Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FD48AF8AF47C11EE966735A7775412E6.roa
File: FD48AF8AF47C11EE966735A7775412E6.roa (raw, json)
Hash identifier: clxnB/Bzjc3XMP9QtkAFUZoc2OO7eaGHWxk+AcIV5YM=
Subject key identifier: C8:7E:2D:96:B7:2A:5D:D9:6D:68:5F:14:21:5C:38:7E:07:94:00:29
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A988
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FD48AF8AF47C11EE966735A7775412E6.roa
Signing time: Sun 07 Apr 2024 01:20:16 +0000
ROA not before: Sun 07 Apr 2024 01:20:12 +0000
ROA not after: Mon 13 May 2024 01:20:12 +0000
asID: 138915
IP address blocks: 154.206.68.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43400 (0xa988)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 01:20:12 2024 GMT
Not After : May 13 01:20:12 2024 GMT
Subject: CN=6611f4d0-9c7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:23:02:82:95:54:26:14:7d:78:d3:b2:76:09:
44:8d:74:11:18:1e:ba:96:08:7a:71:fb:77:93:09:
40:4a:43:b2:f1:8f:d5:73:42:92:8b:27:44:f0:b6:
60:89:5e:9e:0b:88:1f:18:c9:cb:65:ce:bf:a8:55:
c3:33:cf:a4:34:80:32:2d:b4:67:31:ba:db:18:e2:
45:00:f5:ec:d7:32:e8:23:7e:c3:79:7e:b8:2a:a8:
0e:0b:b6:f6:f0:17:07:50:45:b1:f4:98:33:c5:fb:
a8:b5:74:f7:1c:16:65:c0:cc:5b:08:d0:dd:fd:6c:
e5:03:6e:82:94:80:5b:55:93:b7:a2:c4:6b:d0:c6:
fc:99:25:dc:e6:6c:93:f5:99:8c:82:f4:d7:72:a7:
79:5b:00:fe:41:a0:ad:db:22:d9:1c:49:37:62:d4:
cf:af:e6:88:83:c4:0f:41:03:70:72:57:37:cd:35:
60:1f:a1:fb:63:ac:9d:c0:de:3e:a4:71:89:24:09:
d9:6c:e2:84:fc:b6:d0:71:51:c0:69:9c:1e:df:8b:
d3:42:d1:48:af:ba:6a:58:7b:9d:ef:32:38:37:15:
1b:80:8c:c6:f7:88:d3:25:24:1a:7f:1d:3f:a8:37:
8f:f8:85:59:23:64:1e:9c:a4:7f:10:7e:c1:0c:98:
86:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:7E:2D:96:B7:2A:5D:D9:6D:68:5F:14:21:5C:38:7E:07:94:00:29
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FD48AF8AF47C11EE966735A7775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.68.0/23
Signature Algorithm: sha256WithRSAEncryption
47:8a:96:db:2b:c4:77:13:c0:40:d5:df:1d:51:30:0d:be:d2:
31:1d:c5:a5:b5:8b:d2:61:21:d0:46:24:19:36:d9:64:2c:32:
64:02:1d:0b:2b:cc:7e:5f:84:94:e4:0d:38:a1:62:21:64:d5:
28:64:75:28:99:56:88:5a:68:48:91:2f:e0:82:60:bc:59:b1:
21:a7:13:0a:3c:3a:85:8b:d6:85:f6:2b:f6:65:06:b5:07:61:
2b:70:04:d5:a1:b3:23:75:c3:4b:3b:ca:34:10:a7:5e:1a:24:
0a:ed:83:23:8d:a7:07:eb:20:fc:68:0b:0e:b3:aa:12:f1:c2:
5e:f2:5b:b6:e2:71:24:08:57:da:80:af:27:9d:0f:f9:bc:01:
78:0e:fb:3b:92:e2:74:1c:7f:6f:7f:db:2b:e6:68:2d:57:fe:
92:aa:94:82:24:cc:b5:2d:b6:02:27:86:0e:44:a7:de:fc:25:
29:4a:47:9f:a9:50:6d:05:91:a8:48:4f:15:5b:4f:1b:b2:b1:
c4:24:f4:cc:14:27:58:89:c2:d0:81:fb:43:83:25:b9:00:31:
6e:80:d2:7f:c2:3b:73:29:de:88:4a:99:d8:67:c1:41:3a:8d:
4b:a2:80:a6:92:82:21:e9:ef:78:e3:71:af:25:3e:e1:b8:cf:
ac:a2:59:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:30:09 2024 by rpki-client on console-fra.rpki-client.org