Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/977520400B4B11EFBDAD4A66017001B1.roa
File: 977520400B4B11EFBDAD4A66017001B1.roa (raw, json)
Hash identifier: 1VvXeBhiox5scz+IGMgTX2mbMdb5DoBb13ocmeUNq9k=
Subject key identifier: 5D:F4:13:DA:A3:6B:1F:87:EC:CA:09:35:75:5B:F4:BC:68:87:EE:93
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B460
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/977520400B4B11EFBDAD4A66017001B1.roa
Signing time: Mon 06 May 2024 01:54:36 +0000
ROA not before: Mon 06 May 2024 01:54:33 +0000
ROA not after: Tue 11 Jun 2024 01:54:33 +0000
asID: 138915
IP address blocks: 154.205.158.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46176 (0xb460)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 01:54:33 2024 GMT
Not After : Jun 11 01:54:33 2024 GMT
Subject: CN=6638385c-9212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:42:f4:38:42:9a:06:15:2e:a9:50:9e:bd:91:
9c:c5:1a:9e:ab:47:39:07:0f:fd:3a:10:4d:68:f5:
a2:ca:09:c8:c9:1e:e9:04:64:64:d4:40:5b:30:42:
0f:28:37:a0:27:c3:a2:07:67:62:7f:8c:62:25:17:
2a:cf:27:73:46:7f:bd:e6:45:85:ef:f7:76:c0:4f:
4b:53:1d:54:30:65:71:a4:09:26:50:07:66:e2:c8:
53:62:b2:39:44:57:d6:96:4b:78:59:37:04:5d:a0:
72:b6:7b:ca:a7:c0:99:22:4a:12:25:23:13:f1:b7:
6b:25:27:e4:0a:16:de:b8:3f:b2:b3:26:53:92:9f:
7e:18:c7:ac:2c:77:c3:3f:6b:cd:75:15:c5:2e:ef:
d4:0a:1f:e4:fb:ac:b5:c1:44:55:16:1f:a0:5c:24:
ff:fb:29:47:1f:51:a2:5d:33:af:b6:3a:c6:83:5a:
89:8f:94:27:30:ab:8c:eb:3b:a7:4f:95:6e:83:e3:
30:29:aa:36:4e:eb:fb:57:8a:3c:12:19:eb:65:80:
9a:44:14:70:5b:cb:48:80:ea:2a:0d:16:09:3e:a9:
3e:3e:65:04:c7:8b:ae:fc:f1:20:e7:4b:5b:43:7f:
62:0f:06:83:61:99:4b:de:b1:03:79:e5:c1:74:4d:
ec:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:F4:13:DA:A3:6B:1F:87:EC:CA:09:35:75:5B:F4:BC:68:87:EE:93
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/977520400B4B11EFBDAD4A66017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.158.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:b1:57:47:c8:1d:5b:76:75:86:db:b6:87:0e:ea:05:a3:be:
b0:62:9d:31:cd:ab:7f:51:eb:18:be:59:ca:5c:52:72:71:18:
64:7e:b6:c2:1b:72:5f:bb:b3:57:f0:ca:7f:e0:70:75:16:e0:
3b:b4:f3:a9:5d:dc:7f:6e:8f:7e:40:89:dc:78:18:ed:df:ba:
22:72:9d:22:2b:df:a5:c5:26:36:f9:8f:1e:86:35:6c:f2:2e:
ff:8f:05:95:d1:1c:20:d5:8e:9d:21:e9:f0:24:49:67:e8:77:
de:ab:48:ce:51:64:96:eb:a1:cc:7b:6c:cf:35:45:7f:d4:58:
ee:a4:20:cd:5f:ae:b1:63:e7:7f:25:8b:d5:50:15:07:24:cd:
04:e7:f0:99:9a:9c:84:d4:cb:3f:c2:01:15:a6:9d:42:46:6f:
a5:8b:ce:ed:ba:09:ea:f9:22:1c:e2:d7:84:a5:ad:98:51:06:
0d:64:44:3f:bf:d1:9a:3b:ee:ea:68:4e:04:6f:54:0f:8a:f8:
a1:9b:59:55:4e:0b:69:b8:57:f1:6c:cb:85:26:b3:8f:fc:1a:
38:1e:cc:36:bd:81:44:79:02:a7:cc:4d:24:69:cf:4d:44:a0:
d8:32:3f:6e:4d:55:cb:0b:a8:45:c4:8b:8b:18:3f:07:75:52:
35:ab:e2:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:27 2024 by rpki-client on console-ams.rpki-client.org