Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FDA64478F00911EE8DFF2458775412E6.roa
File: FDA64478F00911EE8DFF2458775412E6.roa (raw, json)
Hash identifier: LVS+N23tHtbLlfA3x68rG4IpEDmM0eFZMHrkXnJ1LBM=
Subject key identifier: 1B:2A:F4:24:99:0C:13:4C:B9:3B:9E:63:18:72:DC:69:6A:DC:EC:8D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A836
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FDA64478F00911EE8DFF2458775412E6.roa
Signing time: Mon 01 Apr 2024 09:27:00 +0000
ROA not before: Mon 01 Apr 2024 09:26:56 +0000
ROA not after: Sat 11 May 2024 09:26:56 +0000
asID: 55320
IP address blocks: 154.205.140.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43062 (0xa836)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 09:26:56 2024 GMT
Not After : May 11 09:26:56 2024 GMT
Subject: CN=660a7de4-0cb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:61:12:95:3a:46:2c:28:86:91:f4:bf:c7:03:
7c:6a:1d:6e:f1:c6:e1:ab:79:cf:1b:3a:f1:cc:7f:
06:3f:ce:bf:e3:7d:5c:a8:33:ff:22:85:e0:dc:b1:
71:9f:31:0f:59:93:e4:73:e4:a4:1e:22:4a:dc:b6:
e8:af:29:cd:64:0d:33:fa:a7:1b:0b:17:b7:23:45:
f7:dc:fe:67:ba:c6:e5:cd:88:65:f1:3e:fe:28:1d:
8a:f7:4c:28:1b:fb:35:37:95:d6:8f:cf:59:89:3a:
fb:09:7a:d4:4b:08:75:5b:54:7d:0f:1c:2c:f6:cb:
7a:75:36:19:17:5a:85:0f:8c:48:65:f4:0c:a0:15:
a9:2b:f8:a5:66:0d:fb:ed:02:ae:8c:3e:cb:46:42:
4b:37:ec:53:57:4c:11:54:53:26:79:e4:53:1d:d1:
33:ef:24:ad:3e:a6:70:bc:c7:00:22:c9:f7:1b:37:
79:a9:19:08:b0:99:90:ff:93:2c:cb:ad:38:cc:60:
15:6d:5c:26:87:de:90:b2:d7:5f:0a:bc:d7:aa:2a:
74:c0:45:5e:f6:52:d0:21:3d:69:a4:78:e5:fe:73:
88:18:46:7c:0d:46:0f:89:72:79:79:b4:49:39:4e:
d6:ed:14:b6:1b:9c:37:c1:90:f2:64:01:53:a1:38:
a6:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:2A:F4:24:99:0C:13:4C:B9:3B:9E:63:18:72:DC:69:6A:DC:EC:8D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FDA64478F00911EE8DFF2458775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.140.0/24
Signature Algorithm: sha256WithRSAEncryption
22:81:37:e2:5f:ab:c7:df:35:9e:6a:10:b1:4d:8e:ee:e9:75:
21:05:0e:0b:cf:76:01:e6:65:d5:d7:b3:a0:47:d5:ad:8c:af:
26:63:b4:37:d3:70:2c:46:97:ee:11:42:13:8f:9f:27:19:7a:
8b:b3:78:1e:5e:bf:fc:93:48:10:c6:4a:59:bc:70:85:72:b4:
df:06:68:c9:ad:93:18:70:73:76:26:5b:76:21:6f:6c:0e:b2:
ff:67:b8:81:57:d6:12:7e:f8:ab:0a:d5:45:03:7e:db:0a:ce:
f9:c1:dd:1b:44:f7:f1:46:3a:da:58:9d:cc:83:89:73:b7:2b:
70:ac:64:79:a6:b2:2c:c2:51:f9:9d:2f:a9:4a:32:ca:10:62:
72:d1:72:4d:a2:36:3b:ae:45:ce:45:13:28:ca:31:6d:46:6c:
ce:fa:3b:30:42:6b:12:36:20:1e:2e:f4:05:a9:92:ca:15:91:
04:01:fd:8a:fa:43:17:9a:f8:ad:ab:59:56:80:f7:92:5b:37:
8b:e3:1d:81:43:39:af:ff:5c:fc:86:82:d4:07:55:7a:10:54:
5f:09:fc:6c:79:60:39:c8:19:66:81:52:6d:59:ef:4e:2c:25:
f1:f2:c6:18:1a:8d:c1:ae:ad:99:c5:13:48:92:f2:49:d9:82:
8c:ed:0d:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:44 2024 by rpki-client on console-fra.rpki-client.org