Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CD56B5CC03C911EF9E203E43017001B1.roa
File: CD56B5CC03C911EF9E203E43017001B1.roa (raw, json)
Hash identifier: dXVWktEw/W6D9XnNt3DPuMM9RgTeP+eaJ4z9gVXE4fA=
Subject key identifier: D2:7A:CA:16:58:B3:61:5D:46:00:43:3C:0A:D0:4A:E0:DF:68:F1:7A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B1A8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CD56B5CC03C911EF9E203E43017001B1.roa
Signing time: Fri 26 Apr 2024 12:37:54 +0000
ROA not before: Fri 26 Apr 2024 12:37:51 +0000
ROA not after: Sun 06 Jan 2030 12:37:51 +0000
asID: 328608
IP address blocks: 154.88.8.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45480 (0xb1a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 26 12:37:51 2024 GMT
Not After : Jan 6 12:37:51 2030 GMT
Subject: CN=662ba022-6a45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:90:20:32:11:80:84:bd:c0:d2:69:d0:56:e7:
72:ac:03:8b:41:1f:e2:7c:10:ec:d1:4d:f6:b8:71:
21:3f:da:cc:b8:81:b3:f1:f6:5a:ec:2c:38:e5:2a:
14:2e:f8:e6:1e:f6:95:06:07:e9:74:1d:89:7a:f6:
af:88:f3:dd:21:4b:c3:5f:5b:e1:8b:26:71:d4:00:
42:64:07:1a:b7:e1:e0:94:fc:a0:f0:14:b7:76:b0:
31:4b:c5:b0:a0:42:23:ec:3a:47:f7:0b:dc:1a:fb:
d4:de:9d:aa:1e:16:a6:c1:e6:87:f1:6f:c3:01:2c:
3d:bd:f9:18:b3:22:0f:a2:24:5c:e0:9f:af:68:5f:
aa:ec:d4:cc:27:dd:be:40:21:2b:da:dc:f3:25:06:
da:5b:ba:9b:f0:6f:fc:c1:30:0e:e3:a7:a3:6c:f8:
2c:e5:45:25:f5:90:1c:71:52:7d:05:39:10:c4:fa:
7d:c1:ca:0c:d8:d1:e4:bb:e9:4f:fd:5d:dd:5f:c9:
29:50:bd:80:04:a5:6b:fa:91:94:2f:01:5e:5d:60:
c2:04:1c:de:a0:9e:9d:fb:16:2a:93:b9:23:50:0d:
e8:6b:e6:72:ba:25:2c:05:a8:74:a1:09:ed:40:5c:
aa:f4:7e:dd:fa:cd:8b:48:9e:20:4e:91:cc:49:ba:
92:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:7A:CA:16:58:B3:61:5D:46:00:43:3C:0A:D0:4A:E0:DF:68:F1:7A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CD56B5CC03C911EF9E203E43017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.8.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:fb:ed:f7:ea:6c:03:6a:e1:33:3d:ce:19:8d:fe:6f:1e:05:
2d:d6:d5:d0:e3:bf:1b:1e:83:3b:2d:66:82:a7:5c:89:7f:75:
60:4e:5e:72:6b:db:51:b8:e7:43:27:ef:69:f0:ef:de:a7:a0:
61:fd:d9:6e:21:e4:3f:e3:69:42:f8:d6:d6:0b:aa:3b:97:b0:
f7:a7:86:47:c5:78:72:d3:cb:c2:7c:92:39:09:22:4e:f6:f7:
af:1a:96:6a:ba:cf:77:78:51:1e:c2:d2:50:1e:77:7c:de:48:
7c:3c:63:b4:d8:87:16:f5:16:1d:c1:87:96:ca:2c:7e:0d:27:
46:78:be:e8:af:17:b9:22:79:45:66:72:4f:bf:13:b2:3d:26:
fb:65:a4:6a:0e:71:14:a0:17:d6:e1:cd:3d:fc:e6:57:fc:2d:
26:1e:64:0e:3a:65:96:29:28:80:76:92:2d:ff:bb:07:c2:67:
dd:9f:22:7c:ac:d2:79:93:3c:e6:de:4e:ea:f7:3f:5b:1e:7f:
13:ba:86:29:ac:31:f6:85:81:70:25:4e:38:e2:e5:a7:d0:31:
0b:c0:c7:58:5b:7d:c1:ff:70:a2:14:36:fa:5e:95:6d:ed:6d:
8f:df:a1:7a:8b:2e:3b:5c:2f:98:02:72:6a:cc:8b:b2:c5:3d:
3c:d5:08:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:30 2024 by rpki-client on console-ams.rpki-client.org