Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/338181280B5011EFA9B03D11017001B1.roa
File: 338181280B5011EFA9B03D11017001B1.roa (raw, json)
Hash identifier: gGTYbSf0YEssSW2rxzHZr1kWBDbtOr/VMmWKsTgKADE=
Subject key identifier: 3A:E1:5C:8D:DE:90:90:F0:B7:2D:78:8F:26:A1:33:70:8F:84:66:F6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B494
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/338181280B5011EFA9B03D11017001B1.roa
Signing time: Mon 06 May 2024 02:27:36 +0000
ROA not before: Mon 06 May 2024 02:27:33 +0000
ROA not after: Tue 11 Jun 2024 02:27:33 +0000
asID: 138915
IP address blocks: 154.205.134.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46228 (0xb494)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 02:27:33 2024 GMT
Not After : Jun 11 02:27:33 2024 GMT
Subject: CN=66384018-3326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ed:48:c0:e2:96:14:43:a6:d8:39:3c:30:7a:
60:d2:2c:38:2a:15:97:03:1f:ce:60:f5:3c:57:7b:
8d:f6:1e:28:25:99:1c:c8:f5:2d:c6:ba:79:8a:94:
54:e0:49:06:80:7f:82:87:01:d4:5d:17:bf:70:41:
3c:73:46:d4:57:e8:3a:4c:5c:c9:b9:d9:64:5d:ab:
fc:da:bc:3c:2f:f8:37:11:51:8a:a6:03:e8:57:68:
f4:58:7e:8e:14:53:74:ec:aa:b9:a7:23:75:e3:6f:
45:ea:3c:59:ec:66:35:6c:e0:6a:64:16:99:70:3f:
fd:52:4b:43:7a:97:a2:87:ce:7f:c5:d4:5f:9f:db:
79:f2:c5:12:80:45:7a:4d:7f:87:71:77:b7:d1:17:
89:8f:25:be:c5:e6:04:9b:b4:44:a3:b7:8a:6f:1a:
03:de:da:93:89:05:60:9c:3e:99:48:53:6c:2e:cb:
89:11:61:f2:50:26:74:b1:e4:cb:c4:9a:48:d1:1e:
6b:76:36:57:6d:f5:53:f9:69:7a:ed:be:c7:36:fc:
c0:77:50:da:23:4f:b6:2f:e7:4a:37:d8:de:ed:b5:
b3:08:48:77:3f:4f:ca:cf:63:b7:9f:b9:6a:4c:66:
c0:6c:f5:05:1d:e3:84:68:d3:33:af:b5:cc:d1:bc:
46:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:E1:5C:8D:DE:90:90:F0:B7:2D:78:8F:26:A1:33:70:8F:84:66:F6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/338181280B5011EFA9B03D11017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.134.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:c0:de:18:94:39:99:88:2a:36:f4:4e:45:d8:46:ea:6b:fe:
df:3a:85:84:19:8b:3b:3f:12:36:03:18:2b:8d:df:bc:9d:40:
22:74:0d:26:1a:eb:24:43:af:24:8a:44:c1:b0:d3:63:ca:68:
c2:9c:95:d2:d2:b6:07:dd:92:f0:69:64:48:40:55:97:6d:1b:
6b:46:21:e1:7e:37:17:c6:dc:c3:ed:fe:39:ef:64:29:85:b5:
1c:05:f1:cc:5f:bf:48:e2:17:95:31:32:f8:25:31:e4:09:23:
d0:a5:39:f2:d2:7b:2d:b9:29:1e:cb:71:47:51:e4:a3:38:54:
6a:38:53:46:cf:c9:fd:1b:af:cd:9a:d4:22:3d:80:2e:da:b5:
02:0b:50:05:26:2c:ba:b2:ad:dd:42:bd:5c:de:6a:8c:0e:cf:
2d:32:11:2c:ca:12:68:c5:70:2a:59:17:29:77:5d:d6:56:df:
34:7b:37:2a:c2:5f:ea:b4:0e:3a:aa:cc:b5:0c:ed:97:fe:04:
d2:09:fc:3d:e0:0b:e7:7b:c1:fd:65:7c:8d:cb:0b:cb:8b:5d:
65:c8:a5:fe:8e:7b:67:c3:b3:be:34:ae:9d:e6:c0:17:99:25:
07:74:48:f1:2a:e6:73:d2:10:98:c7:47:93:b3:18:42:e7:f7:
96:fc:52:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:20 2024 by rpki-client on console-ams.rpki-client.org