Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F63B99C007F11EFB45D03F4007001B1.roa
File: 8F63B99C007F11EFB45D03F4007001B1.roa (raw, json)
Hash identifier: lmgHm4PwwsqhUoroQyn/hZIeEmzlxUE0zbTvH49NhcQ=
Subject key identifier: C6:38:BB:AD:6E:44:9A:E1:BD:6B:EC:33:89:A3:EA:2E:78:F9:3A:98
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AE90
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F63B99C007F11EFB45D03F4007001B1.roa
Signing time: Mon 22 Apr 2024 08:08:54 +0000
ROA not before: Mon 22 Apr 2024 08:08:50 +0000
ROA not after: Fri 24 May 2024 08:08:50 +0000
asID: 272854
IP address blocks: 154.194.54.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44688 (0xae90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 22 08:08:50 2024 GMT
Not After : May 24 08:08:50 2024 GMT
Subject: CN=66261b16-8c0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:9c:69:9e:90:30:d4:51:54:c5:2e:c8:04:bb:
99:4a:3e:7e:9e:39:90:20:30:e5:46:88:ab:e8:1b:
5c:c0:10:72:4f:61:26:db:77:53:ba:b6:f4:b1:b1:
92:95:29:86:9e:cb:6d:7e:40:a5:2e:91:80:3c:7b:
71:af:d1:8b:be:fc:79:b0:66:e6:e7:8c:5e:cf:d2:
19:fc:c8:1c:d1:00:8f:14:b3:42:fe:5a:9d:c5:89:
91:81:2c:48:81:44:4d:e5:7d:c2:f8:a9:18:3d:b6:
bc:23:6a:f7:04:4e:33:01:90:af:5f:da:14:e1:db:
48:83:db:5f:05:81:1d:fb:65:23:40:88:0b:b5:ec:
d7:54:75:26:1a:f1:23:02:ee:14:45:9b:e3:b2:d0:
a4:89:d7:93:4b:e4:36:7d:25:6b:57:57:3f:a7:0f:
c7:49:f2:6b:99:c0:f7:15:8d:b8:e9:d2:bd:64:30:
cd:dc:a6:b6:2c:f6:af:be:4d:e2:e5:25:14:9c:7d:
65:14:1a:77:75:58:2b:bf:1f:1b:ee:bd:e8:58:e7:
d5:39:d0:b5:1e:d9:79:b9:5e:f4:e5:09:25:40:3e:
a7:4c:b3:a2:f4:5e:29:e7:85:e6:6c:ca:79:f3:1c:
eb:9f:d0:b7:97:bc:8d:dc:50:95:80:a7:d9:8b:a6:
6b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:38:BB:AD:6E:44:9A:E1:BD:6B:EC:33:89:A3:EA:2E:78:F9:3A:98
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F63B99C007F11EFB45D03F4007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.54.0/24
Signature Algorithm: sha256WithRSAEncryption
14:05:d7:24:74:2e:d4:a1:04:c3:8c:8f:49:34:49:98:82:27:
f5:a1:09:89:98:1f:67:6b:bd:42:47:cf:39:d4:cb:d4:8a:9c:
25:5b:d2:c8:ee:fe:6b:6b:53:c6:d5:86:fc:a4:99:d3:44:ed:
33:53:81:79:f2:04:82:c9:24:b6:7d:28:4c:97:86:63:7c:c9:
84:2f:97:32:f4:5e:fe:6e:49:14:3d:40:40:28:16:80:02:e0:
5d:6a:9d:19:6c:9a:b3:c5:f0:47:cd:03:63:93:4e:5a:d5:11:
d1:17:8a:a4:0e:49:c4:89:18:a7:a4:ff:6b:7c:71:65:80:c0:
c4:6b:4f:5b:a4:9c:4f:e5:c7:05:c2:a6:d8:20:43:5d:2b:40:
13:60:e5:33:09:5d:da:e4:b8:21:08:cc:78:e5:59:ca:8e:42:
9b:10:03:2a:64:8b:b7:a3:55:48:3f:7a:fe:bd:cd:e1:31:a4:
1c:ab:d1:e5:d1:b9:ef:0a:e0:aa:6e:3e:0e:78:c4:73:d0:9a:
f9:a0:a1:60:fc:87:72:fd:3e:25:6f:51:e3:90:53:71:0b:64:
fc:65:e0:a6:94:11:c8:5e:38:3c:ea:99:bf:cd:71:09:e3:01:
0e:55:aa:e7:0c:00:9f:68:24:f1:ba:c7:32:20:0d:6f:5f:aa:
bc:da:61:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:26 2024 by rpki-client on console-ams.rpki-client.org