Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9578C01AF1A311EEB82F6761775412E6.roa
File: 9578C01AF1A311EEB82F6761775412E6.roa (raw, json)
Hash identifier: jvmFThr0PKDLnPFFHVyKiQNFes/a/O6CruhV55dVbtM=
Subject key identifier: AD:8A:87:A4:45:9E:A1:6A:53:99:9F:31:39:3E:04:11:6A:20:66:F2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A94E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9578C01AF1A311EEB82F6761775412E6.roa
Signing time: Wed 03 Apr 2024 10:18:58 +0000
ROA not before: Wed 03 Apr 2024 10:18:55 +0000
ROA not after: Tue 07 May 2024 10:18:55 +0000
asID: 272369
IP address blocks: 154.197.90.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43342 (0xa94e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 3 10:18:55 2024 GMT
Not After : May 7 10:18:55 2024 GMT
Subject: CN=660d2d12-3c77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:24:70:43:97:1b:1f:8b:18:e2:ca:cf:df:31:
72:61:c1:bc:87:89:ac:e2:b9:68:3d:bd:f0:86:99:
29:71:4f:1a:bf:cb:af:d9:c7:f4:f2:2a:34:3f:b2:
6d:32:3d:f1:c1:b1:8f:d1:fa:24:e3:4f:15:bd:68:
15:29:56:91:88:8b:c3:94:36:a6:17:f5:de:cc:43:
85:58:31:37:b3:fb:e6:dd:04:5d:38:47:b8:01:75:
63:9a:a2:00:2e:5e:66:a0:65:07:b3:7d:6c:85:29:
08:b3:59:07:60:16:5d:4e:f2:f4:07:4c:0e:ee:d7:
b1:8a:f7:84:b0:8f:be:40:16:aa:11:bf:c8:23:b0:
f0:e3:ee:16:c0:d0:bb:7e:59:ed:6c:a0:f4:37:ec:
db:26:3f:e5:ba:bf:04:5c:61:72:7d:40:3f:3a:43:
a3:bc:af:ce:01:a6:b3:57:ea:c2:97:89:cf:36:6b:
99:d1:4e:53:bf:ce:a0:54:5a:c4:03:3e:fe:68:5a:
71:ac:07:8b:20:a3:6f:40:b6:ad:45:ae:bf:ee:dd:
41:82:7d:a9:b8:2f:61:4d:86:4a:1c:0f:c7:44:6f:
23:d0:6f:6f:c7:54:e7:5d:be:d2:19:f6:01:d6:88:
d2:88:ff:d0:3a:52:50:5d:24:50:d6:ac:7c:41:d0:
57:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:8A:87:A4:45:9E:A1:6A:53:99:9F:31:39:3E:04:11:6A:20:66:F2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9578C01AF1A311EEB82F6761775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.90.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:d9:5d:42:ba:ca:e6:d5:38:f5:e2:b6:bc:ad:28:13:d8:61:
72:e3:17:01:1a:23:97:6f:a3:56:85:5a:98:71:26:5a:fb:bd:
e7:64:f7:8e:7d:84:b3:e2:58:19:44:21:e6:68:e8:15:e8:16:
f9:21:74:78:4f:b8:e8:12:5f:44:d3:b2:6c:63:59:87:56:3b:
b0:0b:9c:37:fd:a3:43:08:ad:a1:ca:73:50:a4:40:57:f0:aa:
0e:db:83:b2:4d:6e:ca:0f:f7:54:8c:8c:63:9b:37:96:3a:2c:
d5:64:f6:d1:03:a6:28:02:35:d4:13:c3:14:33:a0:80:e0:d2:
1a:33:35:83:71:25:7a:d5:2d:dd:00:46:24:22:1b:ab:70:f6:
a4:5e:74:f2:9d:67:dc:0c:ae:1d:92:21:ee:94:64:e0:6f:62:
c8:15:f3:40:94:d5:77:70:14:38:d9:79:81:7a:2d:05:43:ac:
24:86:e5:64:95:e4:61:67:e3:c9:7a:07:4d:32:40:f7:fc:a4:
aa:ed:a0:00:84:5e:e8:72:58:8a:81:e4:cc:77:8a:08:51:73:
f6:7c:d4:c8:a5:c5:9c:19:7f:af:50:e7:21:5e:0f:f4:e9:7d:
57:71:a2:17:72:e4:d2:6d:68:e1:9a:da:db:32:01:34:05:c3:
d8:c4:15:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:15 2024 by rpki-client on console-ams.rpki-client.org