Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4A21E09A088411EF8374A84E017001B1.roa
File: 4A21E09A088411EF8374A84E017001B1.roa (raw, json)
Hash identifier: sOs4mJrnGZDUkSNUZNV6n5gCixyNA2sdklvJAZ5UPtA=
Subject key identifier: 5A:9E:23:62:BF:AF:A2:8A:92:E8:CB:EE:CE:17:42:6C:13:E2:8C:F7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B3B8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4A21E09A088411EF8374A84E017001B1.roa
Signing time: Thu 02 May 2024 13:02:54 +0000
ROA not before: Thu 02 May 2024 13:02:51 +0000
ROA not after: Wed 05 Jun 2024 13:02:51 +0000
asID: 150698
IP address blocks: 154.197.73.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46008 (0xb3b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 2 13:02:51 2024 GMT
Not After : Jun 5 13:02:51 2024 GMT
Subject: CN=66338efe-3014
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:09:37:fa:ef:18:e1:27:39:b3:e2:56:6f:24:
22:f9:f5:f4:c9:6c:60:f6:63:c1:d9:c9:b5:f6:cc:
76:71:0e:4f:88:cc:14:49:6c:7a:b6:d7:e3:15:2c:
ca:29:3d:87:cc:3a:40:49:1c:82:d6:7e:5c:91:9a:
15:1e:f8:1f:60:ef:d3:82:b3:3b:cd:b8:0a:43:1f:
d0:cc:3f:68:e4:22:de:c7:53:e7:ff:7a:7f:79:11:
3e:55:11:ac:cd:7c:cf:c6:34:7a:35:fb:17:ac:c0:
c6:0c:40:de:03:73:46:cf:d7:0b:13:ac:ea:cd:43:
66:c7:c1:cd:47:4b:00:25:08:d3:3a:53:1e:26:db:
5f:93:c5:a2:27:96:c4:36:b9:7a:bd:f8:b5:f0:6b:
39:11:2e:13:9d:1e:af:57:a2:e0:28:85:bc:c3:2c:
ad:57:89:fa:56:8c:48:2e:fd:44:9e:1c:cd:95:d8:
8c:c9:59:71:91:05:9a:6e:66:a3:58:10:d9:fe:33:
68:cd:0b:90:92:28:fa:43:c1:ed:05:bc:e8:3b:c7:
d5:86:91:9d:bd:b3:2b:a2:6b:d0:1e:b6:e1:75:14:
15:10:c3:de:f3:eb:7a:bb:c4:b4:49:37:b8:19:63:
33:58:d8:fb:38:3d:0f:71:06:e1:9e:89:6e:a9:e3:
b6:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:9E:23:62:BF:AF:A2:8A:92:E8:CB:EE:CE:17:42:6C:13:E2:8C:F7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4A21E09A088411EF8374A84E017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.73.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:04:42:77:73:4c:b9:df:a9:91:31:5c:70:f0:3e:99:07:1f:
b9:f5:ca:44:66:37:72:8e:0f:09:e4:4a:f4:fb:ba:c7:d8:4b:
59:c9:04:35:13:26:90:ea:23:c9:72:d0:5a:69:64:b7:75:56:
ae:9d:16:c4:76:72:4a:21:d9:fd:23:98:3c:d8:95:1d:9e:c3:
de:bb:5c:cf:7b:48:94:95:13:a0:40:9c:e2:33:f6:a4:c5:bd:
2c:3e:b1:b3:fd:e0:b7:34:3e:be:81:77:46:63:40:be:a5:76:
3e:d7:40:76:61:6b:fb:f0:de:53:1c:c1:c7:0b:40:7c:77:74:
b4:82:c6:1f:ae:8f:bb:41:1b:e8:05:ae:3e:ad:27:56:8f:07:
07:ef:56:cb:7b:0a:2f:13:10:84:19:ef:ab:de:5f:10:b7:d4:
cd:b6:97:52:62:13:65:6e:03:50:55:5b:24:b8:5f:9a:21:8b:
6b:cf:9e:ca:04:45:ed:ff:91:6a:da:86:29:67:7b:c3:d7:ba:
dd:2b:13:0d:e7:b2:ad:8c:b1:6e:d8:1d:f9:1c:cc:51:d2:e8:
48:3c:82:ad:70:7e:d4:d8:f7:18:2d:3f:8a:79:2c:b9:ac:a9:
95:a8:bb:ba:ea:dc:b7:74:4a:c5:b2:6f:2e:68:11:a8:54:45:
53:a2:4f:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:21 2024 by rpki-client on console-ams.rpki-client.org