Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D73ABF58F49111EE92CBB059775412E6.roa
File: D73ABF58F49111EE92CBB059775412E6.roa (raw, json)
Hash identifier: PrxIwc9+G8EM7ADK183pZbGBaeuKY4ISx+lzQBp7A2E=
Subject key identifier: 78:1F:42:D9:07:9B:E2:84:BB:63:B3:96:3F:76:FA:2A:B0:C7:96:20
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A9C0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D73ABF58F49111EE92CBB059775412E6.roa
Signing time: Sun 07 Apr 2024 03:49:31 +0000
ROA not before: Sun 07 Apr 2024 03:49:28 +0000
ROA not after: Mon 13 May 2024 03:49:28 +0000
asID: 138915
IP address blocks: 154.206.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43456 (0xa9c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 03:49:28 2024 GMT
Not After : May 13 03:49:28 2024 GMT
Subject: CN=661217cb-e082
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:02:10:30:51:96:35:08:80:a3:95:f8:c8:f9:
76:80:fe:11:b4:b1:58:70:eb:b9:f1:4f:09:c6:77:
6d:04:f8:73:77:32:71:99:a1:d9:e6:e8:2e:14:23:
03:9d:68:f6:b4:4f:2d:44:d9:17:4e:04:22:01:a0:
0c:e2:94:eb:c8:32:a0:c0:1f:04:70:b3:a4:6c:93:
7b:45:99:fb:3c:4d:5d:40:f5:9d:c1:16:35:53:7a:
fc:a2:86:cb:ed:d1:01:c8:a1:5c:ae:61:11:fb:11:
0e:db:ff:8a:29:2d:c4:5d:db:51:2c:e9:01:22:c7:
8f:01:23:09:e5:49:51:f1:b6:e3:c8:2d:52:87:e0:
94:38:ff:b0:40:30:35:30:f0:27:e6:94:cf:7b:2b:
59:68:3e:7d:08:5c:77:0e:af:9f:ae:04:ba:14:14:
3a:4a:6e:9a:49:c8:49:fa:e3:e7:dd:9c:73:3c:be:
50:45:9d:af:e0:9a:47:34:7f:c6:3d:b5:89:68:c5:
72:17:43:8f:27:39:46:0a:62:7f:08:0c:40:1d:e9:
20:22:9b:72:13:3e:00:23:b4:05:ef:9e:d7:f1:eb:
64:74:5d:91:c3:27:64:e3:9b:5d:da:f1:e2:d0:1c:
39:4a:50:0b:7e:be:81:e4:87:f5:e3:65:04:41:c7:
fc:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:1F:42:D9:07:9B:E2:84:BB:63:B3:96:3F:76:FA:2A:B0:C7:96:20
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D73ABF58F49111EE92CBB059775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.79.0/24
Signature Algorithm: sha256WithRSAEncryption
10:82:05:c0:6e:a1:82:1c:69:22:4b:81:1d:05:9f:ba:48:32:
ec:09:6c:a6:86:9a:7f:5b:01:12:53:65:7b:74:d0:1c:fc:96:
3b:8d:7a:c0:30:d9:37:e6:51:60:a2:ad:f1:b4:e6:32:02:cc:
43:7d:53:b4:45:a9:e5:5a:80:11:0f:70:eb:1b:ae:55:61:ed:
25:09:14:bd:31:b3:10:8c:71:1e:48:87:62:40:96:be:8b:68:
e5:16:33:af:1e:95:4e:33:70:9d:b2:cd:6b:aa:96:62:84:d1:
64:c7:35:07:cd:bc:7f:f8:b8:fe:29:f2:a4:94:4c:95:e0:3e:
40:b6:e4:e5:02:f1:bb:99:50:2f:de:e5:48:30:44:43:19:68:
9b:cb:03:e1:4d:3d:9c:29:97:df:80:15:df:29:3b:ec:36:5c:
d0:53:32:05:81:aa:e2:b4:25:ce:84:66:0e:e2:5a:b1:b8:ce:
76:be:a4:13:78:8d:83:f8:7d:d9:81:9d:09:d3:c4:f3:41:59:
53:95:9f:31:05:73:bd:15:ba:3d:8c:e4:62:fd:c5:88:9a:a5:
51:9f:21:6b:bc:fe:99:2f:64:f3:d1:6c:5a:e4:fa:c3:61:bc:
b8:97:81:12:53:ea:94:c3:6c:a4:67:c3:dd:4d:3e:5a:bf:97:
f5:ab:62:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:40 2024 by rpki-client on console-fra.rpki-client.org