Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E21BE6C0FE1B11EE9D4CFAFB007001B1.roa
File: E21BE6C0FE1B11EE9D4CFAFB007001B1.roa (raw, json)
Hash identifier: CW+XIDKBLo3W8WqWAvP3oOdOgWUqFkXyN19tJtD5bDQ=
Subject key identifier: 2B:44:D7:4F:01:5B:88:7C:8F:82:70:97:DD:50:F8:88:7F:1C:14:15
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AE5A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E21BE6C0FE1B11EE9D4CFAFB007001B1.roa
Signing time: Fri 19 Apr 2024 07:10:21 +0000
ROA not before: Fri 19 Apr 2024 07:10:07 +0000
ROA not after: Wed 22 May 2024 07:10:07 +0000
asID: 210542
IP address blocks: 154.91.200.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44634 (0xae5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 19 07:10:07 2024 GMT
Not After : May 22 07:10:07 2024 GMT
Subject: CN=662218dd-a09d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:58:d7:02:0a:fe:b9:1b:93:a0:98:bb:de:67:
36:c0:79:13:6f:cf:40:75:ed:0c:bf:c9:0d:d5:ce:
10:e1:30:41:38:9f:e4:f7:86:aa:90:ab:51:ba:81:
42:fb:84:70:06:3e:38:fe:e4:43:d6:6a:31:cd:7e:
dd:a3:3d:70:15:7c:03:da:37:b0:1f:14:5f:af:bc:
29:75:fd:f6:0f:3d:e8:a4:86:66:a7:22:7a:a2:4a:
2e:72:e4:27:5f:24:40:6d:2a:5a:f7:5e:9e:61:7d:
5b:3c:97:0b:6f:e0:fb:5a:a6:01:01:0a:5a:19:d2:
b8:dd:68:5f:c7:7e:4c:2a:76:fc:e8:f2:a7:7a:73:
af:80:ab:82:05:c0:78:b1:f8:1f:bd:5d:cc:b6:ca:
19:4a:92:d7:ec:bd:d1:68:76:ac:d5:2e:ec:72:16:
f7:8d:06:82:3b:30:67:12:1a:1e:6e:c1:9f:a1:62:
ea:6b:d9:ce:29:a7:fe:37:f5:8c:92:ec:56:a1:f8:
81:33:ea:97:e9:ef:90:d9:76:49:f9:52:0a:b6:5b:
92:76:65:83:95:81:c7:05:33:58:c2:96:32:04:07:
2e:f3:ee:dd:7f:17:75:e4:61:96:d2:20:b3:2d:0f:
1f:77:e9:f6:0d:ab:03:3b:f8:3e:4e:2d:db:7a:1d:
92:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:44:D7:4F:01:5B:88:7C:8F:82:70:97:DD:50:F8:88:7F:1C:14:15
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E21BE6C0FE1B11EE9D4CFAFB007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.200.0/23
Signature Algorithm: sha256WithRSAEncryption
76:5d:26:a9:a5:b0:56:d5:f0:7d:67:d4:c7:4c:70:f4:db:81:
f5:01:18:97:e2:21:d7:06:ac:3a:1a:b2:b3:f0:65:d9:20:9b:
82:d5:cb:4e:c9:77:7d:ea:c4:47:eb:9d:8d:3d:ce:9a:11:ee:
1f:a1:11:bc:75:e5:a9:42:e1:2c:8d:3e:45:11:01:bf:76:7f:
4d:24:58:8e:ef:76:94:1d:7c:07:7f:74:aa:83:30:00:37:d4:
cb:e1:0f:34:e3:ce:9d:dd:76:b3:3a:8c:0a:f6:c5:e4:8c:c0:
43:d3:d4:9d:f3:da:b4:94:73:6e:db:9f:19:86:0a:2e:0f:76:
4d:13:a2:1c:ac:92:89:44:58:5c:41:19:3e:25:f7:2d:c5:94:
ae:fe:e8:2e:53:4e:7e:93:23:0e:fd:50:11:7b:3d:0b:da:f3:
32:ab:b8:c4:89:7e:bb:ed:65:aa:17:34:4d:e4:4a:24:13:c5:
d7:65:ae:45:f7:28:30:45:f9:f5:17:a1:b0:3e:5e:19:65:b8:
30:6d:b2:af:7b:e3:f1:d0:ad:7d:49:e6:6e:b7:ed:2b:82:f1:
dd:4a:15:65:87:7c:2e:cd:5d:11:cd:65:ed:a6:29:20:eb:09:
e8:21:8d:7a:cf:b2:07:15:58:46:93:73:db:1e:0e:d0:2c:91:
f3:b3:50:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:41 2024 by rpki-client on console-fra.rpki-client.org