Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5A550D4E0B5311EF9C3FEE2D017001B1.roa
File: 5A550D4E0B5311EF9C3FEE2D017001B1.roa (raw, json)
Hash identifier: vvtROtvd9rLu+UI+ww0b56ksuTI0hT+zZRLLZWzVQbU=
Subject key identifier: 99:A1:1D:12:61:47:31:67:B7:F0:5F:75:9D:71:1D:89:71:16:B4:71
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B4BA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5A550D4E0B5311EF9C3FEE2D017001B1.roa
Signing time: Mon 06 May 2024 02:50:10 +0000
ROA not before: Mon 06 May 2024 02:50:06 +0000
ROA not after: Tue 11 Jun 2024 02:50:06 +0000
asID: 63139
IP address blocks: 154.203.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46266 (0xb4ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 02:50:06 2024 GMT
Not After : Jun 11 02:50:06 2024 GMT
Subject: CN=66384562-a681
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:26:72:05:d3:cb:f8:34:63:98:19:b6:c4:5c:
5e:b1:df:ac:48:c4:4c:6b:44:81:ae:92:7e:58:dc:
cb:5d:90:c1:41:5b:60:db:4c:1c:82:96:e2:5e:a4:
1a:a9:f8:be:d9:81:e4:8f:a9:b3:e7:df:1f:8a:9f:
d5:d5:5d:83:7a:c6:c5:c3:a5:43:89:94:69:d6:66:
01:49:5f:3e:04:7a:0f:f6:a4:1e:e8:28:49:49:fc:
97:1c:e2:62:1d:e0:e3:f9:d5:35:9b:bf:e6:ff:c1:
41:c6:51:51:8f:bb:8d:d1:14:fb:dd:79:2e:70:07:
c6:39:f6:81:f1:8e:66:3d:4e:8b:9b:4a:d2:74:d2:
e3:21:b2:47:34:f6:30:01:a3:8e:97:c3:7c:a3:42:
2c:32:8f:79:66:d2:e9:7a:ed:a0:ef:f4:67:53:35:
3a:69:bc:78:d2:36:e8:2f:ab:92:62:23:ef:2e:b2:
5f:56:bb:45:52:96:6c:b6:fa:25:56:a5:b1:9a:22:
5a:31:01:b9:61:a1:9a:4a:62:e8:34:58:aa:b5:22:
f2:6c:20:35:e2:78:d4:e1:2f:2c:8c:cb:d4:54:e9:
d0:a1:77:0f:77:04:f2:37:96:0c:82:cc:48:53:0e:
25:bd:7b:59:7f:7f:b7:80:b0:03:1f:13:8c:d8:37:
9c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:A1:1D:12:61:47:31:67:B7:F0:5F:75:9D:71:1D:89:71:16:B4:71
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5A550D4E0B5311EF9C3FEE2D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.179.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:21:1f:0f:36:09:7c:14:59:2a:b9:6a:c2:bb:61:bb:14:f6:
fd:29:42:01:eb:ec:87:42:62:9f:d9:9b:c0:f1:b5:96:4d:cd:
89:18:c4:72:ce:94:2b:a3:24:19:8f:cc:b8:e1:9f:91:7c:8d:
e5:7a:eb:a3:77:63:df:9f:41:ca:5d:51:b5:51:6d:4b:ca:61:
e3:07:b2:57:98:d3:76:bb:1e:95:50:a4:29:98:ae:56:6e:7d:
89:58:70:c9:ad:2c:34:fa:18:b6:b4:21:f7:ef:d2:21:ce:dc:
53:68:d2:90:71:99:0f:47:b4:7a:05:28:1d:4f:13:38:21:e9:
9b:9d:0c:fd:fe:29:fc:c6:b0:59:a8:22:63:3e:a9:10:b4:92:
9a:7c:f5:c3:82:a2:79:48:ce:64:3b:ba:27:27:32:82:a5:e5:
b8:01:73:54:1f:65:e2:29:ea:d4:b3:96:cf:85:7a:01:73:86:
20:b7:ae:d3:18:a6:20:de:0b:3d:b2:60:0d:9d:43:a2:86:0d:
8d:6b:24:03:6d:e7:4f:10:3b:fc:22:ad:48:36:90:12:ee:dd:
7b:33:cf:10:d5:e4:0c:88:f2:d6:8e:b9:e0:4a:4a:7b:53:3f:
46:25:61:c4:38:07:70:36:04:bd:f2:fb:43:1a:7b:70:b6:2f:
52:0a:07:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:22 2024 by rpki-client on console-ams.rpki-client.org