Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9E289A9AF7BC11EEBF840A0C017001B1.roa
File: 9E289A9AF7BC11EEBF840A0C017001B1.roa (raw, json)
Hash identifier: 7Ucnz8ot/vUQeu6kSGojtoMXVkNiZj5TczAJyEhxnGw=
Subject key identifier: DF:D4:8C:79:BD:83:8E:2D:3D:B4:20:F0:8F:CA:B1:83:78:16:58:BA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AAFF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9E289A9AF7BC11EEBF840A0C017001B1.roa
Signing time: Thu 11 Apr 2024 04:33:17 +0000
ROA not before: Thu 11 Apr 2024 04:33:14 +0000
ROA not after: Sun 19 May 2024 04:33:14 +0000
asID: 138915
IP address blocks: 154.90.38.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43775 (0xaaff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 11 04:33:14 2024 GMT
Not After : May 19 04:33:14 2024 GMT
Subject: CN=6617680d-d52a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:14:db:8e:ba:77:9d:d5:b2:ab:9d:40:fe:90:
58:83:46:98:2b:35:00:49:d0:01:55:5e:3c:db:c9:
23:6b:08:14:c9:4f:92:e9:a3:0c:0e:20:0b:e0:69:
0a:94:53:a8:16:64:ac:ac:ab:c3:59:7d:6d:7e:d2:
1a:99:ba:e5:32:99:e4:3d:2d:9a:c8:49:e1:ca:78:
f2:31:3b:88:79:d4:fa:df:65:34:64:bb:12:38:31:
f9:48:a3:aa:8e:e6:ba:3b:52:8f:ef:41:2e:c3:62:
bc:c4:ba:07:62:3a:0e:64:1f:c5:dd:26:ca:a6:71:
40:38:59:64:8f:e8:8d:a5:73:4e:5d:22:ec:ec:c4:
a4:76:20:64:cd:f2:e2:50:a5:dd:3d:6b:92:ff:0f:
cc:cd:57:95:7a:c4:91:f3:c1:55:a5:f3:fb:61:96:
50:bc:8e:23:04:57:9a:53:45:b5:ab:b2:75:b4:7f:
fb:58:ec:63:f3:4c:24:e0:7d:07:0c:e2:a1:9c:1a:
ff:23:77:53:9d:aa:bb:50:88:f2:c1:47:92:49:24:
ef:90:5c:bc:20:c0:d6:0c:0d:46:69:f7:ad:29:0d:
33:81:f4:b0:23:de:c4:c3:b4:28:01:10:4b:90:fd:
b0:ad:55:b6:9f:03:95:75:a0:be:6c:3e:ee:13:39:
c3:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:D4:8C:79:BD:83:8E:2D:3D:B4:20:F0:8F:CA:B1:83:78:16:58:BA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9E289A9AF7BC11EEBF840A0C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.38.0/23
Signature Algorithm: sha256WithRSAEncryption
58:bc:29:44:b2:18:a3:38:5b:16:46:66:a3:eb:64:ad:f1:95:
c2:70:65:65:e5:42:97:44:ca:6c:90:4b:e9:ee:af:d8:25:9e:
09:2f:df:44:0c:c7:8b:50:64:32:2a:a9:fd:f6:99:bb:6c:fd:
b5:24:cd:70:7d:88:af:2e:f9:a9:6e:22:41:80:74:df:62:ea:
46:f9:da:18:e9:e4:ea:59:d9:5d:e7:df:7b:1d:42:a4:35:11:
b4:ec:0d:26:c9:10:7b:e8:cb:4a:5f:91:ff:83:b0:7d:30:39:
01:56:16:b7:a6:96:77:98:ff:8c:db:22:12:80:59:d6:a3:19:
3f:ae:31:e5:8b:e5:24:b4:d3:e5:c6:02:ad:da:6a:44:17:cd:
71:64:b9:47:17:24:02:3a:f5:ea:b1:b7:ab:99:34:bf:f2:88:
33:52:ad:91:3e:5c:48:16:34:cc:65:4d:b5:5e:30:07:a7:b2:
7e:d5:8e:71:51:bf:45:fb:ba:4d:fa:c3:87:ad:67:c8:fa:d1:
51:4d:c7:f8:d9:bf:87:81:db:3a:4b:4c:d7:1f:f2:9a:88:da:
d6:7c:f5:06:24:5c:b7:4f:c6:e6:90:52:54:2b:a5:92:de:b1:
49:38:90:e1:53:c7:39:78:cd:cf:f8:42:cd:15:b2:99:1e:70:
35:3e:69:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:16 2024 by rpki-client on console-ams.rpki-client.org