Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55A2014A008011EFB5231FFA007001B1.roa
File: 55A2014A008011EFB5231FFA007001B1.roa (raw, json)
Hash identifier: 1lsXYrxE+Id+bNMoJ+IsMfH6b75joM3qhM7WJZ3Jvxo=
Subject key identifier: 71:53:6D:8E:0D:1E:47:3D:2A:7A:37:A3:E4:EE:55:06:A0:EE:7B:AF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AE9A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55A2014A008011EFB5231FFA007001B1.roa
Signing time: Mon 22 Apr 2024 08:14:27 +0000
ROA not before: Mon 22 Apr 2024 08:14:23 +0000
ROA not after: Tue 04 Jun 2024 08:14:23 +0000
asID: 140869
IP address blocks: 154.81.32.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44698 (0xae9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 22 08:14:23 2024 GMT
Not After : Jun 4 08:14:23 2024 GMT
Subject: CN=66261c62-18ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:1b:c9:f4:fc:ef:63:c4:4d:1e:37:c6:6e:e1:
1d:86:43:20:0e:df:df:38:46:80:c0:0e:c9:7d:c6:
d2:17:d8:26:ba:08:24:d9:1e:77:c7:20:4c:53:c0:
58:17:97:3b:19:24:d1:3d:2b:41:ea:d9:79:53:b5:
01:94:1d:e2:88:e5:9a:5b:cc:c2:d7:1f:6b:1a:33:
2c:70:d1:bd:4c:a1:9c:1b:df:47:ba:04:3e:35:13:
a5:e5:12:2d:c8:db:a8:0b:15:da:a0:0c:3e:c6:b7:
cb:43:b6:b4:f0:34:18:bb:7e:ab:2c:49:94:e6:e2:
4e:86:9f:fb:88:73:1f:91:c0:ae:d8:42:05:d3:49:
54:f7:b0:b4:fc:c3:bc:b1:c2:a5:b3:94:cc:0e:ed:
8a:20:12:9b:8a:1a:ac:59:2d:77:ff:60:9e:44:50:
a6:3f:cc:16:8c:aa:fd:4c:19:1a:5b:ae:fe:36:74:
a2:ef:19:d4:e9:73:44:b2:c4:be:74:a8:9e:ab:1e:
d9:7a:fb:c5:ec:0c:fc:e2:9f:92:00:ba:48:32:04:
5b:47:f8:95:c1:c4:37:4c:b5:67:97:95:06:b7:84:
d6:2b:3b:cc:4b:f9:8d:ea:5e:e2:16:4e:34:66:f3:
cd:16:b4:e4:b9:37:6b:c3:ff:67:cb:08:11:a6:05:
97:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:53:6D:8E:0D:1E:47:3D:2A:7A:37:A3:E4:EE:55:06:A0:EE:7B:AF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55A2014A008011EFB5231FFA007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.32.0/24
Signature Algorithm: sha256WithRSAEncryption
35:79:a5:18:55:af:ee:f2:7b:3a:4b:53:9e:49:1b:02:aa:ea:
0e:98:1f:30:12:76:c6:e7:ee:5e:68:27:14:53:98:c4:e6:c2:
f0:dd:f4:da:80:4c:35:5c:6c:25:b3:df:66:1b:f7:b3:ef:91:
c0:62:73:5f:da:07:f6:ac:c7:60:21:ca:5f:e2:27:f9:da:4c:
04:a1:15:06:4f:b2:a3:57:19:3f:56:b0:10:a3:d6:e8:ab:b5:
cc:88:34:28:93:d8:89:8d:cc:6e:53:b9:d3:88:35:2a:d5:00:
f2:ca:0c:32:c5:55:16:9d:65:3a:06:73:cb:44:cc:da:82:e1:
09:63:71:b8:d7:d5:88:42:31:72:12:e3:25:64:99:bf:43:d5:
b2:a1:65:e8:e6:8f:43:8f:3a:c7:d4:dd:ef:d1:56:b6:99:37:
b2:8a:0d:85:a9:8d:e7:aa:b5:e3:95:e4:c2:a2:03:f2:0f:5a:
15:90:13:de:3d:c6:78:3d:71:a0:26:ef:76:5b:f4:1c:1b:9c:
ce:55:07:8e:bd:28:a8:a3:d1:35:c9:c9:8a:4d:9f:3f:f7:11:
01:3d:5e:b3:58:c0:59:ee:f0:d2:af:d4:62:10:16:02:db:17:
e9:14:f8:a5:c9:41:ce:b0:eb:36:c1:5f:d4:21:d8:79:4d:0a:
d3:81:95:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:15 2024 by rpki-client on console-fra.rpki-client.org