Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/97080DA0F57711EEB8DBE85E775412E6.roa
File: 97080DA0F57711EEB8DBE85E775412E6.roa (raw, json)
Hash identifier: gLPtRXSMA30E5xfg8hcsszkrbDc22HxzrkAaS0mWb8w=
Subject key identifier: 1D:E0:33:85:02:6D:93:0F:83:D9:89:18:86:9D:67:27:10:87:26:1C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AA4F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/97080DA0F57711EEB8DBE85E775412E6.roa
Signing time: Mon 08 Apr 2024 07:14:08 +0000
ROA not before: Mon 08 Apr 2024 07:14:05 +0000
ROA not after: Sat 11 May 2024 07:14:05 +0000
asID: 150698
IP address blocks: 154.198.9.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43599 (0xaa4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 8 07:14:05 2024 GMT
Not After : May 11 07:14:05 2024 GMT
Subject: CN=66139940-fcf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3b:a6:bb:4a:a6:7f:23:7c:08:6a:c6:2d:c0:
16:63:05:04:f1:f4:dc:dd:af:34:d5:1f:83:f6:e7:
05:75:d9:31:f9:32:0c:d7:de:d1:eb:92:ec:f0:67:
28:51:7a:fc:f3:3f:c5:1e:b3:27:bf:a7:8b:7c:a1:
40:b8:cb:bd:1c:e3:ce:f5:c4:ab:ff:d9:52:c7:2f:
67:75:33:e1:f8:b5:eb:1b:a9:a4:24:03:02:27:62:
92:e7:5f:b4:73:f6:2b:8d:d6:0f:23:f1:de:7f:e8:
18:6b:60:11:84:21:bd:0d:45:8e:68:2b:2f:63:79:
2b:11:d3:65:ff:f0:59:15:34:3b:db:9f:a7:e8:80:
5a:42:8f:77:10:f2:e4:a0:bd:5f:eb:1b:c9:75:0e:
66:b4:ec:21:bf:17:fd:f4:32:25:90:ab:8e:d5:e8:
40:36:d1:f5:63:2d:5b:22:b0:89:53:6b:f1:be:ca:
8a:8d:2a:18:af:35:ff:58:4d:33:30:27:d7:e6:40:
d7:e1:7a:73:86:13:ec:71:bb:28:96:c1:4c:a9:e9:
de:33:18:9a:d7:80:4e:0d:58:a6:f6:d5:f0:b4:9a:
84:8e:6a:5b:89:f5:66:e2:2e:ef:da:68:0a:0b:1a:
ea:65:29:df:fd:71:73:e1:9b:ad:c8:d1:3b:f6:80:
13:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:E0:33:85:02:6D:93:0F:83:D9:89:18:86:9D:67:27:10:87:26:1C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/97080DA0F57711EEB8DBE85E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.9.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:a7:2b:5c:b9:37:89:9a:5c:50:a9:b8:23:28:f7:ee:3e:af:
4b:8e:89:dc:7c:0e:86:56:42:65:87:d8:a7:dc:f9:59:19:08:
4c:6f:36:97:cf:06:ef:ee:30:51:7b:84:b2:d7:06:79:e9:bb:
94:34:4a:4d:7a:24:7e:80:69:ba:d9:dc:fd:55:de:9c:09:e9:
09:7c:e2:1e:a2:94:e4:dd:dd:b8:e1:f3:52:21:54:b9:33:47:
67:d4:eb:92:c7:0f:28:b9:d3:33:74:f3:8c:6e:23:9c:0f:14:
73:67:12:e4:59:eb:09:41:7d:28:25:3e:14:80:33:e9:29:ef:
9a:e1:42:46:2b:e3:e4:02:bd:81:ff:54:1f:00:92:bd:64:88:
00:c1:89:63:0e:cc:79:f2:0d:f6:de:a7:55:f1:58:85:d4:92:
e6:f1:93:af:9d:e4:b8:e4:e2:5d:d6:25:95:32:e9:90:68:9e:
12:74:ff:f7:6b:23:55:a2:7f:2e:64:2a:47:8d:55:13:a2:c3:
ca:c0:41:0f:61:3b:cb:ba:c1:89:d3:e0:bd:8a:ed:74:75:ba:
26:51:e6:e6:14:0f:76:e6:3f:68:4a:de:ca:8a:8a:5e:0b:5c:
d1:41:03:51:ef:14:48:e4:3d:7b:c9:69:ce:37:49:b5:01:eb:
69:a3:22:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:16 2024 by rpki-client on console-ams.rpki-client.org