Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A6AF2748008011EFBE363BFB007001B1.roa
File: A6AF2748008011EFBE363BFB007001B1.roa (raw, json)
Hash identifier: wS/MLeGod9R3XDfOFaC/w/+CnbrdeQfsUVlDEZczzSk=
Subject key identifier: 77:A2:36:4B:EF:72:D7:66:B4:E6:B2:A4:C0:A6:2B:B5:D4:BA:05:04
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AE9E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A6AF2748008011EFBE363BFB007001B1.roa
Signing time: Mon 22 Apr 2024 08:16:42 +0000
ROA not before: Mon 22 Apr 2024 08:16:39 +0000
ROA not after: Tue 04 Jun 2024 08:16:39 +0000
asID: 140869
IP address blocks: 154.81.39.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44702 (0xae9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 22 08:16:39 2024 GMT
Not After : Jun 4 08:16:39 2024 GMT
Subject: CN=66261cea-864a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c7:49:5a:89:5a:13:74:b4:1c:f2:68:c7:19:
90:0a:43:e0:50:a6:17:15:d4:aa:bf:fb:e0:2d:7f:
af:7b:fd:30:d2:3a:cd:b2:29:64:51:2e:c3:fc:ef:
a6:60:46:52:34:85:09:84:4c:9d:ca:f8:c3:7e:ba:
48:02:bb:8e:74:74:d8:01:c8:40:05:82:47:15:44:
ea:db:b7:a0:8b:a6:25:a8:e2:75:51:74:ea:0b:45:
f8:e2:fe:8f:c6:91:2e:9d:55:57:95:77:84:96:a0:
f6:e2:b2:9f:b0:13:2d:14:1e:0c:fd:c6:b4:a2:29:
b1:22:49:b5:81:92:1c:98:b5:d8:b4:01:82:a8:07:
82:00:0b:4a:cf:02:e2:03:69:d0:04:96:5c:4e:4d:
15:5a:e7:1e:20:93:92:fe:57:74:d3:39:f1:51:0a:
80:f8:e7:13:f3:e5:d3:8f:11:cf:2e:b8:62:cd:6a:
0f:32:77:03:d4:c4:78:19:7a:fa:e4:f1:ae:5f:90:
dd:8a:04:b2:98:a2:04:85:13:d4:62:6a:e9:49:91:
58:e1:ca:5b:92:28:36:93:bc:9f:25:27:ad:20:61:
5a:8b:fe:7c:34:48:91:23:35:16:43:4a:23:56:c2:
25:b2:89:d2:dc:f9:bb:d6:09:81:41:1b:6d:b5:8f:
cc:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:A2:36:4B:EF:72:D7:66:B4:E6:B2:A4:C0:A6:2B:B5:D4:BA:05:04
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A6AF2748008011EFBE363BFB007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.39.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:b6:2c:a9:1a:a9:44:17:f4:a5:f8:97:51:39:05:39:7e:48:
ae:66:6d:5a:ef:91:0a:fc:1a:24:f8:e3:d9:f8:ae:29:71:11:
67:00:95:27:51:c4:ff:f0:dd:8b:3b:f6:c3:11:bf:4a:71:23:
58:fd:58:3b:da:7c:32:76:41:70:c2:25:d3:0a:79:87:2c:f8:
07:df:03:4f:e0:32:d3:40:51:b0:ad:e9:46:31:2c:30:3f:a9:
b2:42:71:db:be:0d:d5:f0:a6:5c:d9:eb:f6:61:15:23:d4:d5:
ab:e4:37:88:96:12:75:2d:20:c5:f6:cd:04:c2:c0:ea:74:e6:
d3:32:d2:7d:4a:24:a8:b5:8c:86:7a:93:94:3f:ae:54:31:df:
45:aa:67:97:96:ef:8f:60:e7:5f:0d:ef:6d:8a:83:eb:bf:f0:
f6:ee:d1:6a:da:3b:b8:67:ec:37:c3:52:5b:2b:12:ca:52:ed:
b6:da:f2:3f:48:eb:c5:7c:15:a1:d9:c7:04:54:15:f5:c0:21:
87:9a:08:cc:47:72:d6:cb:f6:99:b0:74:ec:93:3d:dc:b2:30:
b9:e0:cf:52:15:fb:b4:b8:59:d9:e4:96:f3:b5:df:09:f1:75:
c0:14:25:f0:01:8b:c7:2a:63:18:42:ab:8a:d4:74:46:69:77:
b8:20:78:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:21 2024 by rpki-client on console-fra.rpki-client.org