Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/40EDE06A0B5D11EFAD2DDC00017001B1.roa
File: 40EDE06A0B5D11EFAD2DDC00017001B1.roa (raw, json)
Hash identifier: jLxvSsBJ/lMc+sE46LQvCVX1n9H3diGGbhhvMmLT6lc=
Subject key identifier: 17:2B:D5:83:16:D2:7D:32:58:15:80:A0:E4:F9:67:61:58:1B:C1:B3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B4F8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/40EDE06A0B5D11EFAD2DDC00017001B1.roa
Signing time: Mon 06 May 2024 04:01:02 +0000
ROA not before: Mon 06 May 2024 04:00:59 +0000
ROA not after: Tue 11 Jun 2024 04:00:59 +0000
asID: 63139
IP address blocks: 154.203.186.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46328 (0xb4f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 04:00:59 2024 GMT
Not After : Jun 11 04:00:59 2024 GMT
Subject: CN=663855fe-b39a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:70:32:14:41:5f:44:fc:da:51:19:0e:22:61:
d0:2c:ad:d8:e9:ec:c5:fc:b6:22:49:5e:04:34:7c:
e5:bf:89:dd:f9:12:08:e9:23:69:59:12:cf:48:c7:
83:0e:cc:aa:3b:2a:fb:02:7d:23:86:30:0e:20:ce:
75:14:86:8e:4c:0f:38:05:06:f7:72:70:7f:be:5b:
d6:d9:e0:e4:2d:2c:b5:c1:99:6e:e9:97:7b:56:4c:
4f:ee:21:44:11:d9:e1:63:87:ab:93:11:67:89:c9:
f4:90:a5:6c:d9:d7:c6:b1:f5:f8:94:1f:27:81:c8:
81:69:3f:b6:a2:92:5a:1a:18:04:ee:db:04:d1:78:
db:53:e6:82:a9:59:ee:e7:57:f6:ef:f3:35:d1:3c:
7e:ba:23:04:c4:f9:36:80:47:17:b9:cf:f7:9e:ab:
95:06:a0:7f:67:e4:46:dd:4a:09:c9:b5:66:e7:5a:
1a:54:e6:53:f9:a0:fc:e8:e4:2d:11:ff:48:ff:e3:
0a:9e:53:12:11:48:7b:26:ad:85:34:db:c4:4e:fb:
8b:de:3b:70:b7:4e:1d:60:1e:ec:84:a2:c9:f3:7e:
9b:cf:3b:29:38:6b:e4:f1:01:ae:6b:59:36:d0:09:
29:7c:10:0f:b7:f9:0c:15:31:f9:e7:bc:77:ee:c1:
7d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:2B:D5:83:16:D2:7D:32:58:15:80:A0:E4:F9:67:61:58:1B:C1:B3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/40EDE06A0B5D11EFAD2DDC00017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.186.0/24
Signature Algorithm: sha256WithRSAEncryption
90:0f:69:e4:c5:4e:16:a3:ba:14:79:6b:b9:ac:95:c8:ff:0b:
13:2f:75:3f:9e:a3:46:7f:6b:69:2d:01:e8:ad:3a:1e:6a:04:
1b:bf:21:b8:81:4b:a3:9b:22:31:9b:85:dd:80:f6:72:8b:aa:
c2:e8:f2:95:7c:90:e1:2d:fa:b2:ee:5d:aa:65:d5:5d:46:a9:
1e:93:0a:f6:eb:77:c2:64:7d:35:06:7e:8d:c1:84:eb:df:e7:
f2:bc:6e:15:85:2d:41:60:09:75:5d:58:74:9f:0c:5f:ec:f8:
3b:49:60:9d:0a:33:ee:0a:0b:d1:79:03:b8:fe:dd:d2:c6:06:
7c:c6:f0:80:f2:61:41:8b:ab:f5:3e:c6:be:e0:62:5f:4b:c5:
7b:1f:6d:7b:06:b7:cd:7f:cf:0c:61:1c:e5:cf:e4:bc:f1:ec:
f2:af:75:e6:d6:0c:c9:52:2a:9d:9a:2d:fb:0c:9b:3a:b5:53:
8e:42:7f:0d:5f:d4:0a:82:82:30:8a:e4:8d:56:47:b2:23:1f:
24:a7:ae:55:8c:bb:4d:27:4d:ef:3d:f7:8b:2d:d4:8a:b0:78:
86:1a:78:02:18:d0:86:9b:0f:e5:7c:98:cc:fa:ef:e8:69:71:
73:1c:98:99:6f:04:6c:98:a7:87:c5:5b:da:64:71:71:e6:6c:
7c:03:28:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:14 2024 by rpki-client on console-fra.rpki-client.org