Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ED587C8A014D11EF90B64C05017001B1.roa
File: ED587C8A014D11EF90B64C05017001B1.roa (raw, json)
Hash identifier: BC6fzTlqBP37J58slPKRoerKFi7z0BlunpNv7+EA2Cs=
Subject key identifier: 9C:1A:7E:8E:37:2E:71:CA:FF:6A:2A:19:05:65:A9:4F:E3:9B:33:99
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AF36
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ED587C8A014D11EF90B64C05017001B1.roa
Signing time: Tue 23 Apr 2024 08:46:08 +0000
ROA not before: Tue 23 Apr 2024 08:46:05 +0000
ROA not after: Sat 11 May 2024 08:46:05 +0000
asID: 9009
IP address blocks: 154.92.124.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:04:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44854 (0xaf36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 08:46:05 2024 GMT
Not After : May 11 08:46:05 2024 GMT
Subject: CN=66277550-23b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d2:43:9b:c2:23:19:a1:f8:22:da:79:df:ab:
ec:d5:4b:73:7b:70:7c:c0:87:41:0e:d0:92:6f:a4:
55:ec:d4:9c:88:a9:3c:9f:e2:9e:a8:d4:b5:75:13:
22:78:8c:00:e7:e0:05:ab:db:33:73:08:c8:52:96:
4c:5a:88:ea:ab:c0:4c:3d:15:fd:74:aa:79:4a:4f:
3f:1f:23:8b:0a:97:f7:ff:da:7b:aa:49:a1:84:ce:
e4:ff:50:55:53:01:cd:c8:82:f4:f5:95:51:1e:1f:
7e:65:39:79:48:1c:80:69:b2:e8:7c:93:29:3f:f1:
5d:60:0c:21:35:33:0b:c8:96:47:4f:0a:1c:4b:09:
21:b6:28:cc:fd:15:c7:aa:41:24:95:24:d2:34:ae:
76:74:e6:b1:d7:a6:41:b2:d2:94:eb:12:bf:87:ca:
36:ca:6f:5b:7e:ef:6b:b1:2c:f8:a9:7b:24:ba:8c:
48:7f:d0:57:fd:92:d4:6b:54:63:f8:6c:c2:6f:df:
ce:9f:85:33:7f:9b:3d:37:7a:ca:4d:79:24:70:0d:
39:20:37:96:40:09:c1:14:96:3d:27:54:16:1f:f4:
4e:ec:b0:4f:8b:79:d2:9d:cf:41:cd:0f:f8:2d:4f:
85:d0:d9:31:89:7c:6d:4f:46:6c:61:df:76:43:d1:
28:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:1A:7E:8E:37:2E:71:CA:FF:6A:2A:19:05:65:A9:4F:E3:9B:33:99
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ED587C8A014D11EF90B64C05017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.124.0/24
Signature Algorithm: sha256WithRSAEncryption
79:13:a4:46:36:a5:2c:af:79:8e:53:26:b4:01:f5:ca:59:8b:
d0:5d:5c:c6:cc:e3:80:fa:8c:7f:5c:66:f9:58:1e:0e:57:76:
39:66:7f:f4:83:43:61:1a:75:7a:eb:87:dd:0e:d7:ca:83:34:
58:3c:0a:60:b5:72:98:1e:33:74:d3:80:5e:05:b8:d2:30:16:
4c:ed:84:8a:57:46:5f:62:78:35:c0:b5:47:fe:3e:e5:db:6c:
4f:ee:65:be:4a:e2:67:52:89:40:1b:da:c9:2e:96:bb:11:a2:
ec:66:85:7a:39:53:df:8a:fb:21:9f:36:46:11:5a:54:fa:84:
f5:2e:6e:dd:f1:99:3c:ba:33:ba:e7:d0:a2:0d:bc:72:5c:78:
bd:f3:70:ea:76:34:e2:1e:04:82:f5:5e:b9:4f:6c:64:90:31:
c2:b8:a4:4e:2e:83:4f:1a:9a:03:56:0c:fa:16:5f:90:fc:f3:
a4:48:b6:5d:ea:10:89:67:3c:b3:a3:18:a5:42:86:b0:cb:56:
08:c1:9b:10:d5:4c:5a:9e:27:92:d6:62:90:ab:66:22:13:1f:
19:c0:c2:7e:29:1f:59:92:fc:eb:a8:12:b9:71:7e:5f:d5:3e:
eb:55:70:71:f4:aa:3b:72:09:5d:55:ab:8b:02:07:6c:e6:02:
6b:f7:4f:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:01 2024 by rpki-client on console-fra.rpki-client.org