Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/837617D80B5111EF91DDA21D017001B1.roa
File: 837617D80B5111EF91DDA21D017001B1.roa (raw, json)
Hash identifier: xndMdspFHrggLos1aR2aR6loYzZM4G2UF+jRB3mzY4g=
Subject key identifier: 23:07:FC:61:E1:3C:82:47:40:23:26:A7:E1:D3:E4:EA:20:C7:6E:FC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B4A4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/837617D80B5111EF91DDA21D017001B1.roa
Signing time: Mon 06 May 2024 02:37:00 +0000
ROA not before: Mon 06 May 2024 02:36:56 +0000
ROA not after: Tue 11 Jun 2024 02:36:56 +0000
asID: 138915
IP address blocks: 154.203.136.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46244 (0xb4a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 02:36:56 2024 GMT
Not After : Jun 11 02:36:56 2024 GMT
Subject: CN=6638424c-6081
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:77:95:f5:69:af:22:e5:0c:75:b6:a0:9c:d8:
a1:50:e5:55:a0:48:ad:53:2a:97:93:3d:a7:50:ae:
31:ab:56:eb:eb:0f:8a:26:67:04:81:24:b7:1a:7d:
dd:97:ca:d5:2f:1f:06:11:20:38:19:e0:16:6e:31:
7f:5c:e5:0e:1c:3a:6b:63:35:73:a8:5e:9c:d4:76:
a8:34:1f:84:35:26:f2:ed:89:1a:39:76:3f:b0:14:
e8:42:0b:96:46:6e:bf:0d:99:9d:0c:d7:74:a1:fe:
50:3c:7a:18:6e:a6:4d:94:ae:9f:87:05:20:d4:a3:
0b:e3:04:5c:47:37:2c:7c:a5:01:d0:73:70:42:65:
f1:fc:b3:17:c9:3b:95:72:d5:66:b5:56:75:d3:38:
20:69:20:72:c4:70:18:22:f8:9e:11:67:cc:73:96:
46:d7:36:42:74:2a:a3:35:06:82:ad:63:2f:6a:71:
5a:56:53:a5:3d:49:8f:ea:30:4a:87:f7:b4:4b:1c:
d9:c5:0f:df:7a:b3:14:f5:b7:fb:24:0a:89:41:4a:
2a:aa:34:cf:8a:74:d8:fa:4d:6e:58:50:10:5e:77:
ae:c0:eb:9b:4d:44:f5:d9:e0:ae:f4:ee:11:13:1d:
e8:76:69:95:b1:67:2c:55:40:d9:77:44:b8:7c:bb:
db:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:07:FC:61:E1:3C:82:47:40:23:26:A7:E1:D3:E4:EA:20:C7:6E:FC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/837617D80B5111EF91DDA21D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.136.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:67:9d:45:f3:4a:a4:06:b4:ef:6f:57:b6:4a:b7:4a:d1:e8:
3a:47:92:0f:2f:ea:e0:07:34:e8:92:08:1e:24:7c:cc:10:fd:
51:d9:8b:c3:d6:a1:e0:c8:8e:59:c9:60:78:ce:e5:b5:33:d8:
cd:44:ce:8b:fd:b1:d6:45:d9:92:4b:31:28:31:a3:e0:14:cc:
73:6f:16:f2:65:6f:6c:e9:4a:be:cd:0e:10:8e:ba:e6:b6:87:
5e:a2:86:e5:f4:a1:11:d2:cd:d2:1d:cb:70:b2:67:f8:a5:32:
d9:89:10:61:0b:ef:42:25:0f:53:96:a8:33:71:79:53:7d:b1:
c4:81:a6:69:0f:6f:8b:83:eb:5f:be:7c:09:eb:22:91:66:33:
cd:8d:c2:1c:5e:3b:3f:2f:79:8f:15:72:f2:ce:b6:2f:e2:99:
69:74:31:43:84:5d:71:7a:a9:6d:6e:4c:b6:15:d5:67:90:f7:
39:9e:03:6e:64:f8:11:6b:ec:56:0f:41:52:43:96:26:63:a1:
f3:d1:08:32:39:c8:74:fc:9b:2b:49:c6:52:00:b1:e1:2a:df:
40:a0:4e:92:48:9a:88:3c:90:40:64:78:45:70:0a:56:e4:01:
3a:24:77:9a:2c:92:25:bd:3f:00:9a:fa:fd:7b:d7:3c:42:92:
de:ad:95:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:19 2024 by rpki-client on console-fra.rpki-client.org