Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4287C7C00B4D11EF98381EF7007001B1.roa
File: 4287C7C00B4D11EF98381EF7007001B1.roa (raw, json)
Hash identifier: NMMSUssx8/EAWE7BLUbH7AfcJVl0J/wf4RShmxkFygM=
Subject key identifier: BC:EC:F9:E6:97:8D:4A:3C:AB:84:D0:0E:48:A7:12:34:0A:D8:99:39
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B470
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4287C7C00B4D11EF98381EF7007001B1.roa
Signing time: Mon 06 May 2024 02:06:33 +0000
ROA not before: Mon 06 May 2024 02:06:29 +0000
ROA not after: Tue 11 Jun 2024 02:06:29 +0000
asID: 138915
IP address blocks: 154.205.156.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46192 (0xb470)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 02:06:29 2024 GMT
Not After : Jun 11 02:06:29 2024 GMT
Subject: CN=66383b29-e0ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:85:58:6e:65:fc:40:fa:1b:69:49:55:4a:9d:
13:1c:f6:c3:1b:ca:11:96:32:40:4b:45:9c:98:cc:
09:ef:3b:c9:ed:21:9a:7e:b9:00:b7:07:ab:fb:70:
65:e1:b6:24:05:d9:c8:72:95:ca:ad:46:00:a4:bb:
a2:a9:75:b8:29:26:0a:a6:4d:ac:a6:24:1e:f3:14:
86:f4:d4:f4:19:2b:c2:61:dc:c1:76:fa:65:12:50:
59:55:0a:37:51:28:b0:b6:fa:63:b5:13:0a:af:69:
ad:b0:9a:7e:8c:e4:a7:72:4b:f1:f3:69:b7:ab:68:
f9:66:00:20:dc:65:04:61:28:d7:b6:cf:0c:e8:b1:
21:36:0e:52:6f:b6:1c:c8:de:da:bb:d1:56:32:8a:
97:26:b6:90:d4:30:c9:fc:81:23:e1:60:c2:07:c6:
c6:aa:c4:1c:d3:85:56:d3:ac:54:c7:b5:3c:bd:fb:
6b:de:00:2f:31:9e:8c:26:f2:3a:b5:2e:3d:8a:b1:
d8:a2:47:d2:b2:6e:af:db:fe:f9:11:68:95:ad:db:
44:59:91:00:36:66:13:dc:b0:7e:95:56:73:2d:b7:
e5:be:39:01:79:bd:45:4a:d4:e0:7f:02:d9:09:61:
af:ee:70:7e:60:fd:b3:ee:8a:c1:ba:dc:7c:1c:2b:
4d:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:EC:F9:E6:97:8D:4A:3C:AB:84:D0:0E:48:A7:12:34:0A:D8:99:39
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4287C7C00B4D11EF98381EF7007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.156.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:d3:35:5b:1f:86:1b:89:dc:b8:12:0e:4b:14:9c:c7:62:04:
df:87:1d:f5:bb:17:1a:19:e8:53:04:3f:6e:3f:44:7b:2c:d3:
eb:4e:04:19:d2:8f:87:b7:7a:08:cf:33:d1:1e:76:1d:6d:05:
25:6d:2c:20:e6:e8:e1:0c:03:28:3a:f0:ba:f7:a5:88:1d:ff:
76:e5:84:1a:bf:62:b7:75:40:7d:80:8a:ef:06:e4:c0:65:8a:
18:0b:f0:59:99:4e:49:0e:88:21:56:ad:40:63:a2:1f:4e:e3:
4f:76:12:20:10:d5:e1:08:2c:a0:0f:45:90:eb:a0:a9:ce:a3:
e9:1e:64:7b:62:c2:3f:e2:42:ac:35:67:8d:c0:8e:34:29:18:
d9:9a:66:89:76:e2:65:58:5e:b6:92:43:0a:60:2c:50:b7:76:
bf:38:29:17:50:d8:93:d7:42:1f:dd:1b:a2:5f:db:5e:e4:de:
5c:2c:31:05:8b:0f:3d:21:29:35:26:4b:0b:c2:aa:d2:76:4d:
20:2f:f1:b4:3f:74:49:27:3d:94:3e:9a:93:f1:7a:d9:e7:ce:
8f:0a:87:58:de:8b:11:3f:26:d9:2b:05:14:12:c1:25:09:0b:
00:fd:fa:71:bc:ac:8e:fc:52:3b:90:22:ef:6e:94:81:99:7d:
96:43:35:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:21 2024 by rpki-client on console-ams.rpki-client.org