Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/991ECB14061211EFBB83CA68017001B1.roa
File: 991ECB14061211EFBB83CA68017001B1.roa (raw, json)
Hash identifier: ykMKccq22hGzEmvji53mhfOxkSMd4JLgCXd9iAGQyQM=
Subject key identifier: 18:87:16:54:A3:0D:A5:23:E2:FE:E2:2A:FC:47:F5:69:3A:37:0B:9D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B248
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/991ECB14061211EFBB83CA68017001B1.roa
Signing time: Mon 29 Apr 2024 10:24:02 +0000
ROA not before: Mon 29 Apr 2024 10:23:59 +0000
ROA not after: Fri 07 Jun 2024 10:23:59 +0000
asID: 63139
IP address blocks: 154.223.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45640 (0xb248)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 10:23:59 2024 GMT
Not After : Jun 7 10:23:59 2024 GMT
Subject: CN=662f7542-aab1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:17:d0:16:b5:30:a7:07:35:d9:6e:89:64:81:
02:8a:15:85:88:15:c6:1d:09:e4:6a:e6:bc:4b:6a:
f0:b0:43:a3:c3:14:5a:bf:01:b1:33:25:2a:e7:cc:
7d:19:27:f2:62:71:a9:c4:9c:a7:1b:d5:f4:4d:f0:
0e:15:7a:7e:20:b7:e5:81:98:21:af:27:31:e4:d3:
af:18:6b:e1:4b:c5:ea:b0:ec:8d:91:9d:15:96:1a:
08:ca:47:a3:28:43:d7:04:01:bc:87:03:08:17:92:
82:9d:02:ea:76:d7:ff:fc:96:cc:04:b4:66:42:3d:
f8:c6:05:f4:ae:55:40:06:21:e9:75:65:2f:e9:07:
58:78:23:97:8c:78:45:12:98:b5:b9:76:4d:72:22:
69:c0:d2:d9:1e:97:8d:1e:ed:ef:1f:e9:4a:8a:13:
58:91:5b:94:1c:15:36:cc:4d:be:5a:41:bc:33:08:
33:41:a0:72:1b:e9:28:57:27:35:b9:d4:d8:04:0c:
89:ce:3b:cb:d9:db:85:a5:0f:08:67:a8:51:cd:c7:
62:7c:b4:a1:01:51:59:80:4f:f3:89:b3:be:cd:60:
c7:b6:4e:15:c9:cf:54:55:67:dd:cd:69:50:0a:09:
f6:bc:d2:68:31:42:c7:72:f2:a6:e6:15:f6:38:d3:
88:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:87:16:54:A3:0D:A5:23:E2:FE:E2:2A:FC:47:F5:69:3A:37:0B:9D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/991ECB14061211EFBB83CA68017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.25.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:3a:85:5e:1f:71:b0:df:75:02:fb:03:6c:1d:24:b3:96:fb:
7a:89:d8:f8:e6:bc:c2:68:fa:df:2a:2f:6d:ab:8d:25:2d:f5:
4c:51:59:1e:2f:4e:63:ca:9a:20:88:38:ce:96:6f:4c:72:d4:
05:d4:56:fe:69:c8:a1:3f:3c:e7:77:9c:f5:72:02:5b:53:1c:
e1:97:6b:4b:66:91:e0:c7:ef:68:86:1b:a5:84:88:0a:f8:b2:
3f:6a:50:57:5c:4e:db:41:9a:88:eb:4e:f5:3b:e7:63:c2:46:
0e:1b:92:ba:ab:97:cb:fe:e0:e1:0e:63:bf:a6:68:97:f3:39:
3d:be:37:99:d8:9c:b5:87:98:cc:6f:f1:37:1a:32:ac:46:f8:
9a:4a:5f:f9:2a:4b:d6:a4:24:e7:32:20:a2:0c:19:4f:79:67:
dd:1d:3a:a1:ef:09:3c:89:6a:7c:c6:4a:ce:41:25:01:02:c6:
10:7b:0c:6c:4e:28:0d:6c:e3:8b:51:c4:55:6d:c9:e7:69:48:
2e:d5:e3:44:75:e2:2a:02:29:50:87:e2:11:a0:f3:f9:cd:39:
db:5c:43:18:42:e7:ad:f6:77:34:0a:e6:e7:76:2c:d4:0e:b2:
c1:37:9c:c8:fc:db:fd:3c:c7:04:e9:0c:d9:94:55:3c:91:17:
ed:9f:c5:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:27 2024 by rpki-client on console-ams.rpki-client.org