Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B6457140CE711EF93EF8E0E017001B1.roa
File: 9B6457140CE711EF93EF8E0E017001B1.roa (raw, json)
Hash identifier: g3Ol+6klwLGKX0ZewfVKGYG/jRjmVdsAgQkcxyaPm5o=
Subject key identifier: D4:81:E9:3F:70:4C:91:22:28:08:6B:60:00:3E:E8:DD:82:85:5C:5B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B56A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B6457140CE711EF93EF8E0E017001B1.roa
Signing time: Wed 08 May 2024 03:03:56 +0000
ROA not before: Wed 08 May 2024 03:03:52 +0000
ROA not after: Tue 11 Jun 2024 03:03:52 +0000
asID: 138915
IP address blocks: 154.203.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46442 (0xb56a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 8 03:03:52 2024 GMT
Not After : Jun 11 03:03:52 2024 GMT
Subject: CN=663aeb9c-6e89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:7b:03:21:a7:60:8b:05:a1:62:b8:cf:87:2b:
5a:04:52:5d:d0:11:ff:ff:2b:4b:c4:24:ff:45:c1:
bb:7e:c2:a5:46:c6:46:32:bd:b9:c2:1a:35:92:7e:
33:c1:9b:f6:62:e8:5a:b4:d0:da:d5:19:a5:20:4f:
d6:d2:54:aa:ce:f4:9d:8d:f0:ac:41:f0:87:0e:cc:
53:d7:a4:8b:90:84:c0:2f:14:d6:75:02:6f:06:ee:
7d:4a:d5:86:9b:0f:8f:ce:25:63:53:aa:b8:02:6d:
24:bc:1e:1f:8a:de:34:2b:93:06:5b:5a:76:87:74:
31:cd:04:cf:a3:c4:09:0b:a1:a4:15:f4:e4:31:2f:
f6:7c:c4:23:68:24:6b:46:4d:63:31:b6:64:52:07:
4d:28:dc:5e:e9:93:6b:0d:0b:58:88:2f:eb:29:c4:
ae:10:64:a3:ca:17:d7:f1:ba:21:a7:30:23:9e:54:
c4:6e:55:8b:3c:f0:bf:98:0a:4e:2a:e3:28:8f:a7:
7f:02:54:76:3b:a4:81:53:10:7d:ba:25:74:f0:24:
68:7b:cb:ce:0e:cc:c8:3e:38:24:ab:0c:66:9a:2a:
6b:20:8a:ad:a5:1d:79:44:2f:ba:8d:4b:ab:15:7f:
25:04:74:86:c0:f0:76:00:3d:1d:c1:73:df:bb:c4:
93:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:81:E9:3F:70:4C:91:22:28:08:6B:60:00:3E:E8:DD:82:85:5C:5B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B6457140CE711EF93EF8E0E017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.153.0/24
Signature Algorithm: sha256WithRSAEncryption
69:33:b6:8b:c6:38:b9:67:0b:62:9c:f4:63:ed:a1:cd:15:22:
cd:57:8c:ce:db:f5:2e:bc:3f:ef:7c:3b:75:6d:21:70:b9:90:
ad:0a:75:97:01:16:fb:ee:c3:05:9c:2d:52:9d:49:48:19:4e:
56:01:61:23:8f:01:1f:40:f7:54:0a:ba:21:0b:5d:1d:0d:1a:
b4:c2:83:fe:aa:c5:ab:cc:f9:0c:6b:87:f6:58:b8:30:36:e4:
e1:48:a0:49:ec:ad:07:84:92:3b:a9:73:37:f8:a9:b0:52:91:
60:00:f0:b5:d5:d2:20:e1:97:ad:8c:9c:b1:ba:37:59:1c:89:
ef:aa:a5:96:4a:1d:2c:7f:3b:75:65:73:d6:0c:53:9f:ff:7a:
ed:a7:b4:25:fa:b9:65:71:ec:3a:b5:d3:33:d0:4a:4a:41:99:
1b:d6:da:16:b4:a0:34:fa:e8:82:cf:6b:30:e6:99:75:40:a5:
08:5d:8f:94:6b:1c:13:fb:3c:9c:cd:e5:9d:c4:54:e2:d4:33:
f3:96:b8:b3:ae:f9:b7:47:1e:64:f6:70:4a:e9:99:08:9c:7b:
7f:e2:85:c1:5b:57:fd:c6:c9:7e:4e:6f:19:8f:77:6d:88:ff:
8b:a6:47:d5:3f:98:96:97:90:5d:92:9b:50:98:79:6c:42:f6:
78:f0:a9:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 02:00:48 2024 by rpki-client on console-ams.rpki-client.org