Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B90653D0EFF511EE8450A9B8775412E6.roa
File: B90653D0EFF511EE8450A9B8775412E6.roa (raw, json)
Hash identifier: pHhZ/9NiaYruQhgwF677ODD8VPSG1jKj778RgFxkcao=
Subject key identifier: 46:A2:35:FC:8A:F1:A2:96:96:E2:75:C5:23:38:64:CA:9A:43:F4:7B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A7F8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B90653D0EFF511EE8450A9B8775412E6.roa
Signing time: Mon 01 Apr 2024 07:01:55 +0000
ROA not before: Mon 01 Apr 2024 07:01:51 +0000
ROA not after: Tue 07 May 2024 07:01:51 +0000
asID: 138915
IP address blocks: 154.223.34.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43000 (0xa7f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 07:01:51 2024 GMT
Not After : May 7 07:01:51 2024 GMT
Subject: CN=660a5be2-ecb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:14:35:f9:d0:76:0c:ee:37:d0:8c:77:63:a1:
30:99:0b:3d:fa:4b:a9:80:ce:ec:0a:db:94:ee:66:
1f:0c:15:75:20:c9:e0:0a:00:39:e6:7f:c4:2d:bc:
96:1f:eb:e9:93:59:3d:1a:91:c4:ca:8d:88:e8:78:
c2:96:64:fb:14:5e:66:63:9e:30:7b:c1:d2:09:9f:
6b:83:28:44:4d:c9:0b:c8:98:dd:08:e2:9a:3e:bd:
2c:0a:b2:00:a6:0d:52:6f:a1:f5:61:91:51:41:e6:
3a:85:78:b0:ff:22:9b:e0:86:ea:14:e6:cc:92:d4:
2f:01:ef:a9:bc:d7:ae:1f:65:ff:22:4c:74:2e:08:
16:0e:42:51:23:68:6b:09:24:76:b7:cf:18:5e:ea:
b3:61:eb:6d:e8:c3:9b:6e:92:a3:ad:e1:e3:c1:a2:
d0:ce:0b:fd:30:a9:bb:b3:57:df:2b:71:fb:26:2a:
e3:69:ef:68:58:00:d7:55:c6:d2:31:b1:d8:73:08:
bc:b3:d3:5e:b5:73:c5:f0:f6:b6:b8:a1:b2:24:42:
60:74:3b:fa:68:7c:8e:4f:31:3b:56:f3:51:63:cf:
05:c6:71:ea:18:00:e6:78:96:ea:86:cd:79:66:ab:
47:f5:88:f8:07:c7:92:3c:ef:cf:94:59:8a:c7:f9:
78:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:A2:35:FC:8A:F1:A2:96:96:E2:75:C5:23:38:64:CA:9A:43:F4:7B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B90653D0EFF511EE8450A9B8775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.34.0/23
Signature Algorithm: sha256WithRSAEncryption
06:6c:32:bd:d2:8c:1a:52:68:5d:0f:60:5c:46:7e:77:9b:c9:
e4:2c:ca:68:95:fb:2b:1a:69:ff:ee:c3:4a:92:c1:3a:e4:34:
f3:cd:9a:da:1c:df:e9:ca:91:c0:3c:36:16:54:2b:6b:98:77:
ee:9b:d4:a1:f8:6d:4a:db:68:fc:0b:36:0e:c6:57:42:db:93:
62:58:47:3c:5a:a9:4c:c3:61:8a:c0:79:2f:a0:6f:18:5b:4e:
c6:df:29:f1:97:08:89:62:73:74:af:82:3b:77:d4:af:5d:c1:
19:4d:4d:8e:23:50:c1:5a:44:fa:b6:19:0c:26:c4:95:d6:61:
73:4d:ca:ed:37:5d:4f:5d:0d:84:13:c5:28:ac:0c:c6:e1:40:
19:d8:c8:7b:e6:46:c7:93:d5:3c:76:2c:ff:7d:88:39:a5:b5:
0a:74:d0:38:31:d2:2f:43:5c:e2:c3:bd:da:7a:b3:c7:85:09:
fc:56:ac:63:aa:04:30:0d:a1:fa:a8:d1:f3:40:94:46:a3:4c:
47:ee:1d:cf:d9:c7:7a:6f:f3:f6:cc:95:77:7b:66:51:10:4d:
f8:1e:df:36:38:65:32:80:e3:57:d5:03:0f:31:f9:90:95:f8:
62:d6:3e:2d:0b:50:6a:5b:ff:72:87:42:d0:65:09:97:2e:92:
4b:0f:22:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:36 2024 by rpki-client on console-fra.rpki-client.org