Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D914D0C0DCA11EF9634BE49017001B1.roa
File: 8D914D0C0DCA11EF9634BE49017001B1.roa (raw, json)
Hash identifier: 7/+0uOHlmqpF9PIUbsa9b540DdscfrMx15sgKkSv0AQ=
Subject key identifier: 83:53:57:07:9F:8C:00:C6:8E:DD:57:EA:2E:05:3B:EB:BC:05:50:C6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B619
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D914D0C0DCA11EF9634BE49017001B1.roa
Signing time: Thu 09 May 2024 06:08:28 +0000
ROA not before: Thu 09 May 2024 06:08:24 +0000
ROA not after: Wed 29 May 2024 06:08:24 +0000
asID: 141883
IP address blocks: 154.215.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46617 (0xb619)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 9 06:08:24 2024 GMT
Not After : May 29 06:08:24 2024 GMT
Subject: CN=663c685c-0e15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e2:c6:4b:a1:52:16:f7:53:fa:2e:29:07:cc:
c2:7f:23:81:34:e3:38:8a:4b:44:c6:21:ae:bf:a6:
3a:6d:33:6b:71:4f:4b:b9:22:d4:54:72:3c:55:f1:
9f:d5:2a:bc:51:c9:33:7b:f8:10:cb:a0:59:41:a4:
99:df:97:2f:78:20:bd:7d:20:8f:ec:29:7a:04:cb:
51:2e:f3:1b:f3:78:3a:95:f2:59:43:fc:47:9a:15:
68:fe:05:7a:b1:6d:31:2a:1c:40:03:05:ec:10:ba:
12:7d:1d:bf:8c:71:c9:30:a6:e0:f5:30:ec:60:7a:
73:a7:94:96:9a:34:5c:96:4d:36:d6:e3:7a:b1:82:
f7:fe:04:5a:7d:83:22:5b:78:5c:54:5e:e2:82:aa:
65:d2:77:20:39:03:1e:48:73:d6:d3:b8:ce:27:83:
72:bb:ec:61:46:6c:41:aa:ab:fe:bb:b6:b1:81:30:
7c:81:cb:ec:07:f6:cc:9f:c6:a4:9e:78:fb:57:64:
23:76:38:10:79:9c:99:1b:c0:d1:ba:70:c3:d3:19:
9e:08:07:1a:78:b0:d0:ee:86:bf:86:61:e0:4e:83:
0f:d7:4c:24:2c:58:98:a9:1d:21:12:1c:1e:b1:3e:
5f:17:18:c5:14:f5:47:75:75:f0:2b:75:3c:e3:44:
d3:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:53:57:07:9F:8C:00:C6:8E:DD:57:EA:2E:05:3B:EB:BC:05:50:C6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D914D0C0DCA11EF9634BE49017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.0.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:2c:f9:8f:c8:28:44:84:77:8e:d3:7d:02:96:0e:07:22:0e:
0b:5f:8a:0d:b8:73:f1:c3:3a:81:9d:f3:e1:a3:f7:4e:aa:98:
18:3e:73:33:f6:7c:be:59:76:ee:45:5f:8f:a4:50:06:0f:4a:
67:01:2d:c0:61:19:1e:25:3f:a8:ca:c3:9d:cc:e6:37:0c:9b:
07:2c:8b:90:15:f8:e8:6b:97:a6:1b:59:8f:73:4d:ae:51:46:
bc:bc:51:99:20:da:f6:ef:64:a7:2f:c6:b5:d2:ef:4e:ed:87:
47:0a:c3:92:53:09:01:ab:b4:60:1c:28:4e:6a:0f:5c:cc:47:
67:61:d2:fc:b5:63:0d:6a:c4:ff:46:1e:62:4e:ea:59:7a:07:
73:84:18:17:81:03:f6:08:ba:46:4f:af:1b:e7:38:c2:31:93:
a3:2a:f1:3f:7c:ca:c9:d7:81:a1:a2:eb:cc:88:cb:d6:89:0f:
49:9a:d4:c6:71:7d:1f:7e:4d:f3:ff:c0:19:f1:61:f7:86:0b:
94:ad:39:53:ca:60:8a:41:fd:0f:03:02:56:b5:de:d0:8e:09:
f0:b0:0e:3a:39:42:93:46:67:9e:fe:5a:cf:ac:8d:81:a8:c4:
36:92:df:f4:d5:f4:24:d2:d1:af:2b:39:d9:dc:9c:91:f6:0a:
1c:87:74:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:26 2024 by rpki-client on console-ams.rpki-client.org