Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0AEBB6A61E5211EF954B14067DDC24C2.roa
File: 0AEBB6A61E5211EF954B14067DDC24C2.roa (raw, json)
Hash identifier: dfrIPbkGu22yKoyqL1P6HzjCjzxjfg7WVMIlVEjKkj0=
Subject key identifier: A1:75:32:02:8E:1A:E4:0E:93:8A:48:C1:2D:C5:63:46:72:AE:2D:3B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: BBF4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0AEBB6A61E5211EF954B14067DDC24C2.roa
Signing time: Thu 30 May 2024 06:58:39 +0000
ROA not before: Thu 30 May 2024 06:58:36 +0000
ROA not after: Mon 01 Jul 2024 06:58:36 +0000
asID: 44559
IP address blocks: 154.209.152.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 28 Jun 2024 06:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48116 (0xbbf4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 30 06:58:36 2024 GMT
Not After : Jul 1 06:58:36 2024 GMT
Subject: CN=6658239f-b583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:af:d1:8c:4d:8e:e7:3f:9d:ee:fc:65:d2:eb:
0b:ef:09:00:e3:e3:1f:20:c7:c2:e0:b2:91:25:31:
3f:fb:b8:d5:01:72:0f:ae:ea:d2:5d:1c:09:aa:47:
74:c6:9f:b6:74:78:24:d8:e7:94:97:6d:d6:44:8c:
57:d9:f4:5e:4f:0e:99:14:3f:42:20:47:55:65:2c:
05:1b:11:dc:bc:ef:91:9c:f3:d2:b8:bb:22:a5:d9:
0f:4b:b6:15:3b:60:82:3f:33:fd:79:45:60:e2:20:
5d:78:07:90:6a:3c:66:52:3b:e8:4d:ea:c4:80:cc:
c3:a0:40:47:4a:e4:02:7a:ad:bc:8c:40:b9:b2:5b:
14:64:01:03:e4:e4:27:1b:e8:c4:35:10:24:2a:e6:
34:e1:51:60:6e:94:4b:9f:be:a4:d3:e6:a3:ae:9f:
bb:51:fd:08:c2:7a:8a:35:fa:53:89:9c:9b:f5:38:
5a:0c:26:74:a6:00:60:fb:4a:5d:98:c0:3d:0e:41:
17:13:e9:20:65:d3:f1:73:cb:b7:c6:e0:60:10:08:
90:42:69:1b:e2:61:ca:09:90:7b:82:d1:90:c6:f1:
9a:bd:56:25:e4:46:8b:9c:fc:f6:0c:64:33:e4:2f:
b6:95:ed:b9:c5:f2:04:68:30:e8:35:3a:eb:12:1f:
3a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:75:32:02:8E:1A:E4:0E:93:8A:48:C1:2D:C5:63:46:72:AE:2D:3B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0AEBB6A61E5211EF954B14067DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.152.0/21
Signature Algorithm: sha256WithRSAEncryption
7d:48:38:1f:62:8e:11:fa:9b:e8:1e:84:bc:c6:89:80:51:3f:
60:66:d4:ae:9e:47:6f:97:62:47:75:12:71:f6:7d:05:43:a0:
01:9c:a8:c3:1f:a6:b8:ec:c7:eb:ee:b1:23:59:54:c2:6a:5c:
57:09:2a:56:a4:07:39:e3:78:f0:10:04:91:19:d6:ba:0e:25:
10:6f:77:82:65:7c:c4:cb:fe:b8:6e:7f:b4:38:79:b3:aa:0b:
29:18:3e:95:4c:7e:b8:3a:ca:bc:ed:40:0f:1b:ab:87:bb:3c:
53:1f:c4:b2:9a:bf:24:ea:87:00:14:e9:fc:f1:ad:49:d0:3e:
3e:40:17:86:6f:3a:7d:bb:7d:2c:ce:a3:55:4d:8f:48:4c:26:
06:e9:c3:c1:84:e8:5c:e0:d7:53:eb:3c:3d:d2:cc:1f:1e:cf:
e5:77:54:fc:2c:37:a5:a9:2b:51:07:14:0e:53:6e:4d:12:e1:
39:ef:32:2a:bb:e0:5a:2f:29:17:65:31:1b:38:b1:74:dc:2f:
46:21:97:a3:f0:9a:06:af:6a:01:59:a7:09:22:67:38:03:69:
9b:70:b1:8e:a5:a6:bd:12:b4:d3:4d:57:a9:9d:08:e7:c9:02:
ed:cf:05:c1:19:f9:64:3e:6a:8e:fa:9a:79:d7:f6:63:2f:aa:
9c:dc:42:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 08:13:19 2024 by rpki-client on console-ams.rpki-client.org