Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/99D643E8F47E11EEBED72DB4775412E6.roa
File: 99D643E8F47E11EEBED72DB4775412E6.roa (raw, json)
Hash identifier: dPL5dzATaWV8PlPbgQiZyO+AsxxZLJG69eIos/eKzvI=
Subject key identifier: 25:86:85:A5:93:40:E2:A9:AE:79:40:36:42:FE:3C:EE:74:BA:77:7C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A99A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/99D643E8F47E11EEBED72DB4775412E6.roa
Signing time: Sun 07 Apr 2024 01:31:48 +0000
ROA not before: Sun 07 Apr 2024 01:31:45 +0000
ROA not after: Mon 13 May 2024 01:31:45 +0000
asID: 138915
IP address blocks: 154.206.56.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43418 (0xa99a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 01:31:45 2024 GMT
Not After : May 13 01:31:45 2024 GMT
Subject: CN=6611f784-eac9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:70:97:54:ca:f4:53:6b:62:c5:75:77:63:fc:
07:8b:3d:cf:37:c4:9f:95:0d:8f:4d:33:39:6d:37:
3c:1d:37:a1:bf:3f:31:55:de:3c:33:95:36:ef:ca:
a6:7e:a0:e0:49:58:fc:aa:1a:f6:86:74:3d:b7:51:
45:5d:c5:58:f5:74:f7:73:d4:63:d3:89:2b:28:9e:
bc:b1:d7:94:16:49:94:fd:c1:f0:55:e2:74:b8:4e:
e7:15:2b:34:fa:ba:ff:1c:6b:ec:f7:b6:50:76:88:
f5:25:8e:d9:2a:f0:41:18:ff:26:32:de:e7:e0:b3:
81:f8:98:41:37:69:3b:7e:03:54:17:02:63:74:55:
5e:f2:7d:98:3a:b7:31:ba:c1:ab:91:33:be:ee:12:
fb:d6:68:79:20:91:b7:c4:4c:20:f1:2f:78:49:b7:
92:bf:f1:a6:30:05:a2:2b:01:52:20:de:60:f0:15:
c3:24:3c:77:fd:b9:b4:6d:8c:04:43:e3:ba:0d:b1:
5c:4a:8f:39:d2:69:f6:1d:6a:ec:c0:09:5d:c4:41:
1d:e6:31:fd:b2:1d:34:bf:8d:6d:ac:d5:5e:59:cb:
5f:f2:c1:ed:e2:a3:e9:04:a1:5f:73:5b:22:dc:ca:
1c:8d:2a:10:1e:67:50:fb:c9:be:89:23:23:92:40:
8b:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:86:85:A5:93:40:E2:A9:AE:79:40:36:42:FE:3C:EE:74:BA:77:7C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/99D643E8F47E11EEBED72DB4775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.56.0/23
Signature Algorithm: sha256WithRSAEncryption
69:f7:b6:d5:80:1a:ad:e3:e3:45:87:2b:32:c7:f2:20:15:d9:
f8:44:77:bb:6c:ab:e4:d5:48:a3:f4:8d:b6:df:ea:16:61:69:
a7:f1:e6:65:db:d5:6a:4a:30:44:39:c6:a8:89:26:21:52:e1:
2c:ef:57:f7:d6:50:82:ed:58:98:d1:03:70:4f:45:63:f1:fe:
2d:74:54:0e:fb:1a:1b:90:39:eb:fa:0f:c6:d5:95:de:7b:a2:
81:b3:63:0e:d0:a7:eb:38:ae:78:89:a1:3c:b1:5b:89:e6:d7:
e3:b6:e7:4a:51:63:d4:e0:15:ae:b2:66:3f:4d:53:b2:dc:36:
09:46:8f:72:b3:40:db:71:57:ec:a2:21:8a:4d:a2:58:a9:5a:
84:41:83:c2:85:a8:34:12:d9:d9:ff:db:99:d4:41:84:8d:e4:
73:8c:2e:ad:ec:62:13:29:ed:b1:ce:80:4a:35:d7:4a:90:5f:
a3:a1:3c:bd:ed:b7:86:7c:fd:d5:e4:86:45:ce:26:35:cb:12:
64:da:63:43:31:b5:78:65:2c:69:8c:45:c7:5f:b5:8b:b0:b7:
ec:43:98:32:7a:c3:3d:72:70:2a:42:56:e0:9d:42:dd:9a:6b:
b5:74:aa:79:0b:9f:9b:88:1f:84:cc:b6:3c:b8:67:1d:e1:db:
ec:10:21:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:33 2024 by rpki-client on console-fra.rpki-client.org