Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B5DF7DE20B4A11EFAA8D505F017001B1.roa
File: B5DF7DE20B4A11EFAA8D505F017001B1.roa (raw, json)
Hash identifier: 9++mhrj4LSTWWk71BGO6492YClT4/A5j9m2vVDhNiAo=
Subject key identifier: 18:1F:84:33:53:D2:7E:34:DD:C3:B9:EE:FB:9A:A7:18:3D:29:F3:AB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B45A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B5DF7DE20B4A11EFAA8D505F017001B1.roa
Signing time: Mon 06 May 2024 01:48:18 +0000
ROA not before: Mon 06 May 2024 01:48:14 +0000
ROA not after: Tue 11 Jun 2024 01:48:14 +0000
asID: 138915
IP address blocks: 154.203.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46170 (0xb45a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 01:48:14 2024 GMT
Not After : Jun 11 01:48:14 2024 GMT
Subject: CN=663836e2-b051
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ad:d9:e8:db:a6:a8:67:b0:cb:16:4d:d1:25:
9f:df:33:5b:0d:0d:ea:1e:c5:e5:1c:54:1d:2e:bb:
18:c7:de:9a:af:b0:27:94:83:09:54:6e:be:9c:e7:
49:8c:3a:bc:cb:49:0a:d5:64:8b:bf:36:b2:c5:e5:
84:c8:d9:3b:0e:17:76:b6:cc:54:51:0d:f3:00:ed:
e3:9e:41:24:33:37:9d:64:59:ea:a0:70:5e:69:4b:
5a:c7:9e:01:bd:8c:99:a3:4b:ee:52:ef:3a:8a:66:
bd:25:8e:14:10:90:14:e3:84:f0:7d:79:97:e6:bd:
da:d7:7f:6f:65:19:32:bb:29:48:ba:4b:db:c9:83:
57:69:6b:04:03:67:e9:a0:01:37:68:74:33:24:a5:
8f:4f:f1:a4:32:b3:1b:b9:cb:eb:d6:16:41:99:ee:
c3:5d:1b:65:b3:22:c6:c0:1a:ef:8d:df:09:35:92:
84:4d:b2:8a:5d:fa:b2:11:5d:05:4d:fa:a7:24:b2:
61:7f:e4:39:e3:be:7c:fc:3d:9e:d8:10:28:94:b5:
ad:8e:24:5e:c3:e6:53:63:6c:16:76:7f:65:ed:e6:
ae:da:f4:fe:ca:c7:f8:1e:af:43:5b:32:66:a6:4f:
4b:ae:0c:4a:89:ac:98:49:95:55:02:9c:69:f2:3d:
cd:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:1F:84:33:53:D2:7E:34:DD:C3:B9:EE:FB:9A:A7:18:3D:29:F3:AB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B5DF7DE20B4A11EFAA8D505F017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.141.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:62:d6:95:5b:10:b7:73:81:e2:41:2b:7e:c9:38:79:2c:20:
81:08:10:d1:90:58:69:4e:53:be:7b:45:c3:47:5a:2f:a1:58:
49:cf:2f:65:47:1a:4c:39:78:90:86:0e:00:54:54:3a:0c:56:
ab:19:9c:c6:05:8d:22:fd:a6:a3:af:96:38:5b:b0:79:f6:95:
a7:b4:dd:d1:c2:bc:ad:56:b7:f0:f3:dc:3c:9d:d6:d8:87:1e:
3a:b5:ef:20:6e:ea:1d:74:c8:46:ae:09:aa:5c:35:e5:84:22:
4c:c6:ed:84:b4:32:69:31:6e:07:e3:14:27:85:92:d0:5c:5f:
12:46:4a:65:14:1d:26:b6:6f:7f:5c:b4:13:00:77:37:31:70:
1b:a9:06:7a:1f:40:20:4d:02:a8:58:20:d1:0e:a1:59:12:b2:
69:36:1a:b1:98:d8:b5:46:43:ed:6d:35:98:8a:8e:06:b7:2e:
b0:1d:f0:25:93:43:6d:59:72:07:27:f1:e3:6f:13:7c:83:9c:
42:56:05:32:4d:af:eb:ac:b8:8b:3e:20:f5:2e:4d:48:fa:7a:
dd:7a:c5:bf:f2:e5:e4:9b:ae:98:62:e0:a7:18:0b:eb:5c:4a:
5e:c9:14:2d:85:54:01:66:7b:62:8d:f0:d7:5c:7c:2b:05:b8:
f5:10:cd:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:29 2024 by rpki-client on console-ams.rpki-client.org