Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2DBC01DE0B5311EF9305622D017001B1.roa
File: 2DBC01DE0B5311EF9305622D017001B1.roa (raw, json)
Hash identifier: glL6Gy6tnHZa5xYQUuACMPXqQyxpPejvccjVTyRaQIc=
Subject key identifier: 37:A3:33:85:8A:31:58:C2:BF:B0:AE:ED:02:B2:7C:19:F4:1D:CE:78
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B4B8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2DBC01DE0B5311EF9305622D017001B1.roa
Signing time: Mon 06 May 2024 02:48:55 +0000
ROA not before: Mon 06 May 2024 02:48:52 +0000
ROA not after: Tue 11 Jun 2024 02:48:52 +0000
asID: 63139
IP address blocks: 154.203.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46264 (0xb4b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 02:48:52 2024 GMT
Not After : Jun 11 02:48:52 2024 GMT
Subject: CN=66384517-2689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ce:7b:8a:31:a7:78:73:f4:d5:b8:13:a3:c2:
56:31:5d:7e:e5:07:e0:13:d0:6a:26:11:ec:17:16:
6a:60:1d:c4:43:ff:0e:e3:83:47:f1:32:87:cc:4d:
a6:8e:af:9d:06:19:3c:95:42:26:51:1a:21:14:e5:
14:ab:d3:aa:75:a2:8a:e8:59:41:29:b8:d9:81:64:
09:28:3b:c5:28:6a:2e:64:9d:0d:8b:08:cc:22:06:
76:bd:e1:d0:9c:5d:00:20:a0:e8:3e:ff:45:a4:51:
bc:02:b9:c6:85:48:92:0b:7d:4a:b6:f3:97:ac:9e:
d4:bf:e3:f7:8d:b4:2a:bd:8d:ce:95:72:c5:64:c2:
b2:77:67:92:06:86:bc:24:50:3e:96:c0:2c:d4:86:
48:82:b9:d2:df:19:41:8b:d2:ea:71:c5:a7:08:a4:
80:54:12:a7:ec:23:42:28:a4:e7:9d:d3:aa:83:66:
fd:c5:d3:0e:5b:4c:f0:7b:2d:59:9a:f5:eb:b2:87:
21:ba:7d:03:55:e1:e1:7c:a7:ec:93:07:b8:78:1b:
3a:72:bf:bd:6e:5f:24:80:03:61:d2:f3:4a:d7:75:
e4:f4:2f:88:44:7b:2e:f5:96:f8:8d:86:c3:e1:26:
8c:d1:a6:b0:8c:1b:16:34:56:07:db:9d:a3:d7:68:
0f:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:A3:33:85:8A:31:58:C2:BF:B0:AE:ED:02:B2:7C:19:F4:1D:CE:78
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2DBC01DE0B5311EF9305622D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.180.0/24
Signature Algorithm: sha256WithRSAEncryption
45:5f:d1:6d:fd:db:2a:bb:73:ac:d9:f4:ca:b4:a2:ff:be:f9:
f2:ba:4c:5a:34:64:26:f4:be:7a:32:bd:4d:ac:2c:46:68:30:
d2:97:fe:e5:8b:75:64:e2:f9:5e:ba:1e:c7:89:f4:6d:a9:6a:
ce:9b:f1:03:29:7f:1a:d8:9f:8c:06:77:2e:6c:b2:34:f2:91:
1a:e8:6f:fd:b0:8d:42:3b:35:3b:74:06:3c:57:ee:8a:a8:54:
97:e2:86:88:28:89:39:ac:c1:01:01:5a:f3:ee:6f:b8:61:a3:
fe:11:c9:65:7f:27:4a:b0:c9:dd:dc:a2:45:c1:7b:42:c7:62:
c6:d1:5c:1a:18:32:54:e0:79:d0:9f:c8:8f:49:cb:9c:2a:03:
33:df:55:5a:fa:fd:43:42:f6:b0:8b:70:6a:d0:9f:1c:52:ba:
ba:fa:c9:e1:69:18:48:83:5b:e0:f1:e7:8a:66:4d:ed:40:43:
83:5a:cf:e5:c2:d3:d6:5c:c7:ff:eb:db:54:15:c6:65:50:28:
c0:87:98:d6:3d:d2:1f:eb:7d:fd:e5:58:bd:16:34:58:cb:59:
b8:f6:d6:45:94:4b:7b:be:7a:5d:cd:47:51:6d:09:02:ba:8b:
f5:12:ba:62:51:1f:32:bb:5a:de:4c:58:14:ad:94:ac:a7:74:
8d:15:95:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:13 2024 by rpki-client on console-fra.rpki-client.org