Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B0B0628E038711EF82EEB12B017001B1.roa
File: B0B0628E038711EF82EEB12B017001B1.roa (raw, json)
Hash identifier: utC3jQzSvtMkTwKsJz9sru4qB1YLjcLQhb0z6rNaWr4=
Subject key identifier: E6:75:F5:12:CB:57:38:95:A0:43:4B:85:66:BA:2D:8C:5D:F8:0E:C6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B166
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B0B0628E038711EF82EEB12B017001B1.roa
Signing time: Fri 26 Apr 2024 04:44:39 +0000
ROA not before: Fri 26 Apr 2024 04:44:36 +0000
ROA not after: Mon 03 Jun 2024 04:44:36 +0000
asID: 135097
IP address blocks: 154.204.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45414 (0xb166)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 26 04:44:36 2024 GMT
Not After : Jun 3 04:44:36 2024 GMT
Subject: CN=662b3137-e349
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:da:cb:19:7b:ca:12:ca:34:03:94:fe:c3:8b:
6b:14:de:7e:ae:8c:64:ac:d0:a7:31:91:28:7c:9d:
c9:30:db:37:18:1f:4a:6e:55:b0:10:58:10:63:05:
f2:52:a5:3f:ee:38:90:6a:af:07:02:5a:ed:b1:8d:
6d:86:85:98:f6:8a:c9:d7:e9:1b:cb:f5:a6:ba:a7:
85:f4:8b:03:a7:1c:5d:f5:08:55:2e:fd:00:60:db:
56:73:24:63:ad:ef:8d:84:19:a0:f2:fb:76:62:75:
75:0c:d9:bb:44:36:9c:90:1d:ac:6c:52:13:5b:12:
9d:12:c1:48:02:a3:ac:d2:5c:ea:2c:07:5d:5e:23:
aa:1d:2a:e4:3f:28:5a:79:d2:2c:90:08:7c:aa:7b:
2f:17:60:cf:97:e2:3d:55:3b:3d:54:7c:ff:fd:84:
2c:e6:f6:c5:ae:5b:0c:a3:cb:98:0a:3b:ae:f8:72:
24:8c:8c:c0:21:5e:5e:ce:00:94:3b:92:c4:59:4d:
f1:67:73:51:4b:db:29:94:c4:e6:8f:3c:b9:0c:99:
fb:12:e5:e0:bf:5e:b7:9f:ba:b1:8e:e5:b9:b6:59:
65:8a:46:59:62:e3:07:40:06:79:02:e0:79:dd:ec:
e6:59:b5:74:f5:5d:fc:b1:17:18:9a:52:d4:5c:36:
e2:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:75:F5:12:CB:57:38:95:A0:43:4B:85:66:BA:2D:8C:5D:F8:0E:C6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B0B0628E038711EF82EEB12B017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.192.0/18
Signature Algorithm: sha256WithRSAEncryption
8a:71:18:5b:b9:9c:6b:07:99:07:80:a0:c0:92:fc:9c:1b:33:
71:e4:53:fb:4c:fc:32:3f:b3:fa:46:ab:73:75:44:8b:11:74:
ae:13:06:7c:25:5c:7c:0f:c7:a6:45:28:c5:6b:2f:f7:d8:5b:
be:4f:e4:50:17:d4:1a:f3:e2:3b:e5:56:5d:6f:1c:ac:30:90:
32:04:7d:c8:93:51:da:e4:c6:d6:6c:94:8d:45:eb:a0:6c:09:
da:c2:d1:68:e5:ae:17:90:41:08:be:89:9a:69:4f:c4:21:e0:
31:0d:74:95:69:3a:a8:a1:2f:2d:50:44:66:ce:75:3c:f1:fd:
24:89:0a:35:c9:a2:98:4a:3e:5e:77:95:9e:57:f0:46:dc:c8:
a2:c0:cd:2a:59:2a:09:85:5f:11:ff:00:64:5b:14:5d:62:bb:
dd:09:72:e0:e0:06:88:a0:68:8a:72:8e:f2:b0:7f:b0:5b:4b:
be:b7:7a:54:4f:bb:8a:eb:f3:7f:73:e7:d2:f2:f0:15:f2:5a:
22:d2:21:04:94:1e:0e:b2:c6:34:1a:34:a3:62:eb:fd:0c:5d:
fb:da:86:09:1f:ae:d5:c3:e2:50:8c:50:8c:42:47:09:25:fd:
d3:08:c2:94:72:1d:92:e7:aa:7f:36:56:f7:c4:ce:d1:37:de:
c1:b7:c7:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:22 2024 by rpki-client on console-fra.rpki-client.org