Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7E8B5BAEDAF11EE8DD67372775412E6.roa
File: D7E8B5BAEDAF11EE8DD67372775412E6.roa (raw, json)
Hash identifier: kX0MeqZi4FMmiKhIinmIGo/AqnFB5Tn8hHokzcAuiIY=
Subject key identifier: 40:04:4D:49:8D:29:FF:7D:DC:9C:2E:6B:F4:D9:C5:EF:82:DF:56:8B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A6EB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7E8B5BAEDAF11EE8DD67372775412E6.roa
Signing time: Fri 29 Mar 2024 09:36:39 +0000
ROA not before: Fri 29 Mar 2024 09:36:36 +0000
ROA not after: Fri 26 Apr 2024 09:36:36 +0000
asID: 62240
IP address blocks: 154.194.38.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 09:36:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42731 (0xa6eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 29 09:36:36 2024 GMT
Not After : Apr 26 09:36:36 2024 GMT
Subject: CN=66068ba7-7032
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ee:bb:09:3e:e6:87:23:c2:2a:dc:54:b7:50:
7d:32:56:7a:0f:2c:68:9e:2a:9c:04:ec:01:57:1a:
1d:ff:5c:0f:ee:01:9f:d4:0a:cb:ca:2e:d1:24:1c:
3b:42:a0:ae:9d:20:dd:01:34:d2:c9:8e:19:3b:f1:
71:82:2f:31:21:dc:f1:1a:f2:9f:8b:a3:55:c5:73:
20:68:6e:43:4d:e4:e4:f9:60:0e:18:8a:76:cd:00:
98:54:78:33:f4:ac:f1:8d:b0:20:80:10:fc:6e:3c:
1d:4a:27:29:63:59:88:7b:e6:42:98:f3:f3:56:3a:
99:dc:a7:81:4a:5d:23:2b:e1:36:7d:94:4a:11:97:
b8:4c:94:8e:ed:65:8e:f1:ef:5b:ab:fe:ba:23:de:
0e:dc:02:45:62:d2:21:5f:6c:85:9a:ea:a6:19:a1:
a3:31:b9:1b:be:50:db:b2:f6:de:75:4d:dd:6a:51:
d5:71:9a:3a:cd:db:93:bc:e2:7c:8c:87:a4:c9:5a:
4e:6f:69:ab:db:64:fc:38:a0:6f:aa:13:37:ad:40:
65:16:5b:2f:84:07:28:de:a7:d3:0a:5e:6d:5f:aa:
83:94:fc:ef:03:ed:66:30:04:94:ef:7d:3c:67:2d:
22:33:e3:40:9a:5b:96:67:d2:a2:86:41:53:ea:87:
97:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:04:4D:49:8D:29:FF:7D:DC:9C:2E:6B:F4:D9:C5:EF:82:DF:56:8B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7E8B5BAEDAF11EE8DD67372775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.38.0/24
Signature Algorithm: sha256WithRSAEncryption
80:51:53:4e:8c:31:ab:9d:b0:93:88:cd:ad:13:ca:8e:c1:07:
8c:a4:33:77:4e:54:31:19:7f:8e:76:21:1a:b7:36:b0:c4:e7:
03:33:cc:d6:4d:4b:43:c0:0b:af:42:ec:0e:05:a1:7e:44:63:
d3:a2:e6:96:12:c7:dc:bd:71:3a:f3:8c:f5:5c:cc:5e:66:50:
b8:df:d1:f1:4b:c0:01:ed:a4:03:55:9a:41:8b:dc:f1:29:80:
80:9a:83:79:7b:ad:8c:fc:4f:90:90:f9:82:e4:04:a6:c6:17:
20:ef:41:a3:e9:f0:cb:cc:b7:cf:19:77:5a:64:31:70:1b:45:
43:ac:98:bb:d3:d2:a6:e4:c3:7c:68:1e:61:2b:00:9e:e6:e8:
03:3b:81:65:d9:8d:7a:85:05:c7:70:08:da:ab:ad:0a:98:71:
7f:75:19:52:50:9e:6d:f0:cf:20:e0:2d:a1:24:1f:cd:0d:c4:
95:f0:b8:b3:13:41:5c:9e:46:fe:ad:e7:64:62:89:b3:51:5c:
c2:b2:ef:69:41:ed:4c:b3:d4:86:10:98:2e:a8:03:6d:9f:e7:
cb:13:4a:d1:92:02:6a:86:c6:f8:37:57:b1:24:ad:a6:3d:ea:
e5:82:52:4d:a3:da:77:7d:68:3d:d4:2b:49:d3:97:d9:e2:7c:
63:76:6c:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:33:39 2024 by rpki-client on console-fra.rpki-client.org