Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D9E667E06CD11EF9F68DD58017001B1.roa
File: 5D9E667E06CD11EF9F68DD58017001B1.roa (raw, json)
Hash identifier: bI5mpNGQlKUtODzDaN2fYks3iZF8+GszDYdRECNYaFk=
Subject key identifier: 20:C6:2F:ED:EA:27:93:13:BB:78:72:DF:38:8D:F4:21:7F:E4:05:9C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B28B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D9E667E06CD11EF9F68DD58017001B1.roa
Signing time: Tue 30 Apr 2024 08:40:58 +0000
ROA not before: Tue 30 Apr 2024 08:40:55 +0000
ROA not after: Fri 31 May 2024 08:40:55 +0000
asID: 133180
IP address blocks: 154.215.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45707 (0xb28b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 08:40:55 2024 GMT
Not After : May 31 08:40:55 2024 GMT
Subject: CN=6630ae9a-e71c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:66:ca:ac:3d:70:11:42:41:8d:82:59:f6:3a:
57:3d:93:be:b4:8f:b6:71:f0:c3:03:42:8e:5e:68:
63:83:ee:8d:bd:7b:f5:3f:c9:fd:d1:ce:be:20:3b:
1b:9c:6f:82:f0:68:8e:d6:11:8c:56:b0:4d:75:5a:
c3:3a:0c:87:77:91:53:11:5b:e9:2f:be:82:77:07:
17:35:0c:ab:da:bd:72:56:64:b0:3f:07:cf:49:a7:
46:13:db:4d:c7:38:2a:f2:d6:46:0a:7b:6f:76:62:
72:9b:63:2f:9c:49:03:94:e4:3f:9d:91:d1:52:0f:
0c:24:23:a5:0b:f9:7a:48:a4:75:0a:78:2a:2b:e8:
e3:cd:39:88:bf:30:c3:fc:a5:cf:e4:9a:23:34:d4:
c1:2b:84:c7:c6:5a:8f:90:96:63:a1:bd:99:f3:a0:
ec:fc:cd:ef:19:b4:fb:1e:8f:10:ad:a5:f3:37:f3:
72:58:2d:18:05:02:b1:f4:18:78:50:92:62:e3:a1:
e0:bf:2b:69:ef:cc:4c:fc:b8:d6:f3:63:21:17:81:
9e:45:43:05:ac:4a:9e:f4:20:1f:eb:62:69:43:0d:
59:12:68:15:c9:6e:f6:01:9d:9a:73:81:ec:f5:0f:
9b:55:14:a6:2b:f8:f5:c9:10:a7:67:f9:da:83:49:
b7:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:C6:2F:ED:EA:27:93:13:BB:78:72:DF:38:8D:F4:21:7F:E4:05:9C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D9E667E06CD11EF9F68DD58017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.64.0/18
Signature Algorithm: sha256WithRSAEncryption
0b:48:c6:57:3e:94:2d:dc:48:da:72:3e:a7:97:1c:10:56:f2:
80:5f:ea:b6:e1:29:bb:74:3b:57:82:2d:39:c6:8d:78:a5:8d:
5c:d1:93:28:2a:60:6f:6c:ae:80:bc:34:68:cd:c0:35:31:a0:
0c:c6:71:98:d2:5e:a6:16:88:14:f5:b2:b6:94:0c:9f:d1:7d:
59:95:4d:ea:0a:2d:3e:96:bc:ca:ec:0e:2f:6c:4a:78:9a:d5:
df:06:da:1a:9d:f9:96:a2:54:eb:e3:31:51:7c:37:72:dd:fe:
85:f7:59:d6:a2:74:a2:dc:07:f0:46:8d:03:94:a1:eb:9d:11:
07:1c:ca:c5:ca:06:c2:cd:c6:bb:78:97:9d:bd:a7:38:aa:a5:
2a:ef:5a:7b:28:64:69:49:a9:89:a2:25:2d:8d:46:b8:16:e0:
15:d5:4c:ab:a6:e6:2c:b5:c4:8f:18:61:b1:a0:70:07:7d:17:
aa:58:8f:a5:31:c7:b6:67:b9:97:10:6d:85:48:7f:9b:24:e5:
70:85:7e:47:d8:26:e4:a2:59:e4:df:08:6c:60:28:e9:89:5c:
49:49:52:93:34:42:c3:52:7d:e1:07:eb:cc:5a:44:f2:40:03:
7c:64:77:35:e9:61:fa:ac:21:17:be:09:c0:1a:ab:f3:d9:6e:
67:1e:f9:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:23 2024 by rpki-client on console-ams.rpki-client.org