Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B7CC3FA061111EFA07D7E5E017001B1.roa
File: 7B7CC3FA061111EFA07D7E5E017001B1.roa (raw, json)
Hash identifier: HQ2sSNO9eO1ko6N0oho2q7TYTob/PRw9a/C/1tv11gA=
Subject key identifier: 81:85:49:20:A4:1C:8B:5B:BF:C7:CC:C0:4A:97:37:AA:FD:48:FC:F5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B238
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B7CC3FA061111EFA07D7E5E017001B1.roa
Signing time: Mon 29 Apr 2024 10:16:03 +0000
ROA not before: Mon 29 Apr 2024 10:15:59 +0000
ROA not after: Fri 07 Jun 2024 10:15:59 +0000
asID: 63139
IP address blocks: 154.223.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45624 (0xb238)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 10:15:59 2024 GMT
Not After : Jun 7 10:15:59 2024 GMT
Subject: CN=662f7363-6807
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:15:a0:45:77:b1:f2:1a:5e:6b:84:de:4c:f2:
36:72:c1:28:e4:66:76:a3:97:1f:5b:c2:63:71:2b:
19:e6:78:c4:1f:c3:61:0a:fe:f9:d5:f4:f6:da:e8:
0e:93:80:28:a7:88:36:5b:d0:58:16:dd:8d:2b:5d:
86:5b:74:29:28:d0:e0:9d:f7:88:8c:b2:00:f9:ca:
9b:95:22:f5:2e:7d:d6:29:dc:c4:7c:61:70:9d:0e:
94:34:d6:d8:6d:72:6c:4a:e0:4e:b1:68:68:ad:29:
bb:cf:2c:f8:c6:fc:ff:c4:30:fe:46:45:0d:08:1b:
2d:59:6f:7e:3d:db:2b:f2:f3:17:68:22:3e:3b:98:
d0:e0:87:b2:76:92:a4:91:c2:33:eb:5e:22:ee:87:
3a:cb:5f:a2:4e:d6:35:6f:7e:93:ae:6c:15:33:90:
06:72:01:3b:76:35:8a:a5:59:c9:8d:a3:0a:03:ef:
05:2a:67:f3:ef:ab:09:1d:7f:17:dc:ba:4c:0e:55:
af:48:18:2b:e7:61:a7:24:70:0b:60:46:1f:68:8e:
bc:cc:5b:e5:d8:1c:64:4a:63:79:80:31:12:0e:04:
be:58:d9:88:da:33:d4:a3:0c:c0:7e:ba:24:24:70:
84:00:e9:45:be:8f:42:81:c1:fb:76:ab:fc:64:ec:
58:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:85:49:20:A4:1C:8B:5B:BF:C7:CC:C0:4A:97:37:AA:FD:48:FC:F5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B7CC3FA061111EFA07D7E5E017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.50.0/24
Signature Algorithm: sha256WithRSAEncryption
d7:cc:bf:a1:f1:b1:a8:a8:5e:0f:f8:10:2b:00:bf:3a:7f:2d:
da:2e:f3:ad:62:d5:53:6f:20:50:e8:2f:f9:9d:29:b8:d3:97:
7a:44:2c:fa:72:9a:ce:63:be:23:b7:a4:99:2f:b3:23:5a:aa:
35:68:7a:6c:6c:5a:dd:9a:80:bb:0c:30:ee:2d:d5:3f:cc:f6:
ce:30:07:c2:6e:b5:31:3d:03:26:de:84:a8:52:f9:a6:94:fb:
77:f7:a1:45:16:28:b9:90:91:0b:9a:b2:68:dd:88:37:9a:b3:
8b:87:67:ec:7b:6a:83:48:96:c7:91:f6:fa:8d:20:3f:12:80:
f0:1b:6d:d7:a3:ca:05:4b:20:f0:0e:88:83:3d:24:fb:b1:89:
15:f3:57:13:f6:3a:36:a3:2e:46:a8:12:5d:80:fb:b7:d8:e9:
05:ff:8d:0d:02:c2:85:c8:ce:c0:3a:25:f7:84:53:2f:40:47:
6d:8c:75:c8:44:2b:52:7a:12:c1:bb:f6:45:ed:30:a9:a0:f6:
b1:cc:2d:10:89:20:23:73:4a:60:f6:74:23:65:e3:b1:f4:5d:
21:c9:d6:92:42:5b:76:19:f0:c0:e0:b2:39:2e:a4:ff:89:27:
80:99:21:74:d6:cf:98:53:7f:82:53:c9:4a:c8:80:e2:d1:84:
5a:2d:31:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 08:15:23 2024 by rpki-client on console-ams.rpki-client.org