Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9C63F548039611EF836DCD24017001B1.roa
File: 9C63F548039611EF836DCD24017001B1.roa (raw, json)
Hash identifier: 65BPZEZhNak+1fYz2l6ZVlDaFqeTLoJ3USZOT0QL6Xc=
Subject key identifier: CA:77:27:C9:C3:AA:34:C1:DD:26:DD:62:88:76:86:25:FC:BC:3C:89
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B190
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9C63F548039611EF836DCD24017001B1.roa
Signing time: Fri 26 Apr 2024 06:31:28 +0000
ROA not before: Fri 26 Apr 2024 06:31:24 +0000
ROA not after: Thu 08 Aug 2024 06:31:24 +0000
asID: 138195
IP address blocks: 154.204.24.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45456 (0xb190)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 26 06:31:24 2024 GMT
Not After : Aug 8 06:31:24 2024 GMT
Subject: CN=662b4a40-f9b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:d9:62:ce:b3:0c:fc:37:3a:cb:b5:43:2c:4b:
93:b5:58:7a:da:63:d0:71:7b:fd:c6:20:17:e7:21:
21:97:e2:e2:a4:45:53:d4:c7:76:a8:f5:6c:ee:4a:
d3:43:94:69:ce:e7:ab:d5:0e:10:52:4b:79:a6:0d:
f2:ba:c2:1a:cc:92:d4:63:b5:7e:bb:c0:09:e5:ad:
b4:f4:a1:b4:17:d3:d4:ed:7f:de:0a:43:a1:71:a0:
f6:8e:56:e0:3d:ac:f3:f3:cf:60:e5:94:62:b4:09:
e3:86:c0:f5:53:e1:64:73:be:8d:50:48:42:9c:05:
60:b9:80:d5:13:ec:a4:ba:1b:51:5d:78:ea:02:76:
a4:5e:21:ea:35:4f:8f:1c:ac:d2:1d:0a:df:e2:7c:
aa:58:a5:36:9f:47:d8:5b:d4:0e:0e:ac:3a:3c:c8:
8d:66:4f:65:0c:a3:3a:17:12:2f:eb:a1:fe:7d:86:
c9:a8:3b:a3:c0:de:6a:48:71:15:4c:7b:97:ec:eb:
fd:9b:b1:31:15:27:28:47:2a:c4:6e:7e:54:0e:8f:
48:4d:28:f3:86:5e:ae:00:8b:ea:e8:5f:29:78:b4:
c3:a0:3d:ff:09:2c:5f:b4:82:9f:8d:23:4f:c8:38:
85:3a:c6:51:c5:18:d1:a4:49:e2:f2:21:20:25:f3:
8e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:77:27:C9:C3:AA:34:C1:DD:26:DD:62:88:76:86:25:FC:BC:3C:89
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9C63F548039611EF836DCD24017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.24.0/21
Signature Algorithm: sha256WithRSAEncryption
36:a6:f4:90:29:53:7f:49:04:ec:c1:ac:d4:f2:76:32:c8:7a:
94:8e:cd:5a:01:ea:43:f0:69:b0:a4:6f:ce:ba:c1:9e:4b:64:
b1:38:1a:d3:d9:50:42:70:2d:b0:ff:45:36:ce:a9:b9:fa:40:
21:8e:dd:57:2c:55:40:c0:82:31:cb:56:45:b3:4a:23:b9:de:
27:54:93:6a:6a:2f:e3:7d:20:3a:b5:37:9b:ee:31:da:29:b1:
1d:a1:30:ff:a2:e7:d5:b1:b9:83:7e:20:59:1c:2b:ca:04:9f:
6e:76:fb:b3:ad:e2:15:42:91:af:71:f2:82:01:de:4d:94:8f:
94:df:53:27:f2:4d:3c:2b:70:4d:45:0d:e2:80:e2:bf:3d:8b:
36:85:1d:aa:d9:c8:21:56:fc:07:3e:f9:00:f3:ac:75:a3:6a:
b1:d9:a4:43:06:6b:e1:05:ee:fa:28:7e:07:79:65:6e:2e:31:
d5:10:a5:9a:1a:ad:82:83:bc:43:24:3a:06:61:dd:b2:f9:c5:
7a:d6:99:61:02:74:03:de:87:8d:b1:b4:a8:ad:2a:85:ea:f4:
87:82:36:a7:ed:96:1f:79:9f:cd:3c:79:b4:bd:67:78:6d:2e:
4d:13:cc:ed:03:8a:97:2b:1a:32:b7:6c:5c:35:20:ee:79:19:
3c:d8:10:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:27 2024 by rpki-client on console-ams.rpki-client.org