Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B4B93D12056011EFB5D7123D017001B1.roa
File: B4B93D12056011EFB5D7123D017001B1.roa (raw, json)
Hash identifier: PP6s5AbCKDX73Zw3i3/nLwdQkOX9NKCXjIhNgWvjOjc=
Subject key identifier: 85:4F:04:CF:C1:CE:7F:8A:BD:A6:E8:29:6C:0C:15:A8:79:C4:77:A6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B1C3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B4B93D12056011EFB5D7123D017001B1.roa
Signing time: Sun 28 Apr 2024 13:10:38 +0000
ROA not before: Sun 28 Apr 2024 13:10:35 +0000
ROA not after: Thu 06 Jun 2024 13:10:35 +0000
asID: 142286
IP address blocks: 154.89.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45507 (0xb1c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 28 13:10:35 2024 GMT
Not After : Jun 6 13:10:35 2024 GMT
Subject: CN=662e4ace-8d31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:75:5b:50:75:48:02:34:b9:ea:c5:17:20:08:
27:e9:dc:89:65:02:06:60:80:5a:a1:67:43:9e:27:
a0:8f:3e:01:4a:8c:10:73:89:c0:cc:15:5f:61:85:
91:d3:aa:86:5f:8d:0d:bf:e5:af:2a:0c:3e:78:54:
9f:66:cf:2f:57:cc:15:b6:f6:88:e7:b2:8f:5a:f7:
b5:ba:16:e8:ba:05:a2:e3:6b:33:b0:59:c6:d5:91:
ab:23:eb:df:70:cc:9c:1c:f1:19:db:50:17:91:35:
e6:93:f9:90:2d:66:0b:8f:b4:3a:2f:12:e4:84:75:
55:43:86:aa:a2:ea:59:30:42:18:6b:bf:9f:72:25:
c0:54:b6:75:fb:2a:eb:70:eb:1c:da:4e:b9:a7:bd:
53:65:0e:16:c1:e9:69:68:e2:df:24:7b:c6:0e:95:
67:66:89:47:e3:b7:55:65:5d:5b:70:2e:cd:4d:c5:
e1:d9:04:bb:74:a6:7a:29:d6:d5:83:96:0f:09:bb:
f6:58:62:47:7a:43:d6:3e:01:ed:3d:10:7a:c2:da:
0b:b4:7e:44:b6:fc:7e:4a:b2:8a:e9:9e:7e:51:92:
ed:ef:3c:64:9d:8d:87:fb:ea:d6:a7:57:75:eb:39:
54:66:67:b1:be:a9:9a:ca:6d:b9:6c:7a:da:8c:d1:
5b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:4F:04:CF:C1:CE:7F:8A:BD:A6:E8:29:6C:0C:15:A8:79:C4:77:A6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B4B93D12056011EFB5D7123D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.64.0/18
Signature Algorithm: sha256WithRSAEncryption
2c:ee:73:b6:a2:76:cf:41:0e:d8:0e:0c:c0:2f:63:57:39:8b:
9d:82:0c:7f:f3:b9:2a:13:1e:06:70:03:ed:b2:08:eb:87:20:
30:67:4f:8e:3c:cf:ef:d0:25:45:a7:81:ec:7e:a5:40:2e:f2:
60:db:0c:8a:e6:3d:a8:cf:59:fc:9d:c5:79:51:5d:c7:cb:73:
86:10:84:f2:d0:77:58:26:f7:20:39:b8:87:09:dd:20:27:2c:
1c:14:49:e3:58:1a:3e:08:3e:6b:ba:a6:dd:2b:3b:24:03:34:
3b:25:f4:ee:45:05:6c:64:00:9b:fe:e4:cc:31:54:2d:97:1f:
2c:1c:44:75:7e:fa:a7:81:05:91:b6:22:7d:b5:5a:7a:d3:15:
57:17:31:6a:14:ff:5d:5e:68:00:84:79:bd:c7:2c:19:21:cd:
03:ee:f7:67:f2:ee:9b:8e:cf:14:db:d7:19:8f:41:68:ce:70:
f8:cd:1e:e5:29:af:7e:2a:79:b6:1f:c3:2e:9b:8d:15:0b:20:
40:ec:91:86:20:e4:70:32:36:6e:26:79:ae:c1:a2:a6:25:9e:
d0:8b:99:9e:d1:04:aa:82:81:a1:1f:f1:cf:47:86:17:17:e9:
35:f1:2f:00:61:90:5d:7b:bc:66:e3:0d:70:ab:bc:a7:b0:06:
c0:04:63:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:29 2024 by rpki-client on console-ams.rpki-client.org