Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/05DC24740B4D11EF8058DAF5007001B1.roa
File: 05DC24740B4D11EF8058DAF5007001B1.roa (raw, json)
Hash identifier: j8eov02S7og5pZSXgmv3zRQctL/vvzGLwrxTcIxtEkg=
Subject key identifier: A9:8C:30:2A:63:87:8C:AA:4E:FC:8D:4B:80:DA:4C:E2:A1:94:F1:70
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B46E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/05DC24740B4D11EF8058DAF5007001B1.roa
Signing time: Mon 06 May 2024 02:04:51 +0000
ROA not before: Mon 06 May 2024 02:04:48 +0000
ROA not after: Tue 11 Jun 2024 02:04:48 +0000
asID: 138915
IP address blocks: 154.205.157.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46190 (0xb46e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 02:04:48 2024 GMT
Not After : Jun 11 02:04:48 2024 GMT
Subject: CN=66383ac3-2f99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d7:2d:7b:1c:b1:74:12:c5:18:cc:8b:56:50:
2d:69:e9:1a:9e:6f:70:cf:30:7b:ef:c4:2f:cc:87:
e8:24:7f:0e:4d:54:a9:e1:08:0c:37:b6:4f:e8:96:
a3:ba:6e:76:f4:8a:1d:f1:fe:90:03:1d:54:2a:b7:
37:ab:6b:ad:d2:c7:a3:c9:06:b7:38:8f:5b:09:a0:
ed:81:ed:36:be:6a:18:b4:59:e3:fa:a7:90:2c:31:
23:dc:5f:e1:a1:49:de:f8:c9:09:96:a1:6f:82:ab:
d2:47:ba:20:bb:d5:f2:5b:89:7d:35:21:c1:27:75:
6a:2c:fb:0b:c8:9c:38:f9:7b:4e:34:70:0d:6b:d5:
56:b7:ef:a3:3e:1b:a4:52:d8:2f:95:2f:3d:a9:45:
92:26:cf:ca:c0:9e:bd:dd:65:33:c4:af:7d:10:b6:
49:76:82:8f:2a:38:01:40:33:b9:6e:05:39:f1:90:
65:4e:0e:89:fc:02:0e:3b:89:ac:94:b8:bb:e7:75:
9e:43:3c:b4:fb:31:27:1d:eb:37:81:81:c6:9d:22:
b8:57:02:97:85:1a:81:d9:95:4b:83:ef:4a:00:4f:
40:02:60:7b:88:87:00:dc:b6:5e:88:18:33:e0:00:
a8:d8:aa:5e:1f:09:c5:bb:b8:f2:23:47:d9:a3:68:
e4:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:8C:30:2A:63:87:8C:AA:4E:FC:8D:4B:80:DA:4C:E2:A1:94:F1:70
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/05DC24740B4D11EF8058DAF5007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.157.0/24
Signature Algorithm: sha256WithRSAEncryption
49:36:ea:43:d5:60:83:a2:b8:3b:27:58:f7:45:19:81:96:46:
f3:73:41:60:b7:b9:04:02:d5:82:1b:08:42:1c:07:73:2f:e9:
a7:fe:30:40:27:62:c0:05:8a:ab:5e:6d:2c:4a:1c:c3:72:2f:
45:5d:04:87:34:8d:fa:a1:9e:f3:92:71:3f:38:4b:68:49:5c:
8b:8b:3a:dc:32:61:62:bd:ef:e7:b9:15:db:54:9f:50:7c:a8:
3c:ab:dd:60:02:3c:be:02:a8:72:1b:cc:58:2b:06:15:89:19:
5d:df:52:e8:78:12:ac:86:32:ef:f6:63:6e:dd:3b:c1:b7:1f:
69:ef:42:45:f0:3b:a4:dd:76:42:b0:93:98:bc:89:fc:2f:4c:
c5:a3:6c:d8:70:48:d9:4e:d4:e0:bc:bc:42:59:fb:c8:7c:c5:
84:be:2c:14:15:46:75:c7:d1:41:78:22:05:cf:28:13:16:70:
14:88:60:12:95:f8:6f:99:38:0a:28:7e:bb:8f:27:15:95:05:
89:9a:23:b0:b5:cc:bf:02:45:3d:14:69:59:1b:94:1b:e7:ae:
a9:82:14:d1:53:1f:de:06:af:ba:ce:0e:29:77:96:93:ee:dd:
f8:19:a6:5d:3b:ca:2b:8c:97:79:1a:7b:c8:bf:24:06:57:66:
7c:eb:73:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:10 2024 by rpki-client on console-fra.rpki-client.org