Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE9547BCF70411EEA7C15887775412E6.roa
File: DE9547BCF70411EEA7C15887775412E6.roa (raw, json)
Hash identifier: 2l9YIHvgipzIjxuv7SBMLYNPK3rBfKK4QUDN5jUm7gw=
Subject key identifier: 7F:95:C8:3F:B7:B0:B2:1D:94:7B:C5:59:D7:A3:06:57:82:7E:E3:0E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AAC2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE9547BCF70411EEA7C15887775412E6.roa
Signing time: Wed 10 Apr 2024 06:37:58 +0000
ROA not before: Wed 10 Apr 2024 06:37:55 +0000
ROA not after: Sat 20 Apr 2024 06:37:55 +0000
asID: 141883
IP address blocks: 154.91.254.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 20 Apr 2024 06:37:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43714 (0xaac2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 10 06:37:55 2024 GMT
Not After : Apr 20 06:37:55 2024 GMT
Subject: CN=661633c6-4983
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:4b:46:7f:24:b8:62:6e:eb:29:ea:11:81:43:
1b:5d:d2:0b:d9:12:05:21:e9:bb:d3:fb:07:2b:de:
b0:91:83:b8:a6:1f:3c:6a:2f:0b:92:36:bf:95:28:
0a:ae:ed:98:82:df:90:ce:f8:08:8c:5e:14:aa:ab:
85:db:53:14:ba:6e:71:73:43:28:f4:0c:fd:e5:01:
3b:bc:8f:30:a4:01:97:57:4b:a7:63:3e:fd:48:43:
43:7b:6b:2b:6d:49:b0:33:6b:46:88:3f:98:c1:82:
27:ff:eb:dd:a6:62:2d:00:73:6e:27:c8:a5:a9:4e:
de:9b:3b:a2:dd:cd:8b:0b:d0:e5:88:97:1c:69:4e:
77:f1:70:67:1f:70:49:6b:64:05:cf:d4:c8:9c:8f:
a5:e0:8e:69:99:c8:1d:2a:d6:85:8a:3a:f8:0b:4a:
37:16:06:97:bc:af:e1:50:c4:57:f3:2f:cc:1f:66:
8e:a2:5f:14:4f:60:15:ed:88:97:e1:9f:a9:93:d3:
56:af:f3:6e:3f:fc:c5:af:22:2c:74:64:1a:1f:c7:
6f:76:62:ce:7c:a4:a5:e9:9b:31:63:00:04:d8:f2:
a2:b2:2a:1e:d0:56:10:d2:0d:e7:d1:b9:85:bc:f8:
43:a1:3a:16:8a:29:ca:db:b2:d1:31:a4:23:27:fd:
6a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:95:C8:3F:B7:B0:B2:1D:94:7B:C5:59:D7:A3:06:57:82:7E:E3:0E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE9547BCF70411EEA7C15887775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.254.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:2a:06:77:b9:e6:b2:60:1a:6a:6b:24:c2:db:80:84:18:26:
0e:69:f7:76:ee:2b:72:84:36:4a:63:7c:79:ad:99:40:e0:ce:
63:ff:1d:95:90:a6:93:37:43:ce:bb:86:c0:80:3a:89:b0:f2:
5b:e5:10:85:7b:73:33:e9:a7:20:b8:50:04:d2:7b:b1:e0:1c:
f0:b2:9e:73:83:3a:f1:a8:d3:37:d5:34:62:c5:69:4f:3e:17:
99:26:69:ea:6f:9e:f1:0e:35:b5:87:6c:57:25:7c:f1:b4:c2:
e2:9d:22:87:63:ca:6f:c1:78:98:07:0a:b9:dd:04:42:91:56:
b2:a8:8c:84:66:54:b9:57:f4:80:45:f3:3e:b5:42:db:9c:f1:
ec:c6:9a:e4:2f:f0:fa:a7:3f:81:ed:49:26:b3:6f:76:f0:cc:
61:f1:75:3b:7a:36:ac:69:a1:f3:78:c6:05:10:d2:25:1f:4d:
52:94:57:e5:3b:72:9a:65:f6:27:b1:ae:a7:8d:ea:2f:b1:48:
39:fa:df:f2:ab:20:2a:a6:81:c5:f4:c0:57:c5:2e:e0:07:77:
07:08:a5:ea:87:8c:87:61:fc:21:0b:c6:88:09:b0:17:c6:5e:
06:40:1e:82:26:90:10:fe:f4:20:15:99:c9:f0:31:df:d1:00:
04:d1:45:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 01:48:37 2024 by rpki-client on console-fra.rpki-client.org