Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B35BEABAF86C11EE824FB01D017001B1.roa
File: B35BEABAF86C11EE824FB01D017001B1.roa (raw, json)
Hash identifier: 8K+XhH0mn+TJnfGpp0xsDbSuo5D5qXfmFK88J42q46o=
Subject key identifier: 38:EC:0E:78:49:C7:69:CE:86:70:D5:FC:48:F3:D1:8A:DC:56:34:59
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB8A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B35BEABAF86C11EE824FB01D017001B1.roa
Signing time: Fri 12 Apr 2024 01:33:44 +0000
ROA not before: Fri 12 Apr 2024 01:33:41 +0000
ROA not after: Sun 19 May 2024 01:33:41 +0000
asID: 138915
IP address blocks: 154.90.60.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43914 (0xab8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 12 01:33:41 2024 GMT
Not After : May 19 01:33:41 2024 GMT
Subject: CN=66188f78-b3f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:81:d7:4f:3f:71:7c:61:e6:93:a5:c8:b6:c9:
2c:10:83:f2:63:a3:a7:db:ae:c1:70:2e:dd:4d:ce:
69:a9:21:92:ee:33:54:e0:5a:59:7d:a0:f2:38:72:
e3:ba:bd:bb:81:1d:9c:06:9e:7c:e7:cb:71:82:2c:
29:9e:60:38:e5:65:50:12:e9:36:4c:8a:ff:92:cb:
03:09:4e:38:ce:fe:bf:db:70:bd:a4:44:c3:9d:8e:
76:6b:90:2d:ac:22:d0:cd:29:b3:e5:0a:50:29:9e:
3f:97:b2:25:e5:33:2e:b3:7d:54:7d:aa:08:83:db:
c3:ed:3b:ac:a5:0f:57:45:aa:80:eb:87:85:49:e3:
22:f3:69:9a:2b:6e:e7:0a:54:b1:9d:ff:ac:dc:d2:
b7:6c:b8:5d:00:29:eb:26:73:11:25:b9:08:73:d0:
b9:38:6c:ad:64:ac:4d:36:b9:a8:bc:d2:29:88:92:
f5:51:b3:af:18:72:6d:79:bd:8a:1e:bf:b4:5d:93:
13:03:b6:de:63:cc:88:53:7c:95:2e:3b:82:2d:15:
7f:09:eb:4f:17:38:ed:49:30:2c:38:a4:d7:aa:03:
1a:8a:fe:8e:a1:bb:6c:ad:30:7c:3e:60:4f:1f:0f:
b5:cc:b6:97:ba:c4:cd:29:6d:5d:85:59:e1:3e:13:
6c:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:EC:0E:78:49:C7:69:CE:86:70:D5:FC:48:F3:D1:8A:DC:56:34:59
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B35BEABAF86C11EE824FB01D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.60.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:9d:4f:99:d3:ea:bb:58:8e:a8:bb:70:4f:65:80:29:5c:2d:
7b:b0:0f:7a:a9:73:d3:c1:be:9d:b3:02:95:15:b4:53:6e:65:
d4:a8:b0:cf:0c:67:ac:d9:3c:de:7f:81:3b:9e:51:e3:ba:d3:
b3:e7:55:5c:9e:a5:02:8c:ca:ad:97:21:72:6e:9e:67:f1:66:
7f:4f:7b:30:d9:9c:f7:e6:e5:df:14:f8:ca:95:df:a2:b1:23:
fc:a0:8c:9b:8e:97:6d:0f:75:55:7a:ce:c2:54:32:68:dd:e6:
83:de:56:bc:67:fc:37:b4:92:12:ff:64:83:86:70:26:c3:ca:
3d:8f:12:fc:3d:98:31:ac:86:50:b1:a3:b3:50:8d:c9:c6:48:
29:87:4f:08:ce:92:11:26:21:57:73:99:e5:f3:37:48:43:68:
19:1e:88:1c:b6:a7:2e:3b:bb:47:34:fe:98:f4:d0:98:61:9f:
31:18:e1:20:23:5a:a2:98:1f:bd:da:f7:07:03:80:eb:43:ca:
8d:d6:fa:a4:d4:ee:63:16:23:57:e3:75:f6:b8:31:2d:30:73:
64:63:80:2d:10:19:e9:f3:08:f8:a1:01:f0:91:b2:c6:39:a8:
05:d4:00:d0:99:3b:59:83:03:d9:7d:58:1c:87:45:65:b8:fe:
f7:75:52:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:36 2024 by rpki-client on console-fra.rpki-client.org