Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C0AC67740B5B11EF854E5FF5007001B1.roa
File: C0AC67740B5B11EF854E5FF5007001B1.roa (raw, json)
Hash identifier: ftifSxZu7UrFQf8BZPCc4MrcWbNlOI5ukx2cM3jXSnQ=
Subject key identifier: 47:22:FE:88:4E:E3:04:81:A6:9F:B9:1A:55:AD:71:6F:55:7E:1E:38
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B4E6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C0AC67740B5B11EF854E5FF5007001B1.roa
Signing time: Mon 06 May 2024 03:50:17 +0000
ROA not before: Mon 06 May 2024 03:50:14 +0000
ROA not after: Tue 11 Jun 2024 03:50:14 +0000
asID: 138915
IP address blocks: 154.203.139.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46310 (0xb4e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 03:50:14 2024 GMT
Not After : Jun 11 03:50:14 2024 GMT
Subject: CN=66385379-1b64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0e:d9:c7:0c:c1:26:b4:d1:46:74:20:3e:60:
24:64:e4:d5:28:27:07:c1:62:f0:ec:d3:69:ac:98:
c4:61:d0:15:34:b4:7b:a0:94:83:8c:ad:2a:12:4a:
54:cc:82:34:d4:9b:5c:dd:8a:17:f6:50:1a:47:f8:
ba:9d:46:00:dd:b8:ae:15:97:04:56:73:a2:89:47:
61:6d:22:7e:ab:b0:7a:3c:63:ce:55:86:41:fd:09:
34:4e:1a:37:dd:3e:68:86:ff:fc:4e:ec:73:4e:26:
96:61:74:52:87:2e:ff:3e:87:37:9b:bd:59:c4:6e:
81:c7:eb:5f:af:20:cb:b5:3e:99:81:09:27:b7:31:
4e:fe:92:a1:5a:8f:79:fb:f5:08:6a:4d:7b:0e:0f:
00:f8:33:a1:8f:11:ac:a9:66:92:e9:2f:a6:23:86:
83:62:7c:d5:e8:23:af:56:e3:61:1e:d9:8a:b3:11:
31:0c:b6:91:ae:69:d5:2e:f6:11:54:5c:ef:7a:ab:
f8:c3:97:5b:c0:04:59:98:d6:b7:b8:47:53:ea:01:
18:91:dd:a1:df:cd:6e:0c:0a:8c:e3:ff:0d:2f:85:
de:e6:e6:9b:c1:5f:7a:ea:f5:de:cd:01:12:19:97:
97:90:a6:a9:dd:11:c8:e1:6c:75:62:62:66:10:a8:
09:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:22:FE:88:4E:E3:04:81:A6:9F:B9:1A:55:AD:71:6F:55:7E:1E:38
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C0AC67740B5B11EF854E5FF5007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.139.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:be:a4:55:22:b9:20:46:79:50:0f:99:d9:99:31:e7:eb:32:
48:4b:93:5c:47:c5:e4:f7:63:cd:76:17:a5:06:ea:22:41:18:
9d:c7:f1:1d:a8:5e:a9:b0:c6:f1:a0:cc:b4:f7:72:6b:5a:57:
e3:0e:d2:ce:07:da:36:02:5f:ce:88:65:4d:87:5c:c9:d8:b2:
06:68:c8:0a:37:7e:7b:74:98:4f:84:43:92:4f:d3:aa:4c:86:
ba:b2:ca:eb:31:b6:e8:62:12:51:84:3f:e9:e1:8c:24:03:54:
d7:c8:3c:43:bc:b2:31:ac:e3:e8:17:88:04:05:1b:4a:a3:e8:
67:a0:f1:73:f4:8f:17:a4:3a:98:1b:b8:df:dd:a1:e2:32:a9:
81:c1:6e:9f:fb:7f:25:54:c3:12:3e:f2:c8:e2:d2:9e:03:5b:
f7:03:e3:89:28:7b:32:d6:30:0c:42:8d:cd:7c:f5:49:e3:11:
fa:fb:ec:37:95:9c:26:b5:91:ac:0f:44:41:f9:44:af:6f:d8:
52:da:fd:c9:d2:49:60:2b:ec:29:52:be:59:38:0a:ff:d4:a1:
f9:29:cd:cc:cf:b9:35:e9:18:e6:7b:0e:7b:a5:31:cd:15:8a:
a1:84:a5:8a:b7:ed:74:ae:d9:2a:6b:4a:32:8c:fa:cb:0b:57:
bb:c7:40:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:29 2024 by rpki-client on console-ams.rpki-client.org