Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C653D6C6061011EFA4CBD958017001B1.roa
File: C653D6C6061011EFA4CBD958017001B1.roa (raw, json)
Hash identifier: nW/5wk5bb962lHrhqldFiNF8YxgBHi3wLUG2jzOjRos=
Subject key identifier: 78:99:01:D0:E9:56:D2:7A:99:04:EF:7B:5A:14:43:D1:66:CE:47:67
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B22E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C653D6C6061011EFA4CBD958017001B1.roa
Signing time: Mon 29 Apr 2024 10:10:59 +0000
ROA not before: Mon 29 Apr 2024 10:10:55 +0000
ROA not after: Fri 07 Jun 2024 10:10:55 +0000
asID: 138915
IP address blocks: 154.223.62.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45614 (0xb22e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 10:10:55 2024 GMT
Not After : Jun 7 10:10:55 2024 GMT
Subject: CN=662f7233-ba93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:f0:04:30:c4:48:c5:18:0b:08:1a:94:1a:01:
f3:7a:c5:e3:66:37:19:91:72:82:6c:13:96:02:1d:
62:92:ac:9d:4f:d4:9e:68:6e:99:81:5c:74:c9:29:
fb:ec:d1:15:b6:4f:a4:ec:19:9d:2d:3c:84:53:c7:
23:98:d7:98:ad:30:b6:19:ed:96:d0:05:14:d1:8a:
48:f3:d9:7f:48:59:b1:7e:77:92:88:62:af:d8:39:
68:3e:b4:f3:66:38:17:a1:5e:66:19:3a:60:bc:ed:
2a:a1:35:4b:c2:9f:89:80:7b:0a:99:b9:e6:5f:ea:
a4:cd:2d:c4:13:ec:37:28:43:e6:0f:56:ad:4b:f2:
c2:ad:2c:d8:7d:c5:eb:9d:c3:cf:88:b1:2c:39:e4:
41:bd:1d:ed:5e:e3:ef:4c:53:9f:e5:35:e5:18:6c:
50:9a:7e:8e:51:e9:b7:e5:1c:44:80:bd:c7:92:90:
49:9c:fd:e7:e5:94:6a:47:1b:e2:8a:d3:49:da:39:
15:b2:44:80:21:00:b3:da:8c:5b:e5:f3:e8:b9:db:
a0:3e:61:ca:fc:96:19:58:65:22:f6:33:28:eb:55:
b1:3e:d2:ca:d4:9e:f0:12:37:af:54:67:72:ff:57:
80:69:56:3b:21:ce:2e:ca:e7:05:43:cc:d7:bf:89:
2b:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:99:01:D0:E9:56:D2:7A:99:04:EF:7B:5A:14:43:D1:66:CE:47:67
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C653D6C6061011EFA4CBD958017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.62.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:84:da:a8:4c:3a:93:4a:03:2a:b4:98:22:83:2c:a5:e5:ee:
a3:a9:f7:e0:a8:62:2a:ad:90:c9:4d:bb:42:88:b7:f8:c3:4e:
c0:7f:c3:12:b8:a3:51:ff:fa:0c:3a:46:da:26:0c:db:36:90:
7c:49:01:6b:af:27:4f:cc:5f:9b:89:b3:1a:85:3b:e9:fd:a8:
2f:70:60:66:49:5a:7d:cc:d8:f5:a0:1b:b9:68:e1:77:61:e1:
75:14:b3:38:6f:0e:64:66:6e:e5:16:9d:84:28:cd:2d:18:3b:
34:d6:82:f2:e2:be:d7:4f:ac:42:5f:1b:2e:f6:97:55:eb:7a:
c3:50:79:15:04:63:f4:dd:18:68:32:89:71:55:44:7f:7e:62:
22:59:b1:30:74:10:20:0e:38:1e:69:aa:ed:a2:d3:8b:b8:6c:
d4:f3:a9:ce:3b:39:aa:9c:99:28:cc:65:ce:c3:e5:a7:90:d7:
a4:ee:b5:d3:53:55:c8:ba:35:4e:15:ba:a7:2f:55:65:8d:30:
df:31:b8:5f:78:29:a5:00:4c:77:f5:d3:91:3e:fc:36:6d:82:
ee:4c:bb:fa:21:30:eb:ea:55:8e:03:90:64:32:89:69:05:60:
e9:4c:36:ac:9b:a8:f4:7a:87:5f:8f:58:a1:27:88:73:bc:7f:
48:dc:2d:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:30 2024 by rpki-client on console-ams.rpki-client.org