Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D37CCB82F47C11EEAC2A5BA6775412E6.roa
File: D37CCB82F47C11EEAC2A5BA6775412E6.roa (raw, json)
Hash identifier: wT3SWCi3z1hdEqxMnpjVMp+O5kMH3kTy5JDu7dM35bE=
Subject key identifier: 15:64:6B:B5:64:B8:8E:05:FE:46:11:93:E3:4B:96:FC:2C:DE:AA:9F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A986
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D37CCB82F47C11EEAC2A5BA6775412E6.roa
Signing time: Sun 07 Apr 2024 01:19:06 +0000
ROA not before: Sun 07 Apr 2024 01:19:02 +0000
ROA not after: Fri 10 May 2024 01:19:02 +0000
asID: 209242
IP address blocks: 154.197.88.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43398 (0xa986)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 01:19:02 2024 GMT
Not After : May 10 01:19:02 2024 GMT
Subject: CN=6611f48a-f450
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:60:83:9f:4b:ed:60:84:b8:a1:a0:a1:89:da:
b3:4a:2d:95:7a:bb:ac:08:a7:8f:91:1c:b0:30:99:
d1:82:65:e4:64:89:75:f3:27:53:36:c2:96:bf:eb:
20:91:8e:a9:c6:57:d5:b1:a0:64:5b:72:3d:6e:cb:
9a:c3:44:1e:fd:b4:10:ad:40:30:8e:60:06:ba:4d:
c4:a6:80:63:8c:da:e7:0c:41:b6:e3:37:03:3d:d3:
5b:cd:0f:fc:c4:64:52:57:59:ff:3c:b3:e4:cc:9a:
8f:8f:ac:2e:65:8a:53:f4:09:63:e9:81:45:d4:da:
77:0b:8f:ab:dd:fa:fd:89:d8:45:1c:78:3f:fa:0a:
35:88:96:0f:f6:d0:0f:ab:47:18:8a:3f:88:6e:9b:
32:6d:87:31:30:b6:fe:4f:91:99:a5:fc:31:22:89:
f8:67:fc:fe:fe:36:a7:3d:73:29:02:d0:36:da:60:
2c:a3:0d:51:f0:37:52:f2:8f:55:db:37:3a:c4:1b:
9e:93:2b:98:a9:73:16:c5:0c:e1:24:6f:2c:2d:42:
d1:5f:d9:33:ad:91:da:41:4a:86:16:a0:2a:3c:f0:
a9:71:92:c8:4a:20:3b:b6:4c:29:41:e2:5f:9b:fc:
16:76:94:63:b7:54:7d:90:fe:e5:23:77:71:9f:42:
e6:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:64:6B:B5:64:B8:8E:05:FE:46:11:93:E3:4B:96:FC:2C:DE:AA:9F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D37CCB82F47C11EEAC2A5BA6775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.88.0/24
Signature Algorithm: sha256WithRSAEncryption
26:44:5d:71:25:9a:0a:d4:ff:a3:e9:3f:31:2a:10:d4:fe:0a:
0e:09:26:c9:e9:80:34:29:c2:91:75:32:4d:c6:32:57:48:fd:
40:32:54:a1:df:a3:14:a3:56:83:69:44:b1:88:97:72:fb:03:
1f:9a:bb:96:7e:38:37:c0:97:97:d8:2a:e5:2f:15:27:b3:1d:
c5:ec:a2:55:84:d4:4b:86:6e:d1:82:ba:5a:7a:ec:c6:3d:0d:
24:29:bc:33:4e:ea:3e:15:38:d1:23:27:fd:e4:a2:ee:28:62:
79:bb:ea:94:20:be:f3:9f:47:92:f2:db:5d:23:d5:a2:b3:be:
18:be:f0:c6:22:ec:05:ad:10:5c:cf:2e:13:87:4e:85:5d:d7:
6e:86:ab:c3:a6:4e:a5:71:9c:75:39:68:45:5f:6b:3d:7a:a3:
0b:73:4c:0c:49:ca:52:0b:ee:2a:e9:1b:5b:26:9f:4f:b7:96:
5a:28:d1:0f:2e:10:09:de:6b:a6:15:ee:9b:da:11:4d:76:96:
46:d7:36:56:ea:ca:9c:bb:7e:06:5d:26:fb:e8:a1:96:11:2d:
4e:47:95:31:1a:cf:6f:13:87:47:c6:74:0e:b4:d9:5a:d2:ac:
66:83:ad:fa:4a:b3:0a:8b:09:cc:48:0d:26:62:22:df:cc:3e:
ae:b4:b1:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:39 2024 by rpki-client on console-fra.rpki-client.org