Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/82695D760B5311EFA7AE752E017001B1.roa
File: 82695D760B5311EFA7AE752E017001B1.roa (raw, json)
Hash identifier: HfI8PFG+lyLpYkPIcAW746f93SpR+wd8HGv9yGUC2Z8=
Subject key identifier: B8:7F:A0:2D:CD:9A:A3:91:01:1D:55:6D:CB:67:8F:8F:CE:53:54:38
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B4BC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/82695D760B5311EFA7AE752E017001B1.roa
Signing time: Mon 06 May 2024 02:51:17 +0000
ROA not before: Mon 06 May 2024 02:51:13 +0000
ROA not after: Tue 11 Jun 2024 02:51:13 +0000
asID: 63139
IP address blocks: 154.203.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46268 (0xb4bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 02:51:13 2024 GMT
Not After : Jun 11 02:51:13 2024 GMT
Subject: CN=663845a5-ca6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:34:31:6c:51:0d:27:1e:9b:f5:ec:51:72:80:
ec:69:4c:ab:76:2e:bc:6b:c0:a7:9a:db:f4:f0:ba:
de:02:60:72:b3:5e:cf:12:07:93:30:9a:d4:87:67:
0d:31:b9:8b:03:74:f3:fd:0a:04:95:4f:f1:f3:29:
4c:99:e1:8c:b3:71:35:14:bc:96:87:09:72:65:1a:
15:89:cb:0e:e6:50:f2:db:14:0e:80:a6:cf:5c:42:
d7:bd:70:b7:6c:f5:20:bf:a5:ca:31:52:4e:c4:cb:
d1:f4:16:65:05:8d:3f:57:07:c3:87:02:5a:dc:b5:
85:1c:c3:28:13:a3:cf:5a:32:0f:b6:63:93:e6:23:
04:82:8f:9e:10:26:8b:21:38:ed:68:64:9f:96:34:
60:80:a6:89:13:87:89:5e:13:b0:e2:57:70:f5:0a:
2f:1a:2d:03:d8:df:a9:62:32:2a:4a:b8:13:97:c0:
8e:f5:da:66:69:ef:e5:79:0e:51:d9:64:84:90:74:
9e:a5:4f:57:89:0c:f1:6e:bb:03:85:6d:2b:16:70:
8f:1c:de:37:cf:a0:0a:76:46:8d:85:db:04:ba:62:
2d:95:fb:af:0b:69:2e:39:58:72:4a:27:72:6c:18:
be:a7:fd:cf:3c:c0:92:00:47:b9:d8:bf:30:5c:c1:
96:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:7F:A0:2D:CD:9A:A3:91:01:1D:55:6D:CB:67:8F:8F:CE:53:54:38
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/82695D760B5311EFA7AE752E017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.178.0/24
Signature Algorithm: sha256WithRSAEncryption
12:49:66:c1:0f:0a:8f:5b:51:f2:e6:89:72:60:67:a4:37:3e:
e4:a1:76:15:e6:a0:ac:3a:dc:0b:3c:db:81:98:35:01:47:72:
00:96:22:65:3b:5f:1f:86:67:a3:92:e0:bb:b8:98:c2:8a:c5:
82:87:9f:f4:3d:22:ad:fa:7a:a4:a0:9c:db:bf:3e:f0:86:db:
26:97:6b:e3:e6:5c:6c:c6:52:c0:6d:30:42:96:91:5b:ca:03:
2e:b9:37:03:ef:ec:75:81:11:68:48:58:83:19:3f:e5:28:38:
4d:55:15:12:11:40:2f:8b:9c:1b:88:4a:1d:4b:78:de:0f:a9:
53:b8:d5:38:63:ea:14:32:02:1f:3f:79:d3:c8:f1:a2:f6:c6:
46:c2:fd:eb:67:03:43:00:7e:ea:ec:2f:ea:6f:d3:15:c7:98:
67:5f:3d:9e:a6:68:58:6a:82:c5:0f:04:46:01:be:92:28:0b:
ca:21:ce:5c:41:f2:6e:d3:4f:32:98:b8:d0:9c:cf:e2:dc:e3:
ef:f0:13:87:c5:7f:a7:53:42:7e:c8:70:90:0d:0d:84:ae:13:
62:46:7d:b5:94:6f:e7:8a:8d:44:f7:f0:3d:7c:08:dc:f6:0b:
9d:28:d2:f3:59:66:df:12:ab:d7:fb:ba:20:58:1d:fa:80:a8:
84:98:9d:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:25 2024 by rpki-client on console-ams.rpki-client.org