Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1B188F14FE1711EE92958F52017001B1.roa
File: 1B188F14FE1711EE92958F52017001B1.roa (raw, json)
Hash identifier: Ux/4x+jl2xScSZnZWUH78vKnUlePgDZBMM9T+Xw48dQ=
Subject key identifier: BD:4C:B3:83:23:77:4B:AB:35:29:87:18:2A:09:5C:1D:76:46:9F:6E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AE36
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1B188F14FE1711EE92958F52017001B1.roa
Signing time: Fri 19 Apr 2024 06:36:09 +0000
ROA not before: Fri 19 Apr 2024 06:36:03 +0000
ROA not after: Tue 21 May 2024 06:36:03 +0000
asID: 174
IP address blocks: 154.194.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:58:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44598 (0xae36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 19 06:36:03 2024 GMT
Not After : May 21 06:36:03 2024 GMT
Subject: CN=662210d9-bdd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:97:82:87:d1:c3:4f:63:f2:4b:b4:1f:fb:21:
65:88:4b:c0:91:ea:af:f4:52:cf:10:a3:75:c1:b9:
c3:9a:a7:3e:79:82:0b:66:c5:de:b4:d2:3b:2e:ea:
d0:58:b6:b0:19:4c:04:67:87:3f:c6:67:cb:db:ad:
8e:7a:f1:ee:ef:94:10:3b:72:a4:7a:f3:34:28:53:
74:d4:13:ee:76:94:a6:28:c3:05:3b:66:08:7c:1b:
9d:6a:7a:04:d1:01:05:5a:5e:11:16:65:ee:a4:b4:
1b:12:c5:df:11:af:1c:26:bf:2c:5d:b8:3c:c1:a5:
c1:4f:f1:49:80:0d:ff:dc:74:38:bd:07:c0:b4:4b:
08:e4:87:3f:2f:e0:87:e0:a8:83:18:0a:26:e7:84:
3a:e2:03:e3:bc:3b:be:d7:21:fb:ce:45:6d:a3:b7:
ef:69:ad:5b:81:1c:ca:83:5b:5d:8f:90:8a:60:f5:
b1:53:86:ec:54:e6:6d:26:e6:b1:3f:ca:a6:07:61:
68:2c:12:33:6c:35:29:12:93:da:54:17:ae:88:02:
57:94:ee:5f:3d:75:02:1c:1f:de:52:f7:c0:f4:a1:
21:0f:90:81:41:f5:5e:69:7e:70:34:7a:ef:bc:83:
21:8a:91:27:d7:70:42:31:8a:29:a7:fe:fa:06:e7:
c3:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:4C:B3:83:23:77:4B:AB:35:29:87:18:2A:09:5C:1D:76:46:9F:6E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1B188F14FE1711EE92958F52017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.58.0/24
Signature Algorithm: sha256WithRSAEncryption
05:06:26:bb:5b:2d:70:66:fe:5c:fd:8f:0e:c2:9d:3c:c7:18:
a0:fe:4b:27:6e:98:2d:98:b0:62:5e:52:af:3a:31:7b:58:de:
67:9c:2a:ce:8e:54:93:89:d1:8f:aa:3d:07:1f:80:97:c5:a0:
b8:f4:2b:48:5e:5f:1c:fb:15:d9:a5:d0:24:69:7c:18:d5:7e:
73:67:01:b2:08:c3:a2:6b:22:4c:a3:6f:8d:85:50:83:f2:a7:
bd:cf:6e:41:55:f2:81:bd:be:73:8a:52:b5:56:55:08:81:48:
f2:35:45:78:61:4d:cd:1f:07:76:ff:d7:98:be:17:3a:fb:a8:
79:04:35:96:26:f9:26:5b:d0:0a:ca:49:23:50:75:c1:ce:59:
b5:82:66:76:e6:4e:00:51:e0:c0:a4:70:b8:70:7a:3c:2b:42:
06:ea:94:eb:08:af:25:87:f1:d9:9a:86:17:bc:5a:bc:a0:1c:
1f:c1:fa:77:35:1f:25:4f:9c:99:19:fe:fc:01:07:4b:a7:41:
dd:ee:e9:24:69:9d:aa:fd:8f:20:f7:9d:8a:e8:f5:19:ed:d2:
5e:c9:42:e4:ef:00:78:05:21:89:18:84:5b:84:b8:0e:f5:7b:
bb:be:c0:62:4d:c3:2e:7f:da:d3:89:42:a9:2d:d4:97:76:86:
e6:52:aa:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 17:17:58 2024 by rpki-client on console-ams.rpki-client.org