Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2E77B1FC037B11EF8E45E944017001B1.roa
File: 2E77B1FC037B11EF8E45E944017001B1.roa (raw, json)
Hash identifier: BGnzd3kX2HkpIuhMZnyCU28ijywTWb2QtJs9N1sXPSI=
Subject key identifier: 36:B3:4C:72:9A:C1:51:07:4D:FA:55:1F:68:63:5B:6B:2D:BE:FE:27
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B11C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2E77B1FC037B11EF8E45E944017001B1.roa
Signing time: Fri 26 Apr 2024 03:15:07 +0000
ROA not before: Fri 26 Apr 2024 03:15:03 +0000
ROA not after: Sun 26 May 2024 03:15:03 +0000
asID: 62240
IP address blocks: 154.194.33.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45340 (0xb11c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 26 03:15:03 2024 GMT
Not After : May 26 03:15:03 2024 GMT
Subject: CN=662b1c3b-0bfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:72:1e:82:11:5d:5f:ae:77:77:f9:d3:cc:fc:
e9:54:92:7b:d5:a3:88:79:f3:d1:8f:3b:4f:28:75:
5e:2a:6b:24:10:ec:81:9f:86:df:9c:37:a3:1a:c7:
12:0b:1e:57:ec:bb:d6:30:55:c9:8b:62:03:98:f4:
ed:b1:17:b4:d8:6b:f4:0c:6a:ef:ab:34:8d:a7:17:
e2:a7:ad:06:98:56:bc:00:65:45:33:02:2e:0e:bd:
4a:e9:14:27:c7:2e:db:8c:fc:84:4f:73:c4:08:10:
cf:ab:7c:3a:91:03:ab:3a:c0:a8:32:78:78:a6:53:
e3:58:6e:b9:d5:67:55:0e:27:b5:ea:86:07:fb:4c:
0c:62:85:bc:4b:6e:f3:0c:b5:e6:55:0f:b9:b5:cc:
5e:84:38:28:f6:23:cf:64:52:a8:b4:39:c4:bc:49:
98:31:a9:8d:21:35:3c:7b:45:b1:10:7b:74:d0:b6:
94:40:15:aa:83:f2:89:e2:54:fa:97:5b:9e:db:c6:
32:5e:33:88:b9:1b:bf:db:08:c5:c4:13:29:5f:17:
1b:e2:27:46:16:aa:a5:c0:35:ae:08:54:a4:9f:78:
fc:2f:4b:a2:af:fc:83:89:bc:22:30:bb:52:91:65:
54:cf:0a:81:09:6f:2e:24:02:e8:98:1f:8c:cb:6c:
a7:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:B3:4C:72:9A:C1:51:07:4D:FA:55:1F:68:63:5B:6B:2D:BE:FE:27
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2E77B1FC037B11EF8E45E944017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.33.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:29:54:b2:19:42:4d:7c:fb:0e:a5:de:a0:e6:57:90:ee:72:
3e:76:2c:c4:17:0a:2d:da:cb:a5:ba:6b:f5:3c:0d:6a:83:2c:
3c:c6:66:ea:51:24:70:fb:6d:d4:50:75:bb:2d:ed:ff:e8:05:
b1:cb:50:a0:52:c3:25:31:9e:0d:93:f2:aa:14:91:11:99:7e:
17:5e:fa:f3:67:a3:86:7f:2c:ac:0a:fd:cc:c0:77:45:f8:d7:
1f:6c:b8:b9:f7:81:04:78:81:07:2d:3f:83:62:e5:1a:3a:d8:
8e:9a:b4:07:19:c1:d6:52:0e:7d:74:e6:60:19:59:8d:d6:aa:
f9:1d:cf:f0:f2:78:1f:88:f1:a9:f7:b7:6d:ce:27:34:2c:80:
ee:7d:bb:b8:de:69:29:b5:1d:58:11:be:6c:4b:36:66:8a:4b:
cc:22:0f:75:d1:2b:48:61:20:00:63:b8:96:5e:e5:58:ee:08:
0a:06:80:e3:1b:d7:0a:4c:ed:42:96:d0:8a:af:80:52:0d:d9:
f2:b6:c6:b5:47:86:00:b7:05:61:a1:15:94:d7:e6:e8:00:9a:
1d:e8:d9:8e:27:29:27:f7:bf:0a:10:79:fb:1c:05:4f:29:de:
4f:16:cd:fd:21:e3:6d:b7:c8:84:b5:38:a1:c0:ca:e4:42:6b:
7b:e1:04:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:19 2024 by rpki-client on console-ams.rpki-client.org