Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/209D015C08FF11EFB7614C3D017001B1.roa
File: 209D015C08FF11EFB7614C3D017001B1.roa (raw, json)
Hash identifier: nOB1ssrsfFnOVIVof1k/NEnBFuQS1HH7MpqHTY75U+U=
Subject key identifier: 82:4F:D6:E8:6D:2A:35:F2:50:97:C0:5D:E4:E4:45:6E:F8:B6:96:19
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B417
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/209D015C08FF11EFB7614C3D017001B1.roa
Signing time: Fri 03 May 2024 03:42:13 +0000
ROA not before: Fri 03 May 2024 03:42:10 +0000
ROA not after: Sun 09 Jun 2024 03:42:10 +0000
asID: 211826
IP address blocks: 154.197.110.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46103 (0xb417)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 3 03:42:10 2024 GMT
Not After : Jun 9 03:42:10 2024 GMT
Subject: CN=66345d15-04e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:41:c2:f8:ba:45:b5:9c:3e:84:f4:0b:da:f2:
00:53:bb:bc:94:2b:fe:b4:16:1a:b6:d7:4c:3d:67:
dc:55:5c:8a:ae:3c:5f:bf:7d:2f:3b:cf:5d:d7:1d:
81:68:1e:70:f7:7b:19:af:09:0f:62:c9:23:44:f3:
77:06:0f:29:f9:41:4c:b5:c1:0a:f1:1d:b4:34:5b:
61:cb:a5:74:81:ae:30:95:bc:3f:cb:c0:57:42:a5:
e1:db:89:9b:c2:0a:68:c0:44:83:41:a1:38:0c:45:
5a:43:0c:b6:28:e7:3d:4c:bc:f0:54:c3:be:18:19:
05:06:a0:29:1e:9f:b8:9a:1f:89:13:22:f3:58:ab:
7b:c5:b5:0e:62:5d:4e:bc:b0:d6:fe:e5:fa:02:5b:
74:af:c5:a8:c8:d6:a8:bf:54:a7:e8:39:95:60:ed:
28:76:3b:64:f8:23:9a:ba:8a:2d:cb:cf:8f:24:53:
7f:3f:08:8c:eb:51:34:7f:ca:60:96:6e:83:a6:f2:
84:61:19:0e:13:0a:e8:15:6a:d7:89:72:a8:ce:1d:
e2:10:0c:7e:e0:a0:94:c0:36:80:e8:9a:85:ff:a9:
17:e3:51:7f:a7:41:63:94:58:cf:75:62:49:5a:ca:
f0:3e:b5:73:81:04:16:04:bb:c6:1c:49:aa:5a:69:
87:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:4F:D6:E8:6D:2A:35:F2:50:97:C0:5D:E4:E4:45:6E:F8:B6:96:19
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/209D015C08FF11EFB7614C3D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.110.0/24
Signature Algorithm: sha256WithRSAEncryption
89:0c:d9:66:bb:c6:a5:5f:8f:c2:ce:9d:ec:b7:44:7d:f7:3a:
a9:a0:78:ae:a3:eb:45:ef:e4:22:ac:71:bc:d0:34:25:6b:4e:
1e:51:7b:57:19:2d:52:de:c1:9c:de:ca:8a:d1:19:8a:28:45:
df:5d:75:55:dc:f3:92:20:3f:0f:6c:98:f4:a4:18:84:7e:5a:
9d:55:49:3c:a4:ea:f4:e6:9e:fa:4c:ef:17:bd:2d:41:8f:66:
5c:c6:3b:eb:75:92:78:7e:4f:a3:c8:0b:ee:ae:da:6f:4c:48:
b5:80:f5:3c:91:0d:4a:df:02:e1:68:24:40:a7:75:e7:d9:c9:
4d:b5:74:ff:ef:0c:cf:8c:84:ca:89:b1:90:eb:92:f9:29:ec:
b8:46:4a:44:60:5f:4a:fa:0a:d7:4b:65:7e:9d:e8:bb:1a:91:
fc:71:b6:42:f8:fb:91:cc:54:30:a3:93:48:3f:46:d4:a1:4c:
53:66:b7:ca:ea:55:63:ea:ef:94:28:5d:ab:56:f5:0b:bd:f7:
39:e3:c1:b4:ff:7b:4c:3b:a6:ce:7a:fd:2f:3a:92:9c:e1:1a:
26:ac:12:09:e4:4e:07:4a:28:71:ad:12:14:d9:55:ea:0d:d1:
60:a7:cc:87:bc:20:17:c0:11:ac:53:84:98:6b:d4:42:10:47:
18:4c:55:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:12 2024 by rpki-client on console-fra.rpki-client.org