Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B402C48E196911EF850BBBF9007001B1.roa
File: B402C48E196911EF850BBBF9007001B1.roa (raw, json)
Hash identifier: qkmfGvIglHO32YB04n6QKtVzBpSeg8plGTo8bo3a8v4=
Subject key identifier: 97:48:8A:D6:4E:E2:CE:5E:06:6D:11:F2:69:0F:1D:D9:9B:91:99:C2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: BA2D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B402C48E196911EF850BBBF9007001B1.roa
Signing time: Fri 24 May 2024 01:05:25 +0000
ROA not before: Fri 24 May 2024 01:05:22 +0000
ROA not after: Thu 04 Jul 2024 01:05:22 +0000
asID: 272854
IP address blocks: 154.197.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 28 Jun 2024 06:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47661 (0xba2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 24 01:05:22 2024 GMT
Not After : Jul 4 01:05:22 2024 GMT
Subject: CN=664fe7d5-2875
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:95:7d:fb:e4:5f:60:5b:aa:0e:f4:8e:9d:2e:
4b:96:61:82:e2:1b:5a:32:4c:0b:89:cf:20:db:d2:
86:03:59:7c:e2:5c:a3:02:f1:fe:fe:67:df:b6:2f:
ad:de:4d:59:d1:07:4b:14:5a:42:b9:4c:e6:fd:57:
0e:73:5f:a8:49:cb:d8:48:9c:c2:2c:45:9f:fc:3a:
29:be:b1:0e:51:b5:8f:f5:53:c7:c1:34:0a:c0:63:
a8:86:0f:36:bd:20:3e:b4:4d:e6:7a:9f:ed:7c:cd:
90:69:17:20:68:20:d1:38:33:88:ef:c8:ee:71:34:
c5:22:b2:fc:95:c5:dc:6b:35:2f:9d:b9:30:00:2b:
91:76:1e:b0:c9:3e:ed:07:7e:87:e3:27:5b:18:94:
cb:7b:6c:27:25:11:49:d0:59:94:0b:b6:24:3e:59:
1b:42:11:63:7b:e8:f7:07:87:f5:33:2d:7f:f0:7e:
05:37:05:14:00:28:40:2d:f5:ae:33:85:ec:1d:77:
bb:ee:32:56:b1:66:ce:87:d2:ec:1a:0b:cf:0c:dc:
79:39:cf:21:29:fd:2d:37:5f:63:6b:da:d9:c1:12:
df:f2:4a:d8:a9:70:b8:cf:65:b3:ec:98:04:89:9b:
10:34:90:6b:38:84:c4:24:8d:6d:cd:fc:f8:59:2b:
cf:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:48:8A:D6:4E:E2:CE:5E:06:6D:11:F2:69:0F:1D:D9:9B:91:99:C2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B402C48E196911EF850BBBF9007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.1.0/24
Signature Algorithm: sha256WithRSAEncryption
15:e5:15:68:61:93:85:15:8f:ee:77:d9:51:f5:47:7f:e5:aa:
ed:46:b8:c2:0f:fc:bf:3b:12:bf:27:f2:fd:32:25:2f:2b:33:
06:e9:da:1a:56:84:4e:84:80:fd:e5:2d:52:4c:e7:e7:55:cc:
ce:a9:ce:db:17:5d:65:19:7b:56:57:7c:e4:e0:09:41:ca:57:
b6:53:79:d0:b6:6b:e1:81:3b:a0:59:55:97:5e:1f:f2:54:ae:
db:13:6a:f9:bd:31:2b:98:88:1f:1c:a1:7d:b4:b3:d7:fc:01:
85:f3:2d:47:c8:f1:d0:33:b5:3e:53:71:1d:6d:83:5e:dc:ee:
b2:e8:5c:cf:14:29:c7:e5:c6:00:dc:b5:ec:c1:7a:df:df:b1:
f0:78:62:24:01:c6:55:f6:f2:c6:ea:e7:cd:18:e5:57:ec:83:
8c:b3:b8:bc:dc:76:f3:c5:6a:8b:1c:9e:e0:87:91:71:5f:2d:
52:c7:26:da:47:8a:4c:dc:ef:9f:fb:d2:8a:5d:80:fa:9f:65:
7a:a0:31:c8:66:b6:af:9a:7e:23:98:dc:1f:9f:0c:97:3c:f8:
22:f5:d2:a6:05:97:1a:ed:6f:c8:47:46:24:4f:cb:51:6b:f8:
1d:3a:5a:b9:ae:9a:7e:ac:e9:be:fb:8f:e2:1c:d4:e9:91:22:
54:1d:0e:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 08:13:34 2024 by rpki-client on console-ams.rpki-client.org