Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9D45DE32F49011EE95AF8A4F775412E6.roa
File: 9D45DE32F49011EE95AF8A4F775412E6.roa (raw, json)
Hash identifier: F5Y8eCvo2LPBNw4ISwDpJzu8ZSS7prAjS7ugm496ADQ=
Subject key identifier: AA:64:F6:85:B2:79:B0:66:21:9F:88:95:70:88:36:BB:67:0E:01:EF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A9B2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9D45DE32F49011EE95AF8A4F775412E6.roa
Signing time: Sun 07 Apr 2024 03:40:45 +0000
ROA not before: Sun 07 Apr 2024 03:40:41 +0000
ROA not after: Mon 13 May 2024 03:40:41 +0000
asID: 138915
IP address blocks: 154.206.94.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43442 (0xa9b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 03:40:41 2024 GMT
Not After : May 13 03:40:41 2024 GMT
Subject: CN=661215bd-0820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:64:1b:db:d9:f1:96:32:26:4a:a2:ab:0a:51:
e0:3b:ed:09:18:0a:ad:c3:8c:0f:27:87:18:e3:6d:
86:c1:99:51:c6:5e:ed:dc:8d:9a:11:43:38:0b:13:
ca:d4:9c:a6:ff:41:15:5d:de:3f:a8:94:5f:43:40:
e2:8d:fc:80:01:b3:72:3f:26:cc:34:7e:35:79:3c:
98:f9:aa:28:27:5a:b8:39:c5:4e:24:d6:d4:f9:05:
a0:5b:60:e1:29:6c:0b:f0:aa:4f:79:e0:64:f2:28:
6b:b1:48:fd:ae:f2:bb:ec:9c:c4:c2:77:a2:2d:a6:
1d:bb:5c:b7:fe:37:ea:4c:36:60:31:5f:ad:26:06:
c6:3e:a6:05:f6:de:df:f4:10:95:24:fa:56:08:8a:
f4:fd:88:3b:56:9b:d8:32:12:cb:20:22:29:39:1a:
ec:ae:d1:dc:14:52:5d:e5:a9:87:74:38:2c:69:f9:
82:06:c7:d7:f5:5a:15:80:94:39:43:d0:e1:54:e4:
c1:6b:b2:78:d4:42:af:2d:67:19:a6:fe:71:cb:5e:
b3:76:63:d5:32:3c:ff:15:b5:fc:80:9b:ac:f7:f8:
71:73:f1:df:fc:95:b5:74:53:3d:4d:7c:9c:b9:79:
7f:ab:45:d6:af:1f:31:38:11:69:92:e4:49:9b:7f:
14:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:64:F6:85:B2:79:B0:66:21:9F:88:95:70:88:36:BB:67:0E:01:EF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9D45DE32F49011EE95AF8A4F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.94.0/23
Signature Algorithm: sha256WithRSAEncryption
48:ab:72:0b:52:95:83:d2:64:44:c0:b7:2d:a2:1c:f8:f9:65:
10:91:9a:0e:0b:6d:af:5b:16:de:bd:80:29:c3:e1:3d:3a:64:
7e:db:31:35:dc:16:c4:dd:36:e2:d9:6c:e4:1e:5f:be:73:dd:
51:74:b4:f4:b9:b8:f9:be:f3:b7:00:5c:3a:69:65:bf:a2:ab:
a2:63:a0:8a:13:97:c6:34:f7:49:06:19:37:51:c8:54:50:dc:
73:88:ee:f8:c8:27:fd:1f:25:f0:7a:0f:2f:e7:39:2f:e1:48:
e1:9d:54:60:a6:0b:38:1a:34:05:6b:c8:ec:80:03:7e:61:a2:
b9:ad:11:a1:c0:e3:4e:e1:ba:0d:e5:b1:f2:95:ef:31:b4:74:
08:eb:52:94:16:2d:54:e8:b0:3f:6e:c2:a2:6b:95:c1:ca:79:
89:a3:7c:f9:0a:bb:8f:58:19:fa:7f:83:30:a0:2d:01:51:0f:
fe:ba:15:51:8a:b0:9b:1c:21:49:c1:6f:4a:60:80:0d:3f:f2:
45:1b:c7:ae:28:16:ae:dc:51:c0:83:37:46:fb:da:01:3f:92:
ee:5c:94:8f:dc:6d:d9:71:8b:e9:86:bd:c4:a5:30:7d:2b:f0:
cf:9d:0d:23:3f:d7:71:8e:9a:c3:34:98:15:81:a9:b6:67:1f:
cb:5c:79:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:33 2024 by rpki-client on console-fra.rpki-client.org