Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/69ABB2020B4411EFB4088E26017001B1.roa
File: 69ABB2020B4411EFB4088E26017001B1.roa (raw, json)
Hash identifier: xxac1i8iuc0dcMTqpcja+12hQhdENWvyE+YAkKv5DYI=
Subject key identifier: 6F:9A:58:18:A2:09:F3:8F:55:53:61:27:A8:BF:3A:DD:E7:5D:F8:5B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B430
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/69ABB2020B4411EFB4088E26017001B1.roa
Signing time: Mon 06 May 2024 01:03:13 +0000
ROA not before: Mon 06 May 2024 01:03:10 +0000
ROA not after: Sat 08 Jun 2024 01:03:10 +0000
asID: 272854
IP address blocks: 154.194.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46128 (0xb430)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 01:03:10 2024 GMT
Not After : Jun 8 01:03:10 2024 GMT
Subject: CN=66382c51-598d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:61:a0:bd:33:51:9c:56:43:d8:81:cd:fc:f6:
4a:03:ad:c1:10:83:d7:9b:99:31:65:eb:21:9b:37:
ee:6c:e3:54:09:3d:e6:3d:cd:81:a7:2e:37:0b:d9:
78:de:b5:7f:79:05:64:cd:09:28:dc:3f:e5:02:95:
0c:89:4a:15:7e:dd:55:37:ba:07:c7:68:6d:01:ab:
ed:66:ff:c3:18:8d:f6:0a:c6:e9:8c:f3:8e:0d:92:
19:d5:09:33:b2:73:fd:a5:31:55:17:51:9e:37:ad:
81:28:3e:d0:de:ac:fe:a3:f3:fc:99:42:8e:1b:12:
f9:f6:ae:1c:ca:36:56:94:a0:30:0d:8b:35:a6:c5:
b3:d1:13:0f:58:5f:cd:9e:27:7a:8b:95:b5:02:7b:
e3:6b:49:65:62:e6:3c:fc:ac:7f:74:2a:02:1c:1b:
ea:6b:3f:99:4a:de:bd:24:9b:62:b5:29:30:c8:55:
68:b1:37:62:6d:a1:69:57:02:22:c1:cf:b8:be:6f:
bd:e2:84:3e:28:fe:2b:df:44:3f:e8:13:42:fb:a9:
79:32:b1:44:39:04:69:ac:1d:cd:e1:d7:fc:63:b2:
77:61:72:05:ed:8b:e5:ca:e3:2b:bc:31:91:9e:c8:
a1:b6:cf:f2:4f:20:01:a2:16:19:5d:b6:aa:f8:78:
1b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:9A:58:18:A2:09:F3:8F:55:53:61:27:A8:BF:3A:DD:E7:5D:F8:5B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/69ABB2020B4411EFB4088E26017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.14.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:70:ad:bf:3b:ac:4d:ed:92:5c:3a:24:89:c9:68:8c:45:37:
a8:9c:e7:46:26:02:dc:d3:e0:dc:a0:f5:cd:52:8f:85:ee:71:
67:d1:d0:3d:82:71:27:d8:1b:5a:26:f1:be:be:d5:b7:0c:46:
43:1b:30:1a:b3:b3:dd:35:12:64:d3:f5:54:39:61:df:77:90:
b4:f8:76:80:c3:74:da:67:b7:05:fc:de:ed:0a:0d:ea:96:d9:
a1:00:b9:fc:35:42:b6:ab:f8:14:17:c7:80:3c:ca:4c:06:b7:
b8:3c:d6:8d:0f:13:25:64:d4:1b:51:92:c4:7f:19:a9:7d:bb:
0d:db:bc:78:4d:29:d5:40:61:3c:eb:87:58:6c:b0:87:46:ff:
71:43:94:fe:f2:c7:85:86:cd:00:7c:b4:90:92:66:16:6d:d9:
08:5c:7c:59:d0:0d:1a:9e:b0:a4:dc:2c:76:ab:f5:9d:62:91:
44:82:f4:93:fe:4a:c0:13:44:7a:c9:6c:6b:fd:28:a2:d3:d4:
f7:ec:50:7a:24:fe:34:b1:04:22:9f:f6:c3:20:50:c2:98:02:
e8:4e:22:a9:40:a4:41:60:c8:9b:a8:e3:b1:87:42:9c:c4:a1:
cd:b6:80:2b:ae:00:b1:08:fd:b0:31:11:81:e4:bb:a4:98:23:
1a:6f:5d:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:17 2024 by rpki-client on console-fra.rpki-client.org