Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E0AC8D2802D811EF94F77F1D017001B1.roa
File: E0AC8D2802D811EF94F77F1D017001B1.roa (raw, json)
Hash identifier: C/Nj4pshZU2WrbZDEdwZGrnUo7VJQEYOP1Ua9pndLZI=
Subject key identifier: CC:5F:1F:8A:05:69:06:F1:EE:E7:FA:06:8F:B7:94:FC:95:96:AD:09
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B03B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E0AC8D2802D811EF94F77F1D017001B1.roa
Signing time: Thu 25 Apr 2024 07:53:18 +0000
ROA not before: Thu 25 Apr 2024 07:53:15 +0000
ROA not after: Sun 02 Feb 2025 07:53:15 +0000
asID: 132839
IP address blocks: 154.209.96.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45115 (0xb03b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 25 07:53:15 2024 GMT
Not After : Feb 2 07:53:15 2025 GMT
Subject: CN=662a0bee-2f42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:56:c9:1f:df:31:70:db:d3:8e:99:b3:2b:ef:
cb:4f:41:8d:3f:c3:58:2a:6a:f6:fe:8a:c7:02:4a:
90:f9:89:14:a8:8e:0b:f6:a4:69:aa:0d:33:c4:05:
23:0d:44:fb:d5:00:be:e4:ba:c8:25:7b:ee:43:6b:
b5:a8:a5:4b:9e:ed:17:6a:4d:9c:a8:00:13:1c:f8:
ad:7e:d1:83:ae:0b:9d:4e:cc:64:c9:e4:5c:aa:62:
7e:68:f7:1d:a1:64:50:c4:11:2e:1c:91:fb:38:e6:
00:ef:ae:72:8f:ec:dd:db:1e:e1:60:7a:e6:65:4c:
c2:16:78:0b:5c:4c:50:c1:48:4b:d9:e8:76:cc:9d:
0c:b3:2b:04:a0:5b:63:01:b2:91:78:5b:f4:21:eb:
34:50:cf:4c:39:ed:58:d9:5f:6f:b1:ed:f0:fb:1c:
8d:3c:60:33:26:1f:bb:29:5f:02:cd:65:ae:0a:c2:
5c:df:52:00:20:a6:8e:3b:37:5f:ec:ee:52:12:3d:
30:1c:21:41:1b:fb:3c:4d:e9:0d:cc:bb:20:93:22:
69:15:da:16:15:f0:a9:fa:e4:22:ae:4b:7c:30:af:
53:56:20:1b:61:e7:20:75:00:47:c5:cc:2c:b5:13:
f3:02:21:27:7d:43:e1:83:26:ef:14:5e:52:5c:f6:
5e:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:5F:1F:8A:05:69:06:F1:EE:E7:FA:06:8F:B7:94:FC:95:96:AD:09
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E0AC8D2802D811EF94F77F1D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.96.0/19
Signature Algorithm: sha256WithRSAEncryption
bd:2c:03:91:bd:8d:49:7c:7d:20:31:5b:17:2d:0a:7d:23:e0:
e8:ce:f1:6a:63:52:99:73:db:58:97:aa:d7:13:59:bb:40:0c:
f6:fc:56:6a:2f:77:26:f1:62:d7:c8:52:65:79:f9:5f:be:13:
97:0b:fc:50:d7:57:6a:e0:76:10:cf:cc:da:1e:04:d9:f3:af:
b7:a8:6d:de:7e:a1:e0:9e:7e:0a:49:51:15:18:4b:6e:e0:a6:
c5:d5:40:5b:a3:9d:d7:45:75:66:22:09:d6:d4:b6:a1:38:9a:
30:21:6f:e5:83:05:4b:8d:ff:22:a5:64:43:45:68:f2:16:3d:
90:77:8b:27:cf:c1:0d:31:26:25:ee:c2:74:b9:68:17:b5:fe:
df:95:e3:b7:30:d5:9f:bb:1a:90:79:18:01:bb:59:1d:70:4d:
78:09:a3:d1:d8:3c:ca:4d:6a:8d:72:70:46:92:7b:12:1b:1c:
f3:af:f1:1e:a8:3e:4a:2d:dc:aa:63:17:09:fa:b4:33:78:76:
03:5c:1c:74:14:06:87:5d:0e:4a:75:14:e2:35:24:4c:78:1c:
a0:27:33:c0:f3:2a:28:4e:6c:29:25:7e:7f:9d:12:49:57:ce:
9a:a5:cb:bf:97:f8:e9:91:83:04:9a:72:14:8a:f6:fe:1a:2a:
b3:02:e9:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 08:15:34 2024 by rpki-client on console-ams.rpki-client.org