Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/89F3DAE805D211EFB9198561017001B1.roa
File: 89F3DAE805D211EFB9198561017001B1.roa (raw, json)
Hash identifier: P2YwfK3ngh76++1ElC/ZP/QiCi7gAQv/+HcPfHCBNCo=
Subject key identifier: 65:48:20:2E:82:DF:55:C5:D5:50:A0:07:97:29:82:F7:86:AE:A5:09
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B1CC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/89F3DAE805D211EFB9198561017001B1.roa
Signing time: Mon 29 Apr 2024 02:45:29 +0000
ROA not before: Mon 29 Apr 2024 02:45:25 +0000
ROA not after: Fri 31 May 2024 02:45:25 +0000
asID: 35916
IP address blocks: 154.219.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45516 (0xb1cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 02:45:25 2024 GMT
Not After : May 31 02:45:25 2024 GMT
Subject: CN=662f09c9-581f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:32:6a:8c:ba:0e:ed:a6:dc:5a:85:1a:e0:b1:
cd:62:06:ef:02:3e:48:f1:55:b2:3d:b1:ce:82:c6:
ed:35:f1:3c:b3:ce:65:41:c2:91:d6:12:26:b2:d2:
5a:44:47:83:c1:fe:03:8d:51:c3:40:55:c3:2f:07:
f2:f9:f1:70:fa:c9:6d:d5:36:98:b2:9a:86:93:74:
df:cd:4e:ff:f5:11:c7:85:e1:6b:e5:8c:74:d3:6a:
ee:d1:9e:19:24:85:6d:d9:69:35:ce:74:dd:8f:bd:
21:a7:1b:44:2d:72:25:07:5d:d6:ef:d3:f8:fd:56:
e4:a1:c5:5c:19:4b:17:16:89:b7:11:c0:dc:67:e9:
be:dd:54:bb:49:b8:26:b1:b1:f7:b5:8c:9e:65:b0:
58:0b:12:a6:ba:79:87:42:0b:ca:34:36:13:2b:10:
7f:eb:9b:c7:2c:2e:4d:7b:4f:9f:24:83:83:e8:64:
e5:8c:e4:21:9a:05:d2:b2:57:13:f8:9f:ad:c8:b8:
24:77:07:a4:9d:91:c3:98:42:fe:3f:e7:6c:80:2e:
20:19:f2:5c:ad:d8:93:35:f3:ab:b5:77:d4:59:9b:
d1:77:d0:e4:27:57:dd:78:64:70:5c:6f:d0:d9:31:
7d:4b:c7:60:fb:85:ba:a1:a1:fd:46:f8:16:fc:a5:
eb:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:48:20:2E:82:DF:55:C5:D5:50:A0:07:97:29:82:F7:86:AE:A5:09
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/89F3DAE805D211EFB9198561017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.0.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:df:a1:0d:33:72:bc:49:31:c5:96:a2:21:15:23:f7:2e:64:
16:ee:17:df:a9:96:9a:71:e4:59:3e:b1:ac:b9:40:23:1b:69:
0c:50:0b:05:14:9f:f1:16:e3:6d:b7:52:0d:bc:99:3d:56:bd:
32:67:37:e2:58:e3:d4:8a:e1:2c:c3:2b:c4:d5:64:40:62:25:
df:9c:34:87:69:f5:b7:d5:00:8d:6e:ff:b4:a4:78:ab:2f:50:
9b:02:e5:b5:10:8f:3d:bc:a5:b7:82:f8:ff:26:58:26:6d:39:
05:e5:f2:7b:32:ec:11:64:72:06:27:4f:34:dc:f7:93:3b:19:
de:36:51:d1:53:aa:c8:87:c0:c0:eb:70:ef:b0:83:20:68:f4:
30:82:0c:ab:8b:37:d9:92:be:7f:30:ae:90:e3:f8:bf:ee:34:
e5:6e:0b:dd:e4:d7:df:31:4a:62:2c:f6:75:7a:78:f1:34:bf:
b7:4b:6c:4d:a9:20:d5:a4:cb:84:89:0c:2b:ee:2d:b7:c6:03:
37:11:be:61:07:a8:af:51:02:ec:38:b3:8d:22:f2:c9:e4:58:
12:7b:f2:32:8b:0b:8a:c8:52:fa:30:c8:95:bf:86:1b:9b:91:
f4:0b:b8:96:5a:b4:cc:5b:91:9e:8a:51:b0:ab:03:cf:e8:16:
f8:55:27:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:19 2024 by rpki-client on console-fra.rpki-client.org