Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7F413C0ECAB11EEA47B1D86775412E6.roa
File: C7F413C0ECAB11EEA47B1D86775412E6.roa (raw, json)
Hash identifier: /SKS+bZNrW3WFAKuh6LAZNzU4YkBJeNj+ukBbf0+JG4=
Subject key identifier: 68:8C:11:B0:D7:62:CF:1C:48:37:3E:21:B6:56:F9:36:5D:9A:18:0C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A6DA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7F413C0ECAB11EEA47B1D86775412E6.roa
Signing time: Thu 28 Mar 2024 02:35:03 +0000
ROA not before: Thu 28 Mar 2024 02:35:00 +0000
ROA not after: Sat 22 Feb 2025 02:35:00 +0000
asID: 45669
IP address blocks: 154.91.160.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42714 (0xa6da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 28 02:35:00 2024 GMT
Not After : Feb 22 02:35:00 2025 GMT
Subject: CN=6604d757-b537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f7:0f:b7:93:b7:64:68:2f:ec:5c:c6:0a:96:
ea:a3:43:e8:3b:31:df:89:66:b4:2b:33:c3:ca:a2:
1e:d5:a7:2d:3a:51:e3:e4:2e:9c:d1:52:a1:c0:2e:
8c:74:f5:11:a4:1a:3a:45:14:19:c6:a8:df:c0:f3:
8f:2d:21:bd:79:03:8a:cb:45:5e:a7:7a:8b:41:42:
40:11:0b:52:fd:1f:b7:8f:94:33:d1:22:fb:53:39:
0a:0b:41:57:42:0e:d7:6c:b9:4d:c6:0a:e1:2d:cd:
b2:91:f0:a5:d8:30:73:98:27:d6:e2:13:e6:6c:b8:
f9:ea:3a:d8:54:82:43:63:f0:12:f4:e2:66:6d:18:
63:d6:49:45:1c:66:53:be:fe:f8:05:91:4c:82:a3:
ae:a7:46:e3:5a:dd:b5:06:37:c3:42:35:da:5d:2a:
37:80:4b:d9:86:1a:74:99:6a:d2:71:36:ee:c6:1c:
62:ef:1c:6f:31:2c:9e:6d:16:0b:fb:36:f8:82:7b:
b1:f3:5d:68:04:81:61:c5:a9:6e:c4:db:c6:ee:3b:
8d:1f:77:c1:d8:4a:1c:1b:d9:44:00:d4:02:9a:c2:
58:7e:d4:48:85:c4:2b:c5:56:a0:cb:cd:ea:cd:7e:
d8:7b:bf:e3:83:f0:34:fc:4c:e0:72:fd:26:b1:2f:
49:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:8C:11:B0:D7:62:CF:1C:48:37:3E:21:B6:56:F9:36:5D:9A:18:0C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7F413C0ECAB11EEA47B1D86775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.160.0/22
Signature Algorithm: sha256WithRSAEncryption
73:b4:e1:13:41:61:56:d0:25:1c:2a:9b:65:50:0f:00:96:c1:
0a:29:1f:d4:09:46:24:2e:b1:80:7e:d8:46:a4:f0:92:9d:a6:
32:db:26:e4:c6:72:a9:ac:c4:2d:51:19:1d:08:4c:3a:bf:36:
c5:15:73:3d:01:17:8e:aa:c3:63:d5:c6:22:1b:0f:4d:34:cd:
6d:da:9c:bb:dc:f5:81:fa:c3:b7:78:0c:18:f5:7c:51:ed:1b:
72:30:a6:ce:11:6c:ef:b0:f3:8b:da:da:5f:5a:65:94:5f:03:
3d:8e:32:1c:a9:21:52:9b:0d:ad:34:5b:1d:fa:cd:71:1d:35:
50:e9:07:04:49:54:40:32:66:e7:f9:fc:37:84:09:ab:fd:36:
cc:d4:a5:93:26:3d:11:21:8f:19:95:a2:ba:ab:b4:4c:94:39:
58:63:57:56:bf:1d:df:de:67:94:4e:21:c7:be:03:51:83:5e:
d8:d0:8e:24:3e:71:db:b0:32:37:8a:e7:cc:75:06:77:98:8e:
96:48:0d:e3:c1:0d:64:79:ac:5f:66:8d:6a:67:89:71:3d:d7:
5e:ee:33:95:74:85:8c:ec:71:a9:28:f4:b0:0f:2e:c9:f8:8c:
c3:0e:d5:40:38:b8:5a:bf:6c:4d:8c:ec:14:d6:ff:2c:39:c5:
9e:a3:83:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:20 2024 by rpki-client on console-ams.rpki-client.org