Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/90D65CE8E9A611EEBB9D1462775412E6.roa
File: 90D65CE8E9A611EEBB9D1462775412E6.roa (raw, json)
Hash identifier: YPOJJWRyecC0MriommJF3Rn6IxOGqPiy1PATbUSheTY=
Subject key identifier: E0:DA:07:FA:2B:78:3C:88:B2:52:E6:AD:27:06:F9:EC:77:DC:3C:12
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A650
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/90D65CE8E9A611EEBB9D1462775412E6.roa
Signing time: Sun 24 Mar 2024 06:20:10 +0000
ROA not before: Sun 24 Mar 2024 06:20:06 +0000
ROA not after: Fri 26 Apr 2024 06:20:06 +0000
asID: 18013
IP address blocks: 154.201.64.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 06:20:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42576 (0xa650)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 24 06:20:06 2024 GMT
Not After : Apr 26 06:20:06 2024 GMT
Subject: CN=65ffc61a-368e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:21:65:aa:9e:fb:99:23:73:c4:dc:6b:90:54:
63:cd:94:95:4d:0e:4f:e3:45:1c:7f:49:00:9d:49:
4e:89:11:f9:c7:d6:a7:e1:aa:91:da:09:90:68:4b:
cc:61:b4:75:72:be:ab:97:1f:2b:f4:9a:4f:1d:c6:
4f:49:28:c0:a8:10:a4:e1:79:ee:d8:d3:3c:de:e7:
21:83:a5:cb:93:30:0a:a1:cf:b6:7d:32:23:8c:7a:
8e:3e:66:99:28:be:ed:18:b5:bd:50:20:32:a4:3b:
29:b7:62:51:1c:ad:b6:68:d2:e7:b5:ac:09:e0:d3:
39:2b:28:9b:04:0b:b4:bf:9a:96:c4:84:4e:67:99:
64:f5:35:9c:ad:7d:10:4b:77:51:89:8a:5d:f7:cd:
31:a3:63:8e:cc:3d:67:8b:b4:a6:6c:85:62:13:51:
3d:94:31:1b:ad:a8:b7:9e:83:1c:7f:d3:99:9b:fa:
e8:18:00:b5:91:55:90:32:46:e8:c9:6c:ef:c2:01:
a0:b8:07:09:45:16:d4:64:68:b3:34:ce:4e:4c:e2:
cf:e5:62:25:f3:c2:3b:79:35:41:ee:bc:a6:b6:f3:
64:37:89:8a:99:59:f0:62:c4:37:98:7e:28:12:fc:
ce:ad:ce:a6:53:32:cc:04:cb:c9:f0:36:85:2b:a7:
3c:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:DA:07:FA:2B:78:3C:88:B2:52:E6:AD:27:06:F9:EC:77:DC:3C:12
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/90D65CE8E9A611EEBB9D1462775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.64.0/19
Signature Algorithm: sha256WithRSAEncryption
99:5b:ff:5d:c8:6d:91:d2:d1:d7:ad:2d:86:bd:94:1d:be:c3:
a3:40:0d:b0:90:fe:3d:27:98:79:5f:21:74:e7:3f:ee:b7:a8:
05:7d:72:30:7a:1b:13:06:fb:0e:1c:d4:70:67:ed:a4:b2:07:
d4:77:9c:cb:f0:95:36:d7:34:52:9e:18:f9:b6:8d:23:cb:aa:
41:ac:a9:4e:c3:02:e9:3f:ca:d1:9f:d7:4b:98:89:68:09:20:
a1:4f:d2:dc:2f:aa:b2:70:bf:4c:98:ab:3e:f2:8f:68:47:dd:
39:61:0a:3d:d0:60:c5:11:74:ef:a7:32:68:81:28:0a:80:e8:
68:4a:88:dc:81:a8:8c:98:85:a2:9a:e6:11:25:89:86:89:03:
b0:95:8c:ed:2b:b9:e9:e5:42:34:b4:2a:3f:44:f2:e3:da:3b:
7a:96:bd:26:b5:5c:09:d2:84:81:d3:ff:a0:2c:d9:df:51:9a:
e3:96:18:25:19:db:8c:44:34:ef:ab:03:76:ce:2e:4c:3c:4a:
49:10:1e:a0:18:49:36:78:90:ce:50:89:73:09:3b:5d:38:28:
02:59:fd:11:00:b0:a5:fc:e7:a0:8f:9a:c9:79:b0:5d:39:8d:
a9:c0:65:b6:78:68:bb:44:7b:f5:56:c4:68:e6:16:17:e4:c3:
18:70:a4:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 06:08:47 2024 by rpki-client on console-ams.rpki-client.org