Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C36CCFD4061111EFB71CE862017001B1.roa
File: C36CCFD4061111EFB71CE862017001B1.roa (raw, json)
Hash identifier: 2OzlhPqsbtbXrRRSbGzmDSafbjseytpXFGMu/5kvdDY=
Subject key identifier: B6:0D:DB:D0:0F:74:CB:18:22:1A:F8:20:C0:85:BA:61:E3:CF:82:A9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B23C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C36CCFD4061111EFB71CE862017001B1.roa
Signing time: Mon 29 Apr 2024 10:18:03 +0000
ROA not before: Mon 29 Apr 2024 10:18:00 +0000
ROA not after: Fri 07 Jun 2024 10:18:00 +0000
asID: 138915
IP address blocks: 154.223.20.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45628 (0xb23c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 10:18:00 2024 GMT
Not After : Jun 7 10:18:00 2024 GMT
Subject: CN=662f73db-b9ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e7:8d:48:51:c7:9a:a9:2f:1f:d4:68:40:2f:
2f:21:cf:55:10:15:81:af:f1:67:d7:d1:34:82:60:
34:b5:fa:f4:23:a8:65:24:35:3f:12:e0:c3:7a:bb:
bb:a0:eb:b6:a6:3b:0d:03:fb:2e:05:ca:27:c7:81:
8a:cb:d7:30:9e:56:f9:23:11:96:96:85:98:86:22:
13:af:41:91:10:e0:97:42:26:6e:72:82:af:6e:f0:
7d:b8:aa:4a:11:5e:b7:46:3a:14:80:43:3b:2e:f8:
a9:e9:6c:5f:9f:a7:99:3f:85:aa:bc:37:99:88:61:
86:90:ae:13:dd:43:56:59:68:e0:50:4a:f3:42:00:
56:60:27:fe:0b:ba:74:0a:91:f5:40:13:10:8b:3c:
ec:41:23:5f:08:c9:91:19:6a:d4:00:88:5a:c3:ff:
ad:45:7c:12:d0:40:2d:2e:6b:3c:9c:46:08:d8:58:
41:74:b5:85:fd:b8:8e:2f:ff:4a:34:b4:1c:da:0a:
d1:79:f8:43:ae:41:44:d6:9d:6d:8a:d1:b9:7c:7a:
42:b3:56:9d:35:7a:68:a2:49:5d:e4:7f:00:7d:7f:
e1:50:76:73:cf:96:9a:e3:6a:77:81:d9:3b:e2:0f:
19:d0:5e:35:f1:90:5a:42:dd:37:70:e0:fb:ce:77:
c5:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:0D:DB:D0:0F:74:CB:18:22:1A:F8:20:C0:85:BA:61:E3:CF:82:A9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C36CCFD4061111EFB71CE862017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.20.0/24
Signature Algorithm: sha256WithRSAEncryption
05:8e:90:bf:5a:20:8e:8c:a0:02:16:49:e6:bc:18:5a:72:84:
ad:e1:e7:d9:c3:de:e8:f1:8a:15:92:1a:05:47:d3:2e:f2:86:
52:ee:ad:10:8d:4f:09:2f:ea:d0:05:7c:0d:ee:02:68:c1:ad:
cc:e8:68:82:42:cb:78:cf:d6:0d:39:7b:9a:6f:27:5e:1e:79:
6c:24:40:f4:2e:e6:60:4d:8b:2b:cc:d1:86:d5:70:e8:8a:b4:
f4:5a:12:64:57:94:5f:3d:0d:04:4b:9c:fc:2d:d8:3a:63:ac:
03:58:a9:4b:9a:b6:5b:50:8e:66:c8:e7:0f:32:2b:64:1b:e8:
04:9e:75:38:b9:fb:e5:db:f6:c0:a1:ad:fc:0f:34:87:06:55:
3a:1c:d8:f7:29:47:d1:af:e5:0c:09:f6:92:b9:59:9f:6a:5c:
f2:06:c3:da:c5:59:aa:c2:6a:a2:a0:3a:9d:68:58:eb:70:67:
8a:59:74:da:22:d3:16:2f:2c:df:28:59:15:c0:97:3d:dc:5c:
f4:40:ce:e3:fc:0c:78:7c:85:a4:a4:e0:35:43:28:45:e2:fd:
ba:a3:69:d7:8d:5b:fe:6b:d1:dc:85:ff:16:3e:14:71:53:12:
0d:1d:de:26:21:5d:9e:e1:9c:c6:25:91:56:09:c8:f3:a1:82:
67:df:66:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:23 2024 by rpki-client on console-fra.rpki-client.org