Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/533E27D80CE411EF98C78A71017001B1.roa
File: 533E27D80CE411EF98C78A71017001B1.roa (raw, json)
Hash identifier: 5dWLZgVc+xE0urIDEh0dfu3Sf76nVSOkBclJ24FQBtU=
Subject key identifier: 8D:22:C8:84:5B:3E:2A:2A:22:19:55:4F:A4:23:56:EE:ED:02:09:95
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B566
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/533E27D80CE411EF98C78A71017001B1.roa
Signing time: Wed 08 May 2024 02:40:26 +0000
ROA not before: Wed 08 May 2024 02:40:20 +0000
ROA not after: Fri 07 Jun 2024 02:40:20 +0000
asID: 328608
IP address blocks: 154.208.136.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46438 (0xb566)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 8 02:40:20 2024 GMT
Not After : Jun 7 02:40:20 2024 GMT
Subject: CN=663ae61a-5286
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:0f:db:1f:05:0c:e2:ab:63:41:10:58:15:30:
30:4b:a4:ac:fa:96:65:ab:cd:71:3e:b2:dc:37:01:
ba:20:b2:e2:5b:e4:1b:5b:63:9d:6b:d2:e8:5a:07:
43:8f:24:78:8d:4d:0a:10:a5:3d:d3:ae:8b:a0:7f:
bf:5d:0f:e0:49:b8:99:06:e2:d0:a8:78:65:54:9b:
7b:b7:77:fb:7f:5f:7a:dc:ed:52:09:82:0a:b4:63:
5b:fa:81:47:a9:d4:a5:68:5b:3d:5d:26:35:08:59:
71:4d:6a:a5:1e:58:38:ab:6d:3a:ce:42:ea:21:b8:
62:3e:19:22:61:c7:09:64:41:22:3c:fa:4e:ec:d4:
ba:92:66:45:7f:9a:0a:9f:ea:2e:08:2a:e5:9f:a8:
f9:d6:41:d6:c2:f1:59:37:39:96:d3:19:96:87:86:
d6:fd:04:31:3a:38:30:cb:98:03:aa:60:92:49:58:
7d:aa:16:ec:c4:45:2d:77:a6:e8:1a:f0:be:6b:75:
34:a5:fa:0d:a6:ec:5a:6c:21:42:37:21:45:17:ad:
3e:d6:20:1d:38:78:49:83:d6:e4:13:56:65:23:50:
5f:19:25:46:78:98:a6:a8:04:18:98:2c:1e:02:8e:
36:b2:98:bb:4f:1d:19:00:6a:ec:7f:75:c8:77:71:
a1:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:22:C8:84:5B:3E:2A:2A:22:19:55:4F:A4:23:56:EE:ED:02:09:95
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/533E27D80CE411EF98C78A71017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.136.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:8c:31:45:29:ed:19:64:89:1d:44:15:37:f9:c7:25:ee:bd:
8c:4e:01:57:ef:71:66:64:ce:94:29:12:68:70:2f:22:97:e0:
34:04:79:5c:f3:f1:bc:7e:63:3c:75:dc:50:d3:8a:e2:bf:5a:
73:ee:c6:c3:0f:7c:8a:ad:e8:04:8e:06:aa:c6:38:e1:af:22:
2f:9b:cc:50:ee:9b:9b:b2:2e:1a:fa:14:3f:b0:3a:23:bf:01:
a2:62:7e:c1:ba:2a:7f:d7:62:34:5f:12:4a:4c:24:d2:d4:01:
eb:d4:c5:b7:99:48:73:2b:24:aa:a2:a7:f4:06:2b:58:70:d2:
0e:59:25:be:d0:d2:cb:d4:dc:35:6e:8f:55:0a:79:30:15:a2:
d6:1d:c3:be:2d:fe:51:0e:39:cd:0f:71:f9:28:3d:97:c2:a0:
c1:4d:da:0e:06:e5:1f:a0:6d:88:ff:1b:13:b5:df:73:0f:ad:
dc:0c:be:d5:e1:c2:af:04:9e:cc:a8:af:71:57:27:33:09:92:
b8:7f:b0:55:68:0b:13:96:5d:82:8d:2c:cb:94:b6:81:03:fb:
04:43:fd:4f:9a:f3:ed:b8:df:57:3f:76:ba:1c:4c:a6:64:a4:
aa:23:44:7d:b8:03:96:f4:5e:f6:4f:de:24:7d:f2:8f:79:e1:
31:a1:17:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:22 2024 by rpki-client on console-ams.rpki-client.org