Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/217E76760B5411EFB0E2A833017001B1.roa
File: 217E76760B5411EFB0E2A833017001B1.roa (raw, json)
Hash identifier: pBDEPnSgoraZHB9iIR5L+FLe+Je8KsVPA6pJ+GDhgPY=
Subject key identifier: 68:E9:16:2D:B4:76:F0:72:78:7D:87:8D:8D:7D:CC:40:C9:E7:EE:D5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B4C4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/217E76760B5411EFB0E2A833017001B1.roa
Signing time: Mon 06 May 2024 02:55:44 +0000
ROA not before: Mon 06 May 2024 02:55:40 +0000
ROA not after: Tue 11 Jun 2024 02:55:40 +0000
asID: 63139
IP address blocks: 154.203.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46276 (0xb4c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 02:55:40 2024 GMT
Not After : Jun 11 02:55:40 2024 GMT
Subject: CN=663846b0-96be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:25:b4:2a:b4:fc:03:7e:55:aa:56:7d:cf:2f:
0d:13:ca:20:03:45:ea:7f:fa:73:65:0f:ec:be:ef:
71:5b:ea:98:d8:2e:68:8b:56:18:3e:94:52:f1:6c:
52:9a:d3:64:e8:82:94:cf:59:07:89:f4:27:b8:b9:
a3:fa:02:1e:db:d0:20:65:7b:55:a5:66:bb:8e:d7:
2d:75:3e:ab:a3:c3:6d:2e:62:dd:32:f9:b1:51:0b:
7b:91:c6:37:f5:0e:de:86:37:3a:e0:b5:a3:9e:ce:
37:03:96:40:c0:b3:5c:4d:e6:97:55:aa:f7:46:44:
c9:92:d5:bc:05:44:e2:2e:2d:7b:32:7a:18:6b:4b:
42:d5:a8:ec:f5:78:0d:77:06:24:17:dc:4e:66:94:
7a:14:2f:07:2a:49:da:2d:ae:d7:be:51:e5:f7:ad:
63:99:31:1e:6c:2b:d6:ec:af:f9:e8:e8:eb:d1:ad:
b3:a5:d8:aa:22:c6:02:2c:e4:90:38:01:4f:a6:31:
45:b7:c2:f8:d9:f3:52:63:04:c0:a1:b1:d9:70:bf:
c4:8f:e8:24:8d:c0:c1:ff:e2:1e:5f:da:74:d8:3b:
3b:1b:92:5a:89:4e:67:88:a8:8c:a6:d7:23:80:d4:
7b:35:db:e1:0d:53:bc:9b:1c:63:94:09:0d:44:42:
e2:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:E9:16:2D:B4:76:F0:72:78:7D:87:8D:8D:7D:CC:40:C9:E7:EE:D5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/217E76760B5411EFB0E2A833017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.175.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:dc:ee:e6:7b:57:34:ec:8a:4d:3d:20:53:b7:ac:2f:3f:96:
15:8b:92:97:86:2d:80:6f:28:fe:e4:ea:ab:20:ce:bc:cf:db:
f6:dc:3e:af:f4:66:c3:ad:2b:fb:08:13:66:fc:12:7b:87:e5:
fe:44:3c:da:6c:33:f1:a8:22:56:08:02:a9:b4:09:4d:bd:00:
e9:e8:42:d7:46:a2:52:34:fc:02:ca:cd:18:6e:5b:34:dd:04:
37:79:15:de:75:ad:c4:25:20:3a:67:d6:31:08:19:33:f0:bb:
af:cf:83:b6:e1:de:16:cf:68:51:90:c6:0c:34:fb:69:d3:d9:
c7:e3:1c:c4:09:1a:a7:3e:51:64:ac:84:b5:e0:93:a8:55:1b:
c1:6a:28:0f:42:03:57:fe:6a:dc:ad:96:af:e0:4f:ca:ee:c3:
eb:9d:2f:ef:e7:c4:5a:3c:19:2c:6f:78:31:1a:22:22:e7:2d:
6e:02:d9:58:51:17:cc:ad:13:50:65:7e:16:8f:89:03:bc:58:
a7:21:e8:ff:5f:69:31:69:dc:3c:59:52:27:ff:55:f4:b8:be:
e0:50:65:55:ce:1e:c9:e2:0f:cf:4f:1a:14:0e:ab:37:ed:d6:
44:4e:1c:2c:8c:d8:1d:d3:af:d8:b3:b3:89:8d:3a:35:af:24:
69:46:a6:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:12 2024 by rpki-client on console-fra.rpki-client.org