Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE58EA60FE1811EEBC07AE61017001B1.roa
File: BE58EA60FE1811EEBC07AE61017001B1.roa (raw, json)
Hash identifier: mQxxY+iU121bLjCNSUwjnU+Yt2SbRUrMxP6Mlx7uaPQ=
Subject key identifier: 96:AA:87:B4:D0:F3:2F:A3:48:71:BB:1E:C9:06:85:DC:62:F4:D3:CC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AE44
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE58EA60FE1811EEBC07AE61017001B1.roa
Signing time: Fri 19 Apr 2024 06:47:52 +0000
ROA not before: Fri 19 Apr 2024 06:47:49 +0000
ROA not after: Wed 09 Oct 2024 06:47:49 +0000
asID: 140403
IP address blocks: 154.92.10.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44612 (0xae44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 19 06:47:49 2024 GMT
Not After : Oct 9 06:47:49 2024 GMT
Subject: CN=66221398-3e46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:01:a4:24:a8:32:4b:31:83:21:76:9c:a7:2a:
6e:33:6d:21:0f:f8:ea:3c:06:a9:33:5d:8d:07:bd:
42:03:a4:9d:ce:9c:49:4c:58:8b:58:6d:c7:87:e1:
24:8a:5d:7d:36:20:8a:3c:57:a0:28:85:ba:a3:86:
65:29:7b:91:17:0c:82:c6:49:c8:8f:d2:09:da:e3:
ba:c0:ce:1a:fe:79:41:fc:87:c6:77:d5:c8:80:14:
8d:64:76:e5:8c:f7:01:c9:46:0b:05:94:33:9b:a1:
b1:7c:67:a6:6d:80:e6:d7:b2:8b:b5:64:35:5c:f7:
46:f4:de:af:21:b5:ce:5d:20:4a:70:a7:ca:a5:11:
dd:ad:24:4e:ec:ed:7d:ea:40:71:11:ae:de:71:22:
1d:45:4d:8f:87:38:38:e6:71:ad:dd:8f:6e:07:e7:
81:c2:94:02:64:42:b7:74:7f:bd:57:18:9f:62:81:
48:61:22:1f:f2:73:a3:57:7c:13:3d:b5:48:62:ab:
6c:04:6f:e2:5b:43:78:df:d9:49:da:9f:80:86:e3:
26:a1:c7:f6:7c:06:49:82:78:7c:2d:0e:93:34:cf:
51:24:8a:05:79:75:2c:82:3d:33:72:45:49:87:2a:
d0:b9:4e:05:17:b4:d2:59:19:b1:c6:2a:c7:4a:cf:
b3:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:AA:87:B4:D0:F3:2F:A3:48:71:BB:1E:C9:06:85:DC:62:F4:D3:CC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE58EA60FE1811EEBC07AE61017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.10.0/23
Signature Algorithm: sha256WithRSAEncryption
cb:ce:97:63:7e:08:02:01:b6:b3:6f:4b:9b:c4:69:28:de:95:
b7:71:dd:50:0c:20:37:18:32:17:8a:95:c4:cc:57:ee:e6:99:
f2:ee:97:5b:be:41:e1:ed:5a:bb:15:b8:bd:76:18:e9:5d:3d:
db:20:5f:fe:a3:26:38:f5:9a:2a:c4:27:34:64:2f:40:68:3b:
4e:6c:11:c5:d1:be:c6:4d:a9:dc:a5:ac:a1:86:2c:27:3a:52:
bc:4a:4d:64:a1:8a:fd:0a:3a:c5:9c:e3:d8:0b:cc:47:95:a3:
4c:d4:f8:c7:d6:80:1f:30:01:f1:ae:7e:3d:e2:8e:fb:4c:8e:
b3:fb:13:22:75:4f:c2:ee:66:7c:2a:21:9b:c6:68:8b:9e:e8:
2e:fa:91:e6:54:84:d9:79:69:e5:ec:2c:23:59:73:15:cf:63:
12:dd:3a:b8:cf:18:5b:56:7a:ba:67:4b:b4:f5:ff:7d:29:ea:
81:54:cd:ad:80:83:fa:78:1e:b1:a7:4d:f5:47:9e:d2:9a:ed:
91:28:01:1b:78:f4:e1:36:58:ca:27:38:dd:e7:d7:d1:17:e9:
97:25:ea:cd:56:b4:1f:9f:f3:fd:33:6a:11:60:8f:24:7a:a4:
6b:61:b3:a4:76:b6:36:af:e7:67:1b:ac:a9:52:58:c3:34:b6:
da:ca:c4:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:37 2024 by rpki-client on console-fra.rpki-client.org