:c4:
1c:6f:44:93:33:0b:89:0b:7b:c1:05:51:db:37:68:
94:f5:b3:e0:b3:56:78:2e:99:95:24:a1:71:ee:43:
f0:c8:f1:3c:9c:77:0a:96:ed:5a:9b:a9:56:5a:bb:
e3:93:20:f3:32:49:90:17:6f:37:5a:a0:4c:ba:bf:
59:af:2f:96:b4:6f:bd:67:93:8b:d4:18:49:40:9d:
c8:fa:27:e1:2c:07:44:a1:28:6a:12:5e:b5:17:eb:
e5:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:37:C1:A6:3D:EC:4D:7D:C1:04:E3:45:1D:69:1F:52:53:D4:A6:32
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/90BE4F72EDBB11EE9F595E4F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.67.0/24
Signature Algorithm: sha256WithRSAEncryption
30:3b:ce:69:c6:27:15:3c:8e:a2:5f:0a:43:02:61:1d:cd:c4:
4a:2d:a4:71:bd:57:61:dc:70:a9:18:2e:bc:b6:9e:4d:a7:c8:
bc:34:41:ff:f4:f8:cd:bf:f7:8b:33:5c:64:9d:e4:14:2a:36:
04:59:b1:23:41:4b:e1:e1:f3:3b:40:dc:ea:59:24:07:c5:09:
e2:c9:4c:ff:a9:05:44:80:c6:3f:ec:42:d8:65:54:27:f2:ac:
28:ad:f3:ff:c8:d4:8b:dd:4d:b7:84:b2:f0:f1:42:69:77:1e:
b5:89:66:b4:57:89:52:ab:1a:6e:79:30:fa:9e:ed:b5:44:eb:
9a:43:8f:28:9f:6a:e5:d2:5b:4c:e4:e1:9d:e2:fe:69:d1:1a:
aa:b1:5a:c7:0e:e5:63:f2:c9:da:ca:ae:67:aa:bf:e2:e6:2d:
63:23:5a:44:ee:c9:51:74:08:c5:c5:5f:a8:f0:66:40:09:70:
4e:75:a2:28:dd:af:c1:74:f9:d1:51:c0:5f:f7:d0:f6:01:e9:
3c:d2:34:4f:b5:67:f1:89:88:cc:44:d1:f2:7f:1e:94:34:42:
92:3b:b9:f1:d3:f1:22:2a:97:84:f6:3f:6a:0d:73:d8:d8:14:
d2:c6:61:2f:85:0d:4f:b5:e8:8e:70:fe:8d:8b:8a:0a:56:c5:
cc:8d:42:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:31 2024 by rpki-client on console-fra.rpki-client.org