Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4ACF1A620B5411EFBB685334017001B1.roa
File: 4ACF1A620B5411EFBB685334017001B1.roa (raw, json)
Hash identifier: myaKx65KNTxRTTo6d1Y2PLqrTEqr5HMLdlJO8lG8sKA=
Subject key identifier: F9:DA:B2:C6:A0:F4:7D:47:D5:2C:FD:75:83:A4:03:14:6C:A0:B1:E5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B4C6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4ACF1A620B5411EFBB685334017001B1.roa
Signing time: Mon 06 May 2024 02:56:53 +0000
ROA not before: Mon 06 May 2024 02:56:49 +0000
ROA not after: Tue 11 Jun 2024 02:56:49 +0000
asID: 63139
IP address blocks: 154.203.173.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46278 (0xb4c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 02:56:49 2024 GMT
Not After : Jun 11 02:56:49 2024 GMT
Subject: CN=663846f5-0545
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:03:de:5c:cf:22:54:b0:8a:cb:f6:f5:bd:fe:
96:63:5f:78:01:ce:6f:8f:c8:ca:7b:6c:1e:ba:cf:
e4:06:8f:a8:69:4f:17:4f:49:49:79:78:b9:9c:2b:
5d:47:9f:e1:d9:d4:e6:c7:87:78:8b:b7:aa:64:9f:
bc:91:2b:a6:9b:b4:fa:8a:c1:fd:26:f4:71:ab:06:
9c:08:e2:18:b3:2b:78:3d:e0:01:88:96:aa:a5:de:
ea:0a:d2:97:2b:ca:3a:3c:32:0e:b6:20:89:5b:58:
33:00:88:96:04:7d:18:8c:16:0f:31:9e:47:2f:8c:
8f:9c:0a:a4:33:96:a8:28:30:ed:50:33:3e:92:4e:
4c:f1:cd:73:a4:18:4c:6b:6f:e6:2d:9a:bd:fb:e9:
33:ce:d2:85:90:81:f6:d7:d9:c2:91:9e:fb:ac:d7:
7d:94:d4:5c:d5:61:05:16:24:39:37:42:64:3b:52:
4e:f8:1c:fd:e3:63:75:1b:e0:07:6f:09:23:d0:c2:
6f:96:b4:48:14:2d:43:da:f0:ee:49:ad:74:6e:3b:
92:ed:70:ab:36:c6:43:b5:93:f4:b3:c9:1d:aa:ca:
74:a6:9c:a0:a5:1d:b8:f0:67:e7:f1:48:dd:6a:0a:
58:c0:6f:d5:94:49:a8:a4:78:f0:b1:be:da:05:a5:
b9:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:DA:B2:C6:A0:F4:7D:47:D5:2C:FD:75:83:A4:03:14:6C:A0:B1:E5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4ACF1A620B5411EFBB685334017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.173.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:99:8a:38:db:6a:ce:a8:ec:04:a8:1a:d5:e8:05:05:d4:b4:
5f:2a:6c:3f:b8:10:21:60:68:66:91:b9:f2:a6:3a:62:21:da:
25:48:ae:58:55:bb:22:63:8f:bb:aa:a4:0f:dd:15:34:e6:22:
4d:e3:56:1d:d5:69:07:14:99:69:34:cc:68:e1:60:f2:6b:f0:
c6:6c:a3:2b:38:8c:df:e8:09:d2:a0:d3:38:3b:99:01:3b:4f:
b1:7a:0e:8a:dc:a6:d7:bf:bc:a7:f1:67:5a:9a:26:af:ab:11:
a0:83:47:5c:3b:9a:56:bc:4c:62:08:89:55:7f:e3:7a:fe:42:
b5:5c:96:c9:bf:37:0b:2b:a4:66:01:dc:1e:03:82:a4:4a:30:
89:b0:95:fa:a6:75:86:2e:1c:3c:28:a6:75:2c:cf:35:ec:81:
1d:1e:f5:af:db:4a:86:98:1b:f7:30:b1:af:b5:f7:ce:b8:14:
01:31:0f:a6:57:82:ca:5e:23:86:a7:32:bd:d1:8b:8f:54:6d:
2d:0d:ba:4d:74:29:a5:93:a0:5d:91:cd:18:0d:4c:02:9e:89:
f5:4e:15:37:a2:2a:25:91:7a:d3:7c:89:ae:4d:7c:71:36:d2:
90:be:3c:87:5c:09:0b:9b:bd:63:12:fe:60:df:b0:6c:5f:9c:
d4:31:18:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:21 2024 by rpki-client on console-ams.rpki-client.org