Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CBA93B78F47E11EEB70533B8775412E6.roa
File: CBA93B78F47E11EEB70533B8775412E6.roa (raw, json)
Hash identifier: 7x/TnoIcwuVsZ+NOEMuuSsFcvnnancCf2ac2R2ibZzw=
Subject key identifier: 3C:01:56:02:F5:10:52:AB:7C:E5:A7:E2:77:73:41:05:79:66:52:9B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A99C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CBA93B78F47E11EEB70533B8775412E6.roa
Signing time: Sun 07 Apr 2024 01:33:12 +0000
ROA not before: Sun 07 Apr 2024 01:33:08 +0000
ROA not after: Mon 13 May 2024 01:33:08 +0000
asID: 138915
IP address blocks: 154.206.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43420 (0xa99c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 01:33:08 2024 GMT
Not After : May 13 01:33:08 2024 GMT
Subject: CN=6611f7d8-a903
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:36:92:41:08:f4:a3:9e:70:dc:2c:f4:1d:67:
38:45:36:f6:25:f0:30:79:34:16:65:7a:02:9a:8b:
74:2a:14:ce:93:1f:4f:88:16:b1:aa:80:2a:81:1f:
22:4b:b8:14:b2:a2:e8:3d:39:95:45:a0:04:a3:0f:
60:14:4e:fa:2c:46:11:97:37:35:ec:9b:99:bb:a4:
2f:fb:82:4e:a8:8e:06:a8:e1:7e:1b:50:29:c1:47:
c8:8b:47:5c:85:76:36:5c:e6:8e:e1:b3:28:13:c6:
af:95:78:f4:d3:55:aa:46:12:6f:f5:1b:ce:88:d1:
cc:ae:ce:66:27:96:32:39:98:e3:9f:85:7d:55:76:
92:a1:3c:e6:6f:9e:35:96:cf:f9:43:fa:f4:48:5e:
e3:47:e0:b8:39:d1:46:84:8e:7a:09:ed:59:d0:5a:
98:ad:68:98:16:af:61:cc:10:da:65:d3:a4:e7:73:
a0:b3:32:3e:aa:a4:a9:26:5d:36:fa:bb:15:57:dd:
e1:56:4d:ba:3c:f2:2b:25:86:71:cd:cd:8b:d1:64:
46:d2:86:77:dc:de:90:bd:f0:b0:d1:09:34:55:d1:
20:92:3f:a9:ed:67:87:65:3b:c2:e8:91:13:bd:31:
30:fe:b1:77:c9:3a:e9:c3:45:83:70:6f:f8:34:35:
63:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:01:56:02:F5:10:52:AB:7C:E5:A7:E2:77:73:41:05:79:66:52:9B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CBA93B78F47E11EEB70533B8775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.107.0/24
Signature Algorithm: sha256WithRSAEncryption
be:8a:0b:bb:c6:a9:de:33:e7:42:13:74:c8:65:45:65:dc:dc:
72:c7:7c:01:bb:32:6c:f2:85:4c:bb:45:42:6e:64:9b:03:38:
72:df:6e:8a:b7:17:40:29:d5:0f:6b:3c:d9:90:87:df:a8:cf:
85:0c:b4:df:c2:f7:c1:f8:9a:07:62:32:d7:94:be:a6:2b:8e:
48:58:db:6b:6c:c0:72:0a:c9:8f:d4:ed:4e:9a:85:fe:d6:cd:
03:0b:fa:16:6a:5b:7e:a7:60:39:08:d3:67:4b:aa:01:10:70:
40:79:da:41:8e:af:70:94:fa:96:5f:c2:c3:f7:87:75:db:2d:
0c:f4:39:b5:e6:7a:44:02:31:90:2d:b7:1b:4c:9a:b0:db:cf:
87:6a:b5:54:3b:89:b1:09:52:ec:67:da:5f:1f:68:d7:88:0f:
5d:30:62:71:dd:8e:b4:1f:8b:d4:20:f0:44:54:3c:b4:e3:2d:
b9:13:5a:e4:61:e4:d2:c7:7d:de:b8:6e:05:36:b0:40:c4:07:
ac:a6:ac:ee:3e:6e:6e:db:60:ba:c4:51:ac:0c:4c:93:0e:f0:
7d:4e:c9:06:1e:b8:45:f0:f4:f2:ba:cf:f9:79:2f:ca:57:95:
1c:3e:90:e0:de:7b:fa:0d:85:e8:b3:74:72:6a:97:a2:1b:c5:
34:68:27:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:20 2024 by rpki-client on console-ams.rpki-client.org