Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/92BD999CF0BB11EE8FFDA24B775412E6.roa
File: 92BD999CF0BB11EE8FFDA24B775412E6.roa (raw, json)
Hash identifier: KNyl6kbwwvccukX06o4QVfuoHsRmkv8pSaaTvY0kCtw=
Subject key identifier: 07:F6:66:09:00:0E:0C:ED:42:5C:32:79:A3:BF:B0:FE:AF:07:DC:5B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A8B5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/92BD999CF0BB11EE8FFDA24B775412E6.roa
Signing time: Tue 02 Apr 2024 06:38:11 +0000
ROA not before: Tue 02 Apr 2024 06:38:07 +0000
ROA not after: Mon 30 Sep 2024 06:38:07 +0000
asID: 211392
IP address blocks: 154.84.16.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43189 (0xa8b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 2 06:38:07 2024 GMT
Not After : Sep 30 06:38:07 2024 GMT
Subject: CN=660ba7d3-8e59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:eb:eb:be:9c:56:65:24:5b:29:b0:b1:78:f9:
6d:30:01:e6:15:d6:ed:0c:bd:e1:15:9f:11:5f:76:
22:93:9e:c7:f9:72:a3:f9:b4:eb:c5:64:e3:f8:60:
c7:01:04:46:84:47:22:cc:ae:78:7d:ef:df:c2:64:
54:91:5b:ed:5b:c6:ac:d6:60:c7:79:5e:18:d1:aa:
cd:65:69:21:cc:ce:4a:94:06:c8:9c:1c:ac:e8:f0:
e9:1d:69:20:dc:b7:9b:08:bb:5f:20:fe:56:23:00:
1c:19:4e:6d:71:73:65:33:8c:b9:83:d1:0b:70:77:
92:92:e8:7f:7f:5f:52:6f:ea:3e:81:a7:fa:12:3c:
62:7b:6c:99:74:a9:70:03:26:df:36:3d:c7:10:31:
29:bf:a9:d5:f6:3c:5c:5b:6b:08:58:ac:b3:db:bd:
fe:e7:8d:48:b7:bc:45:05:1a:b7:4c:95:a1:3f:b0:
5f:5b:97:36:47:55:0f:db:a3:56:5f:38:00:ae:b1:
60:10:64:81:1d:ad:fa:df:3a:a5:1f:09:79:f8:a6:
ad:1e:52:35:38:da:14:4f:50:12:94:9c:5d:5b:0a:
e7:e9:6e:5b:87:ed:97:62:56:8a:18:01:6a:7e:a2:
0e:2f:6d:9a:96:83:6f:d8:8f:93:dc:75:b9:56:37:
ae:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:F6:66:09:00:0E:0C:ED:42:5C:32:79:A3:BF:B0:FE:AF:07:DC:5B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/92BD999CF0BB11EE8FFDA24B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.16.0/23
Signature Algorithm: sha256WithRSAEncryption
66:d0:f8:2c:f8:4f:79:bb:db:c4:d7:60:d5:62:58:c0:61:d5:
bd:b0:0e:db:af:ed:4f:e7:ef:e5:d4:ae:2f:24:c0:1a:0a:ff:
e3:4d:eb:95:2f:8a:68:04:f5:02:15:87:2a:75:5b:19:2a:ee:
16:a0:5c:da:75:53:44:10:b7:4d:81:48:d7:c0:54:c5:db:1c:
7d:d8:e3:bf:79:5c:b4:fb:ec:0d:eb:a0:86:72:ee:1d:3d:e8:
53:76:b0:d2:19:ce:eb:86:5d:f9:7a:16:f4:8d:74:27:76:84:
58:17:66:b5:e4:a3:16:12:f9:51:d5:8b:20:29:98:57:d1:3d:
02:48:dc:9b:7c:26:44:7c:42:67:5c:60:7c:74:0a:3f:4d:dd:
cc:72:33:4a:85:5a:5d:32:38:a1:be:dc:74:80:83:30:13:41:
15:c9:d9:47:d4:bb:fc:e1:91:76:e2:a6:02:f6:12:f8:6c:91:
65:f8:40:ff:e6:12:f1:e1:43:7a:01:0d:8c:8f:fa:c9:60:21:
87:9f:4d:d7:a8:17:e0:0c:4a:a9:1c:de:ac:b3:f3:d9:b4:58:
00:bf:ac:4b:57:18:04:f0:cc:87:56:cd:3e:e5:ce:22:2b:43:
57:d7:f4:e3:89:df:a0:34:5c:d3:4f:d1:a9:f4:c1:6c:50:bf:
77:2f:a5:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:15 2024 by rpki-client on console-ams.rpki-client.org