Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EBAACF54F00011EE8C314490775412E6.roa
File: EBAACF54F00011EE8C314490775412E6.roa (raw, json)
Hash identifier: 1sNCCZ2im/NyAnwGXRAgF+M6m0kp7Rgjel/03yZ5dgQ=
Subject key identifier: 90:F5:13:12:5D:6A:FD:04:A7:F8:E0:33:3D:CA:79:38:9B:81:48:94
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A810
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EBAACF54F00011EE8C314490775412E6.roa
Signing time: Mon 01 Apr 2024 08:22:04 +0000
ROA not before: Mon 01 Apr 2024 08:22:01 +0000
ROA not after: Sat 11 May 2024 08:22:01 +0000
asID: 138915
IP address blocks: 154.205.155.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43024 (0xa810)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 08:22:01 2024 GMT
Not After : May 11 08:22:01 2024 GMT
Subject: CN=660a6eac-f2e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:06:27:83:7a:b0:59:f7:74:ef:25:12:6e:aa:
61:a9:e0:b1:bc:d1:42:08:62:0c:84:72:a7:dc:42:
87:66:44:3b:60:68:aa:56:89:d4:90:da:11:a2:de:
b6:ea:77:8d:8a:63:c0:82:14:03:3e:ee:8d:01:9e:
e3:43:67:b1:95:48:b8:0f:e9:c5:b1:a9:fc:ce:ff:
fe:dc:8e:86:75:64:ac:47:e3:cf:66:5b:90:97:a9:
dc:86:1d:f4:3d:89:23:4a:32:17:d4:47:54:81:ca:
45:6a:78:3d:01:5a:06:f5:47:42:a2:4c:bc:94:1e:
aa:05:7f:a0:98:ec:ef:1a:38:7b:0d:2f:cb:84:01:
8b:ae:a7:a4:31:41:ca:a5:b6:88:5d:af:37:3a:eb:
3c:b0:cc:c7:fd:f1:54:94:6c:28:b8:c8:f9:bc:45:
52:42:c3:97:81:a3:60:78:eb:c9:99:32:ee:95:56:
4a:fb:32:b4:20:6b:d9:c8:84:cb:db:7c:c5:6a:8b:
2b:9e:bb:7c:e7:51:5f:e8:3b:bb:ec:46:1d:3d:53:
49:d3:4d:ff:d3:1d:0d:17:60:3f:24:1d:61:2d:ec:
66:83:ed:3a:63:2e:9a:d5:32:ac:91:f9:1e:e0:27:
13:51:00:49:2f:eb:5e:ec:83:6d:06:cd:6b:c4:41:
19:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:F5:13:12:5D:6A:FD:04:A7:F8:E0:33:3D:CA:79:38:9B:81:48:94
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EBAACF54F00011EE8C314490775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.155.0/24
Signature Algorithm: sha256WithRSAEncryption
16:e2:4d:a6:75:d7:b0:fb:d9:d9:cd:87:25:53:92:f7:32:09:
04:ae:13:e1:a6:f9:82:ee:fc:8d:bc:a3:b2:f0:69:47:53:1f:
92:95:aa:b6:46:e4:0d:0b:14:45:3d:a7:75:6d:be:33:74:44:
d9:10:69:5c:6d:ef:6c:c8:3b:9e:8f:a2:3c:95:5c:66:36:ff:
74:89:9d:bf:dc:fe:d5:18:f4:f3:1a:04:d4:48:ae:3f:13:f0:
f6:b0:51:bc:f4:b4:9a:18:e2:ee:18:53:73:26:2c:01:5e:f0:
5c:33:5f:fa:13:5a:1d:88:f7:6b:c6:30:b3:de:c2:5f:81:aa:
2b:60:8d:2d:39:b8:16:56:0a:0a:2d:7f:5e:1d:77:5d:22:f1:
30:ff:75:0f:e3:59:08:41:81:4f:d4:96:f6:e4:73:e2:10:b2:
61:58:66:59:8e:01:ce:96:53:9e:52:22:20:5d:2d:a6:a6:ce:
93:dd:43:1f:ac:2d:bf:49:46:15:55:ce:19:a3:d9:70:d1:8c:
35:84:a0:02:04:00:17:63:c9:19:a5:8b:9b:db:94:e2:b9:a9:
26:c3:26:f7:d1:9b:a0:1e:6d:6d:bc:7b:48:61:b1:bb:02:27:
fb:c0:55:8b:fd:ec:a8:15:72:2f:67:44:33:5b:35:0c:3a:e6:
be:52:0c:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:30:05 2024 by rpki-client on console-fra.rpki-client.org