Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2718546202DA11EFB644E524017001B1.roa
File: 2718546202DA11EFB644E524017001B1.roa (raw, json)
Hash identifier: w0vm1Ln1lX1XIb/d/2OGJCstzrVV5m71Vt/fS2cmTqU=
Subject key identifier: D1:F7:88:A2:1B:12:D8:26:DE:ED:53:01:CB:09:AA:B6:9C:12:87:3C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B049
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2718546202DA11EFB644E524017001B1.roa
Signing time: Thu 25 Apr 2024 08:02:25 +0000
ROA not before: Thu 25 Apr 2024 08:02:22 +0000
ROA not after: Sun 02 Feb 2025 08:02:22 +0000
asID: 132839
IP address blocks: 154.216.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45129 (0xb049)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 25 08:02:22 2024 GMT
Not After : Feb 2 08:02:22 2025 GMT
Subject: CN=662a0e11-06d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:fd:57:04:34:c0:3e:68:06:06:18:3b:44:55:
7d:53:d6:92:d5:0f:50:1c:c3:e7:76:56:1a:53:b3:
25:33:77:81:82:47:8f:82:cd:b8:cd:da:96:02:3c:
88:3a:2e:44:59:7d:55:07:62:f1:32:b0:be:2e:89:
13:d3:e6:09:47:a8:8b:a6:d2:79:33:6d:98:5b:d9:
6e:57:54:a6:c3:58:45:91:86:37:87:5b:ac:57:7a:
b8:1e:27:74:ad:94:1d:75:82:f3:38:f1:47:f5:14:
f5:e2:b1:2b:37:e9:d1:52:9f:7d:51:54:3f:4e:98:
36:45:06:57:59:17:74:cb:bf:49:5c:92:1a:12:67:
77:f1:1e:3f:07:65:69:5b:b3:ea:46:2f:fc:99:41:
5b:c4:6c:ea:02:a5:14:b8:2d:54:b6:f9:60:8d:9e:
a5:89:ae:c7:01:77:28:45:4c:54:b1:25:a4:39:f9:
ed:75:77:88:0e:64:77:52:93:12:30:99:f2:45:00:
bf:d1:59:4a:8c:4b:56:e2:49:62:62:4a:5b:cb:1b:
09:c6:19:d6:ea:7e:f5:d1:3c:80:82:2c:08:de:3b:
57:52:f1:43:cf:3a:7e:74:1e:83:83:44:d3:df:e1:
ad:cc:ca:24:56:60:f8:55:c6:c7:72:d0:a2:df:42:
3a:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:F7:88:A2:1B:12:D8:26:DE:ED:53:01:CB:09:AA:B6:9C:12:87:3C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2718546202DA11EFB644E524017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.64.0/18
Signature Algorithm: sha256WithRSAEncryption
97:93:dd:fc:8f:c5:50:7f:36:63:b9:5e:c6:04:04:9e:63:a8:
87:87:20:01:50:2c:35:27:32:94:a3:27:11:28:83:c2:a0:af:
bc:8a:f1:f3:ab:e9:04:01:57:e7:3a:33:f9:ab:2d:9d:d6:ca:
34:69:b8:13:9b:68:ac:55:fa:84:a1:86:3f:99:94:86:ec:13:
f8:03:38:71:9b:b5:d2:47:3c:13:8b:4b:fb:9a:19:8d:01:50:
89:e6:10:45:81:c2:8b:a7:22:8d:d2:43:45:c7:e5:34:b4:5b:
19:d6:f3:49:29:00:0c:b8:8a:6e:51:c2:f4:0c:77:cd:d1:b7:
34:b3:b0:bb:af:42:2d:c9:c1:8b:e7:8d:06:71:02:d2:46:0b:
a1:f6:71:4c:62:a7:00:d1:5d:e8:ee:d3:9d:77:0a:32:a4:de:
2d:51:80:4c:85:8b:6c:ac:67:65:ba:e4:23:b1:a4:cb:d2:91:
e6:cb:8d:d8:f7:60:09:89:72:e5:89:92:23:51:c4:b2:c0:c8:
33:07:92:99:0d:5d:7b:b8:63:67:29:42:51:e2:9a:f9:cd:83:
aa:b1:fd:c5:c4:1a:f7:64:9f:cc:3c:c5:6f:03:3e:7e:97:ec:
36:4c:46:87:3d:46:0a:11:20:a5:0e:3b:96:db:c9:96:f2:37:
77:11:2a:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 09:10:00 2024 by rpki-client on console-fra.rpki-client.org