Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C2C5A040B5D11EFA330B601017001B1.roa
File: 6C2C5A040B5D11EFA330B601017001B1.roa (raw, json)
Hash identifier: ZxBuoS/kgDrV1JlGrhjdB4IyK5Pjq79mGkHLOd1O/+4=
Subject key identifier: E6:86:2B:A0:4E:4E:5E:4F:D3:7A:F9:37:94:6D:D4:3C:D4:69:38:38
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B4FA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C2C5A040B5D11EFA330B601017001B1.roa
Signing time: Mon 06 May 2024 04:02:15 +0000
ROA not before: Mon 06 May 2024 04:02:11 +0000
ROA not after: Tue 11 Jun 2024 04:02:11 +0000
asID: 138915
IP address blocks: 154.203.137.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 02 Jun 2024 00:04:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46330 (0xb4fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 04:02:11 2024 GMT
Not After : Jun 11 04:02:11 2024 GMT
Subject: CN=66385647-c0a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:5d:b4:38:33:c1:5d:df:40:c5:50:24:49:b5:
7a:31:03:9e:5f:9d:c4:12:c2:78:b9:84:3d:68:c1:
69:a1:2b:3d:c9:2c:94:f4:06:25:67:33:81:bd:af:
36:14:89:6f:f4:82:c1:89:a7:be:d4:8d:32:78:3c:
d6:9e:6c:08:a5:ce:3c:30:86:5b:d3:ac:74:74:21:
fb:11:c0:62:63:54:5d:6f:2a:1d:f2:a3:59:c6:75:
4b:af:ce:e1:ed:58:78:ed:b9:e3:67:a5:08:23:0c:
74:5d:64:7b:74:d1:8a:46:85:66:27:7b:bf:8a:f5:
2f:5a:ea:0f:5e:97:79:ae:7c:67:8f:46:03:c3:f1:
ad:74:34:87:56:ef:15:6b:a9:3a:27:05:3f:fb:4b:
3b:a1:ca:5e:96:52:ff:70:4e:27:0b:c2:4b:24:05:
dd:f4:15:55:20:f3:d3:7d:93:00:97:70:27:ce:f4:
ff:ff:5a:20:47:6d:d9:f9:f8:a0:4e:b1:8b:b7:da:
1b:5d:a7:1e:22:5b:fe:1f:16:1c:0a:05:04:e5:e3:
13:d5:d7:fd:3c:4b:99:4c:2f:a4:5b:f0:38:ce:38:
db:a3:d9:b4:2d:dc:e0:05:a3:e6:06:4f:7e:48:7b:
4a:50:50:ca:bd:1b:7e:b7:85:a6:94:3f:5f:b2:ec:
d4:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:86:2B:A0:4E:4E:5E:4F:D3:7A:F9:37:94:6D:D4:3C:D4:69:38:38
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C2C5A040B5D11EFA330B601017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.137.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:0f:75:82:90:03:c7:3e:09:22:30:23:ec:a2:6d:69:36:24:
28:14:be:07:ad:3f:c3:4e:c2:a8:a7:f0:9e:72:5f:09:ac:99:
32:71:17:16:13:9d:e1:bd:bc:9e:27:bc:a7:96:5b:ad:f8:7e:
b2:c4:b9:2d:13:8f:29:8a:23:84:63:ab:a6:38:44:2a:81:5b:
6c:ab:26:c1:f2:c2:6c:da:ef:4d:9d:22:49:65:dd:62:61:17:
4f:a1:a5:15:5d:12:c2:04:11:47:82:29:a1:e8:19:54:f8:ae:
b5:dd:8c:48:b6:29:17:24:9b:ca:31:1a:c2:48:3a:79:8d:7a:
4d:9c:d0:23:c8:16:1c:60:78:62:fd:57:a1:ee:a2:5f:58:db:
96:35:80:cf:98:c9:0a:8a:1a:e7:3c:31:c1:a3:c4:17:0a:bd:
ef:d0:f2:c3:35:b3:b1:e2:0c:e0:96:59:9b:3e:89:ba:72:16:
4c:02:31:8a:bf:92:91:1d:e4:67:1f:77:80:bc:7e:5b:32:79:
9b:ca:26:d5:32:8e:3d:1e:12:a3:44:65:8c:fe:e4:60:dd:c4:
57:ee:2a:c9:98:7c:7b:c3:9a:fe:86:37:81:1a:78:05:93:d6:
f6:41:48:57:f8:c8:b2:d1:2b:72:7f:7e:d6:dd:dd:71:fe:1e:
34:28:26:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 13:04:59 2024 by rpki-client on console-fra.rpki-client.org