Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A4CE46880C0C11EF950E6506017001B1.roa
File: A4CE46880C0C11EF950E6506017001B1.roa (raw, json)
Hash identifier: DiNVIlX4DAeA7dSr+3rJVD4gAj9TSYQ8LD+QKTqyofE=
Subject key identifier: FE:2A:50:E5:A8:85:F6:FE:73:C0:1A:78:AC:1A:8C:23:9A:31:6C:1D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B545
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A4CE46880C0C11EF950E6506017001B1.roa
Signing time: Tue 07 May 2024 00:56:32 +0000
ROA not before: Tue 07 May 2024 00:00:28 +0000
ROA not after: Mon 10 Jun 2024 00:00:28 +0000
asID: 209242
IP address blocks: 154.219.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46405 (0xb545)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 7 00:00:28 2024 GMT
Not After : Jun 10 00:00:28 2024 GMT
Subject: CN=66397c3f-ecab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:4a:38:a1:c6:cc:ed:15:ed:b6:76:0c:34:a2:
c5:41:19:7a:58:e8:0d:b5:4d:85:5d:4f:50:60:c1:
f3:28:84:70:58:39:ce:e7:8f:2b:9c:2c:2f:6d:e0:
a7:1e:7a:84:f1:86:02:f9:66:6b:56:cb:5d:d3:b8:
07:d5:ef:b2:14:c2:58:5f:35:8c:1d:8d:6a:33:4a:
10:5e:c8:db:71:0a:23:f7:97:35:92:dd:f3:6d:8b:
3b:f0:c7:ed:75:e9:05:0a:07:a2:b0:b0:2b:a6:a0:
f7:e8:50:47:cc:ca:b5:be:68:62:b5:74:bb:e5:72:
75:0f:f6:9f:59:bb:5b:7c:7f:97:04:f8:7f:4e:c6:
11:a0:1f:e2:76:74:9a:ae:66:d6:e5:c7:0f:03:f1:
b1:e8:ab:88:1e:cf:d8:12:e4:1c:94:9a:3a:12:5a:
37:b8:02:a8:14:3e:cd:f9:84:51:0b:ae:2f:92:8b:
37:1d:bc:6a:a2:78:c2:28:85:43:95:8c:e7:e3:b2:
01:d9:cc:bf:9b:1d:d6:28:f2:04:f1:c8:7c:15:fb:
fd:f4:11:26:4c:25:69:23:27:e5:06:cb:64:27:bb:
cb:c7:82:b6:25:88:9e:31:3d:7f:e0:dc:30:8a:68:
fd:9c:39:6b:9d:8a:39:a5:94:8d:f1:9c:2f:e4:4d:
94:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:2A:50:E5:A8:85:F6:FE:73:C0:1A:78:AC:1A:8C:23:9A:31:6C:1D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A4CE46880C0C11EF950E6506017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.5.0/24
Signature Algorithm: sha256WithRSAEncryption
72:20:4f:1f:7c:79:52:81:42:fe:b1:fd:54:b7:4d:98:b7:3b:
26:ea:f2:a3:74:3b:05:1d:50:7d:fa:04:50:64:cd:5c:f6:42:
ec:99:87:10:fd:79:39:72:9d:98:70:82:93:bc:fe:1d:99:90:
90:7b:95:31:56:ff:d6:93:c9:00:eb:a1:b2:cc:4b:39:ae:7d:
c3:34:8f:36:56:57:b7:65:38:bb:8a:a3:4a:43:ae:29:91:6d:
a0:2c:37:c2:e8:9b:38:76:da:2b:0b:67:69:9c:40:2a:2a:23:
a9:5b:44:eb:eb:4f:5f:a4:20:a1:a0:b3:05:40:5d:31:4f:1f:
38:2d:00:3f:ab:95:59:b0:da:24:73:47:90:7f:bb:5d:e5:68:
7d:21:82:be:f8:0f:7f:d2:24:e2:6a:be:2a:1d:97:88:b0:45:
de:26:25:2f:dd:3c:2c:e8:e1:f4:37:1c:90:40:7b:38:b7:52:
a0:72:70:c6:4b:24:5d:58:94:a4:b0:66:ca:29:49:63:e0:f9:
1a:0b:f8:91:fd:35:76:7f:1e:1d:41:f1:c4:a2:c4:1f:9c:7e:
eb:80:6f:0f:78:9d:e6:23:9d:e8:24:e7:77:0a:9c:5e:21:fd:
4f:92:e0:f4:28:9c:89:1c:b7:11:2a:f4:58:b9:65:3a:4d:b2:
e5:db:ef:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:21 2024 by rpki-client on console-fra.rpki-client.org