Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DBB74EAE0B5011EFBC0B8317017001B1.roa
File: DBB74EAE0B5011EFBC0B8317017001B1.roa (raw, json)
Hash identifier: yinG0O1MBsEGYquVCO7CpwmYRkc5E6fB+3kxeOp7qSc=
Subject key identifier: 00:0A:9A:CC:E0:7B:5D:37:84:94:50:5F:1B:C0:CE:B4:7E:FE:73:9D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B49C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DBB74EAE0B5011EFBC0B8317017001B1.roa
Signing time: Mon 06 May 2024 02:32:18 +0000
ROA not before: Mon 06 May 2024 02:32:15 +0000
ROA not after: Tue 11 Jun 2024 02:32:15 +0000
asID: 138915
IP address blocks: 154.205.131.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 02 Jun 2024 00:04:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46236 (0xb49c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 02:32:15 2024 GMT
Not After : Jun 11 02:32:15 2024 GMT
Subject: CN=66384132-1976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a8:d6:24:a8:9f:ed:54:ec:26:04:7f:42:68:
95:77:24:75:7e:11:41:0b:58:a1:9c:e7:b1:8c:1a:
d6:c7:6a:7e:5a:78:7c:dc:fe:40:61:f3:da:c0:59:
9a:b1:07:8f:53:7f:fb:82:41:86:3b:e2:17:04:51:
05:6c:a0:fb:42:0f:08:03:dd:b4:a0:5e:ab:a6:f2:
8d:56:3c:b9:ed:d1:35:15:15:5f:21:01:6d:8c:32:
39:b0:1a:79:f2:3d:94:e1:06:7d:8f:df:8f:49:67:
f6:21:ce:e0:10:84:d9:54:21:f6:b0:b7:32:54:72:
0c:16:01:68:e2:d0:8d:70:d9:b3:58:b3:90:25:7e:
56:d9:61:e3:35:f1:fb:34:b1:19:27:79:44:dc:0d:
ac:c3:75:c7:83:35:d1:57:b4:bd:fe:ae:39:c9:ee:
9c:85:45:cd:4a:16:0e:79:4c:d7:8a:68:20:d6:f7:
54:a3:99:ca:c3:09:28:0f:23:4d:4f:cd:e5:35:89:
56:1e:d0:b6:15:42:66:9b:d7:2d:3a:c9:99:a1:7a:
47:93:c3:00:7d:41:dc:d1:18:3d:4b:71:00:24:0c:
e6:4a:99:2c:1c:69:7c:f6:c4:db:54:47:fe:44:61:
61:5d:27:99:ae:96:c8:59:7c:58:65:c1:1a:6d:5c:
7f:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:0A:9A:CC:E0:7B:5D:37:84:94:50:5F:1B:C0:CE:B4:7E:FE:73:9D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DBB74EAE0B5011EFBC0B8317017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.131.0/24
Signature Algorithm: sha256WithRSAEncryption
99:25:99:68:55:53:4d:74:5f:af:06:21:33:f7:42:82:2d:14:
26:2d:93:c9:b9:d3:f8:ac:83:65:b6:31:79:0f:1e:57:a0:42:
99:2b:d0:66:87:11:19:cc:1c:01:d3:5a:c9:3d:4d:3c:b4:c8:
63:d6:1f:68:c0:3a:69:73:16:2c:67:b9:5d:72:2b:8f:6f:c4:
fb:ab:34:40:bb:98:f3:d1:56:a2:c3:90:ee:d2:20:35:6d:95:
df:ec:e5:c9:31:51:a4:30:d8:44:da:cf:08:0c:a4:15:85:ef:
57:e9:35:f9:0a:41:ee:7a:ad:ca:60:24:4d:0c:93:ca:d4:22:
d4:dd:c3:4e:59:02:7d:36:88:3d:56:d7:68:f6:8f:7c:7e:cb:
96:f4:0b:12:1f:89:0e:68:33:ce:cb:57:02:ba:96:c2:ab:e0:
ba:02:b6:ac:01:12:d7:94:ee:21:7b:c6:0f:e9:25:30:c4:dd:
c6:30:ad:3e:01:57:db:51:99:56:93:98:d3:a3:b0:2c:69:97:
e5:dd:3f:01:92:0f:e0:71:c4:d6:00:50:36:99:fa:b3:1e:5d:
6c:a9:09:d9:fe:a7:da:b7:1f:0b:ae:61:d7:bc:8f:cb:c7:72:
9b:aa:ed:8b:73:dc:fa:dc:7e:2a:3c:e7:8a:d2:92:38:eb:e1:
6d:8e:02:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 13:04:08 2024 by rpki-client on console-ams.rpki-client.org