Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2863D5B2061311EFAFD7016E017001B1.roa
File: 2863D5B2061311EFAFD7016E017001B1.roa (raw, json)
Hash identifier: a/cxeQ/8gCBG7gy1jXS8Qs+krEjEj3S6qs3MvGVR/wQ=
Subject key identifier: BF:DF:98:5E:3B:88:7C:50:59:F2:98:3A:DB:F9:EB:20:81:7E:CF:FF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B250
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2863D5B2061311EFAFD7016E017001B1.roa
Signing time: Mon 29 Apr 2024 10:28:02 +0000
ROA not before: Mon 29 Apr 2024 10:27:59 +0000
ROA not after: Fri 07 Jun 2024 10:27:59 +0000
asID: 138915
IP address blocks: 154.223.76.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45648 (0xb250)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 10:27:59 2024 GMT
Not After : Jun 7 10:27:59 2024 GMT
Subject: CN=662f7632-d32c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d0:56:58:d4:25:6c:9e:19:d9:90:77:18:2a:
a1:3d:7d:97:58:bc:b5:1f:39:61:b6:6f:a6:cd:42:
b4:62:2c:21:a8:b1:ae:f6:68:c2:19:bc:91:87:51:
95:be:8b:7a:5a:da:d2:df:5c:63:f6:84:1e:bd:34:
a3:07:5c:5b:f2:3e:44:9c:ea:80:49:04:80:fc:5e:
2f:00:dd:a5:20:4c:ef:e7:1e:7d:f0:88:b4:97:c9:
ec:32:fd:37:a0:e0:2b:7f:9b:d2:0b:73:bc:bd:e4:
fc:19:73:6b:8c:fb:14:db:a6:07:28:e4:d9:61:82:
17:ca:20:6d:f5:ac:c5:4b:1c:57:82:a9:67:08:04:
46:7f:14:c4:f1:e5:a6:fd:d0:97:9d:2b:c8:92:36:
af:fe:0a:5b:e0:be:90:42:d8:49:e5:2b:87:9f:46:
9a:0f:39:6b:96:54:6d:d7:90:31:63:52:70:e0:54:
57:ee:69:e9:30:97:84:ca:dc:67:2b:a0:2c:4a:ec:
20:a7:b7:6c:c1:e9:6f:4a:01:ae:90:06:9f:bf:f8:
45:05:0d:06:99:b4:5d:de:84:f5:4e:bd:1a:da:e0:
0d:e1:a9:e6:88:90:27:de:62:aa:a9:52:3d:9c:33:
dd:a4:c9:bc:ee:18:88:e5:b8:9f:04:b1:2f:9c:0b:
18:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:DF:98:5E:3B:88:7C:50:59:F2:98:3A:DB:F9:EB:20:81:7E:CF:FF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2863D5B2061311EFAFD7016E017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.76.0/23
Signature Algorithm: sha256WithRSAEncryption
a1:86:df:73:cc:9b:b1:ef:6a:42:23:08:91:4d:a7:fb:0c:c6:
43:0e:5f:90:c4:de:d3:4d:19:64:a3:9b:0f:42:4a:19:59:19:
aa:75:24:76:c3:a1:13:15:2a:b1:48:14:a3:b7:40:9a:af:fb:
21:bf:77:54:e6:d8:36:76:dd:a4:79:25:35:18:bb:ef:b0:40:
c2:9c:8e:c0:57:72:be:f2:40:87:f4:7c:80:5d:5f:f5:de:9a:
83:45:54:52:e0:d7:31:e2:4b:b0:b3:2e:14:04:cb:c1:7e:a7:
77:e5:42:08:7b:ee:9c:55:d9:8f:4d:a8:4c:25:34:29:26:3c:
9e:3d:c4:ee:d8:61:fd:94:f8:77:0f:9c:35:94:ed:18:44:bf:
48:62:ec:08:1e:c1:d2:9f:fb:94:6f:52:1f:b5:90:ec:d5:65:
4f:70:3d:2a:cf:c9:0f:eb:45:3e:6e:8d:ed:80:18:fb:17:6a:
5f:d2:3b:ec:db:da:04:29:ea:d2:5c:5d:6b:f1:2e:b0:e9:43:
e9:fe:26:e0:bb:d8:da:23:ed:1c:e6:2a:61:b6:be:4b:ee:46:
85:22:04:c6:ca:58:ee:c5:53:aa:0d:d2:5d:25:f3:ee:63:6f:
5b:69:b2:b0:58:f0:8a:05:1c:db:30:cd:d0:21:d2:a1:88:a2:
5c:81:be:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 08:15:16 2024 by rpki-client on console-ams.rpki-client.org