Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BBF7B0261E5211EFAF8094587DDC24C2.roa
File: BBF7B0261E5211EFAF8094587DDC24C2.roa (raw, json)
Hash identifier: 6T0jcBDv+Sx7rRdLoCUvOY3igxrYiKrY5MstTa+USQg=
Subject key identifier: 99:D4:96:1E:5D:33:A9:53:DD:61:74:DC:2A:A2:EB:D1:61:C4:2B:40
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: BBFC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BBF7B0261E5211EFAF8094587DDC24C2.roa
Signing time: Thu 30 May 2024 07:03:36 +0000
ROA not before: Thu 30 May 2024 07:03:33 +0000
ROA not after: Mon 01 Jul 2024 07:03:33 +0000
asID: 44559
IP address blocks: 154.209.144.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 28 Jun 2024 06:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48124 (0xbbfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 30 07:03:33 2024 GMT
Not After : Jul 1 07:03:33 2024 GMT
Subject: CN=665824c8-19cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:54:51:47:ac:84:74:16:ac:5d:8d:bc:d9:3d:
19:50:a6:96:e4:c9:74:ac:73:a2:c1:1f:58:83:1d:
8e:de:2a:7f:8a:c6:bc:3b:bc:6c:d5:f1:fd:09:ee:
9a:9d:07:08:f2:ad:fa:3d:83:66:31:6a:70:05:8d:
2f:68:71:60:4d:e1:7d:b0:e8:a2:95:0b:09:19:57:
3c:b9:4f:19:a3:4b:a6:d7:4f:3a:54:67:06:92:5c:
0c:6b:90:5e:42:2b:95:f1:57:30:54:11:a3:39:08:
69:34:88:44:0f:b1:a9:db:1e:8e:32:f9:2a:41:8e:
60:fc:ce:b2:60:c0:fb:fd:d7:b9:e9:d8:07:c2:b7:
94:f9:02:e3:16:5e:9c:35:a4:72:d7:f3:25:00:f2:
2b:7c:c1:8e:35:eb:74:25:4d:26:ad:e4:ee:4b:e6:
1a:15:a5:db:78:1f:5b:10:d8:e6:49:ad:6f:e4:cb:
07:2a:a3:c2:8a:9f:68:40:1b:84:dc:77:e9:ac:f1:
2b:3b:05:4f:32:74:74:7e:a7:78:a7:84:90:27:b4:
d3:19:08:6a:0e:c3:87:4b:b3:27:28:5b:b7:35:91:
5d:c6:f3:c7:2e:f1:05:20:34:85:bb:23:7f:5e:8f:
bf:6f:95:27:5a:73:89:bb:f3:20:15:74:3b:fd:69:
60:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:D4:96:1E:5D:33:A9:53:DD:61:74:DC:2A:A2:EB:D1:61:C4:2B:40
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BBF7B0261E5211EFAF8094587DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.144.0/23
Signature Algorithm: sha256WithRSAEncryption
45:47:ef:6a:a0:17:79:5d:17:49:b6:07:c9:6f:c0:69:70:cf:
58:5b:08:ca:c2:08:55:0b:d2:c2:57:a3:12:54:c7:23:8f:74:
f9:e2:7d:8c:de:af:5f:ac:cc:8c:bd:ec:6f:18:2f:d6:b3:5f:
cf:d0:e5:86:e9:1f:68:2c:c9:dc:60:98:ad:1e:94:0a:89:40:
8b:ac:38:fc:d0:08:0c:29:4b:37:1a:d6:23:5e:c5:2f:0b:c8:
a4:47:18:e1:a0:95:50:3a:87:c2:02:a9:0f:e1:4b:ae:8b:f6:
65:aa:0e:9d:ed:81:35:18:af:1a:6d:e4:99:88:af:53:43:3a:
ba:dc:a8:98:3e:9b:48:b5:64:20:9e:9a:ec:c6:ac:98:1b:6b:
7f:6d:bf:c5:1f:9f:8a:27:b1:b4:3a:36:0c:02:42:88:8d:c1:
56:80:f3:20:db:93:88:7d:2a:2c:26:67:3a:63:8d:85:e8:26:
3f:a8:00:9e:14:c8:12:4a:a8:dd:27:7e:11:4c:ac:ca:2b:c1:
e0:47:fd:58:df:8d:63:dc:10:ad:da:da:7d:12:91:2c:75:98:
40:4d:3e:fd:53:7b:f2:5a:ed:fe:e7:87:53:d6:19:0b:dd:9d:
7c:8e:18:a3:dc:1b:96:f0:cd:57:45:4b:e1:f6:12:59:01:d2:
22:c9:68:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 08:13:35 2024 by rpki-client on console-ams.rpki-client.org