Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EBB38D8CE5C511EEBB3F1D87775412E6.roa
File: EBB38D8CE5C511EEBB3F1D87775412E6.roa (raw, json)
Hash identifier: Uqc00+JdklMmL2YmGhoUZGB/tgWE8PUWMg0U0PwyFEo=
Subject key identifier: 65:B0:78:C5:E7:3C:66:0F:94:C2:04:FF:D5:AC:B5:98:1E:B2:EA:78
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A310
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EBB38D8CE5C511EEBB3F1D87775412E6.roa
Signing time: Tue 19 Mar 2024 07:54:32 +0000
ROA not before: Tue 19 Mar 2024 07:54:29 +0000
ROA not after: Mon 22 Apr 2024 07:54:29 +0000
asID: 138997
IP address blocks: 154.91.138.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 22 Apr 2024 07:54:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41744 (0xa310)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 19 07:54:29 2024 GMT
Not After : Apr 22 07:54:29 2024 GMT
Subject: CN=65f944b8-471d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:9b:bb:64:7f:3e:67:c3:1b:36:4b:bf:0e:bb:
6f:08:60:10:0f:f3:6f:6b:b6:da:63:df:81:37:e8:
a4:1c:9b:a3:e4:04:a0:5c:a1:e2:84:9c:4d:f9:e3:
7e:3b:58:35:3b:bf:a1:1b:b9:57:ba:2a:57:b7:b1:
a3:82:d8:af:1d:6b:96:d4:ba:9b:e0:33:5f:e2:cc:
c9:45:1b:59:3f:9f:3e:13:85:88:84:e6:8c:07:2a:
b4:fb:e6:65:35:f0:95:10:f5:2f:44:2a:06:7a:b6:
f8:36:4a:77:a4:2f:b0:f5:fd:07:68:c3:24:e0:0f:
fd:e8:28:79:e0:4d:48:1e:1c:09:54:5d:8c:5c:8e:
5e:76:4a:b1:76:bb:40:46:ce:17:67:5b:c0:10:5c:
e5:76:e7:32:5c:87:e2:43:ef:b2:9f:f9:70:44:6f:
92:b5:48:61:e4:0b:89:c4:ab:b0:9b:5d:b1:be:47:
bb:51:99:48:4d:51:b3:20:34:05:a7:bf:7b:b5:45:
b3:7c:a5:fb:68:9f:f3:4a:14:ba:16:e4:51:ef:13:
58:9b:37:da:f2:8a:f5:b5:52:65:4c:b7:f1:44:49:
f2:4d:b6:8e:8b:75:48:90:d6:4b:e5:34:4d:53:af:
fa:be:82:c1:bf:eb:9e:58:8a:d6:ce:aa:15:75:cd:
ea:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:B0:78:C5:E7:3C:66:0F:94:C2:04:FF:D5:AC:B5:98:1E:B2:EA:78
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EBB38D8CE5C511EEBB3F1D87775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.138.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:94:ee:78:b2:3e:c0:14:e4:73:8d:83:0a:51:13:ac:18:91:
33:b8:69:49:f1:a5:c9:fc:fb:17:25:8d:43:ba:23:6f:2a:a1:
15:57:da:d2:ec:2c:92:06:43:df:2b:da:d7:9e:ca:45:75:86:
c4:43:6d:09:ee:dc:bb:de:77:2e:8c:92:7f:56:27:47:fd:9c:
eb:12:c1:5a:c7:54:21:49:61:0d:9c:66:c4:66:68:09:2b:53:
e1:49:8a:48:84:0f:03:e4:4f:33:d3:2e:94:10:b0:2c:09:cd:
c5:2e:2a:aa:d4:9a:20:15:87:89:44:89:f0:48:a9:c6:6d:66:
b6:37:0d:68:90:1a:9d:d3:ef:7d:0e:18:a4:d3:fd:b4:54:03:
be:f9:ab:af:2d:1b:36:04:04:0a:90:e7:9d:13:c7:eb:13:93:
06:70:7c:7b:53:fd:4a:b2:0f:1b:fc:0d:c0:c9:6d:8e:d8:87:
26:5e:20:e1:50:38:1e:28:aa:35:d3:57:3b:4d:8d:ce:c0:97:
40:6b:52:46:a2:46:74:3a:38:de:eb:0f:fb:c3:fd:b6:8d:a0:
e0:d3:a5:1f:8f:72:96:b1:14:c9:b1:24:f8:8d:f2:0c:f5:bd:
68:d2:cc:34:ce:57:aa:aa:bc:02:84:2d:85:58:0a:4b:0b:80:
e9:25:76:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:26 2024 by rpki-client on console-fra.rpki-client.org