Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/989AADD40B5D11EFAD389405017001B1.roa
File: 989AADD40B5D11EFAD389405017001B1.roa (raw, json)
Hash identifier: 5lx7MJonwGlqlGy9OBuyyMwPM737OYwTM1cD0FgA9Jw=
Subject key identifier: AB:2F:07:C9:D3:4A:25:E2:C5:44:4B:55:44:22:7D:9D:EA:19:1C:A3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B4FC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/989AADD40B5D11EFAD389405017001B1.roa
Signing time: Mon 06 May 2024 04:03:29 +0000
ROA not before: Mon 06 May 2024 04:03:26 +0000
ROA not after: Tue 11 Jun 2024 04:03:26 +0000
asID: 138915
IP address blocks: 154.203.146.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46332 (0xb4fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 04:03:26 2024 GMT
Not After : Jun 11 04:03:26 2024 GMT
Subject: CN=66385691-86e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:91:c6:43:6d:97:5b:0c:64:fb:21:96:f3:b2:
af:4c:76:b2:b8:de:1c:87:04:65:5e:9f:76:33:76:
e3:fb:42:5f:74:7e:f8:bc:2c:8c:cd:93:c2:b7:ad:
c3:aa:cd:de:b0:5b:6d:db:63:ef:de:b7:87:5d:f5:
1a:b5:6d:44:a0:fb:38:61:6f:9b:eb:b9:2a:16:3b:
04:8f:f7:64:d8:a2:2a:3e:96:09:80:93:06:b0:a8:
26:54:19:1e:a1:a1:5d:2c:d0:98:04:32:41:28:5a:
5f:33:fe:2f:fd:74:d7:cb:5c:ae:13:e9:07:08:19:
f9:d9:d9:eb:cd:a9:31:e1:44:e7:df:91:05:3d:3d:
38:f3:e1:79:0a:13:8b:fc:ff:32:60:b6:6b:ec:2c:
c5:06:8e:15:4b:7f:7b:59:2b:07:54:44:48:88:cb:
2c:c3:a3:a8:10:fc:54:a6:6c:9e:ba:41:3a:66:94:
37:9c:58:fe:76:48:89:be:48:eb:27:af:74:22:48:
40:e3:5b:32:a7:35:d1:b7:8e:d3:6c:e3:a3:ba:98:
ab:9e:7e:69:7f:bb:0f:04:4c:0f:bd:05:05:93:9f:
3a:e7:78:e5:35:c0:fb:10:c3:46:82:8b:5e:c2:5b:
3b:62:c5:4b:d8:d6:48:38:f7:d5:22:d4:34:4c:a3:
26:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:2F:07:C9:D3:4A:25:E2:C5:44:4B:55:44:22:7D:9D:EA:19:1C:A3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/989AADD40B5D11EFAD389405017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.146.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:bd:da:1a:4e:2c:88:90:78:61:9b:70:14:14:cf:14:77:b7:
41:b7:c7:c1:d8:c1:a2:99:43:8f:0f:cc:1e:a0:8d:af:22:ec:
43:39:c8:f4:5b:ce:2b:57:3a:0c:4a:23:5b:a8:a9:83:8e:6c:
ef:96:2c:46:fd:92:cd:94:79:4b:e8:2d:89:23:41:ee:b5:49:
ef:7a:16:68:1a:01:bc:3e:92:1c:a6:70:5b:18:72:79:71:b1:
38:4e:7a:fe:1f:64:fc:18:83:d1:05:1d:9c:52:78:b2:07:ae:
a0:1e:c6:9d:be:a9:84:52:5e:7f:09:be:ac:b4:cb:4e:54:80:
02:d6:22:ab:87:85:e1:e8:ed:87:af:b6:94:86:66:70:8d:58:
10:13:c2:a1:f4:ea:95:d6:13:da:7c:64:bb:ee:a5:68:ab:6b:
a6:6d:17:7d:17:00:20:37:91:c1:50:1b:76:e6:01:ab:3a:2b:
59:e1:b3:23:f5:54:38:f1:9e:41:47:ed:5c:11:19:ed:ea:53:
80:5f:e9:85:4d:39:8c:b4:06:7e:27:cd:15:c7:40:c7:e7:d7:
0f:b1:3c:4d:a0:b9:3b:f4:2f:0d:01:26:2b:31:c3:00:c2:b3:
74:32:18:67:ff:ac:af:9a:5b:5e:d7:a7:c2:6b:4a:a5:10:8a:
d4:fe:2e:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:27 2024 by rpki-client on console-ams.rpki-client.org