Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F54E16100B4E11EF81B68A08017001B1.roa
File: F54E16100B4E11EF81B68A08017001B1.roa (raw, json)
Hash identifier: 88v2fEyJr3FJLMAXnECLRvrALzusI2Cajn2SdZ/ASjs=
Subject key identifier: E0:AF:AA:23:A0:DA:CF:6F:EB:1E:82:C3:B7:E7:11:74:46:24:F5:A2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B484
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F54E16100B4E11EF81B68A08017001B1.roa
Signing time: Mon 06 May 2024 02:18:42 +0000
ROA not before: Mon 06 May 2024 02:18:39 +0000
ROA not after: Tue 11 Jun 2024 02:18:39 +0000
asID: 138915
IP address blocks: 154.205.144.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46212 (0xb484)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 02:18:39 2024 GMT
Not After : Jun 11 02:18:39 2024 GMT
Subject: CN=66383e02-7582
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:97:aa:2d:fd:06:28:1b:6f:cd:5e:7e:1f:0c:
df:09:01:c1:3c:a5:e5:c8:c0:e1:8f:22:ae:de:a9:
5b:42:b8:e2:bd:db:0e:1f:9f:5b:5e:58:7b:ed:74:
20:fa:1c:35:ff:5e:93:eb:89:12:52:ea:2a:f7:11:
02:91:56:c6:32:9d:cc:21:b0:0d:da:23:30:21:2b:
b9:6b:88:eb:e8:0c:1e:d8:50:38:2f:8f:00:66:d1:
c7:ec:3d:68:80:48:28:cc:cb:a9:4a:49:fc:0c:5e:
98:e5:b6:dd:63:bb:c1:cf:37:6c:47:85:e2:4d:2d:
ba:9b:57:d7:dd:4e:74:60:7a:ed:e2:11:c6:a3:de:
b7:9d:95:3d:bd:79:86:6b:81:4e:2c:0e:3e:b9:1a:
30:c0:01:e2:c5:57:3a:30:71:da:c1:5d:29:87:89:
02:1c:cd:27:1b:26:16:a2:15:d4:db:a1:05:be:63:
ca:46:1b:30:6c:d1:f4:f9:d8:7a:ec:52:aa:b5:00:
52:40:9f:fa:f9:cf:ce:fd:bb:bc:44:68:71:93:97:
8c:b3:8d:3b:59:98:7f:dc:9e:8f:8f:7f:d7:4c:21:
ae:27:38:a8:c3:43:44:04:df:17:0b:ac:20:cb:39:
ac:2b:07:4f:c0:9f:25:77:59:0c:35:03:01:dd:4e:
34:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:AF:AA:23:A0:DA:CF:6F:EB:1E:82:C3:B7:E7:11:74:46:24:F5:A2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F54E16100B4E11EF81B68A08017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.144.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:32:ee:39:ec:91:04:8a:d0:13:9d:66:bb:04:d1:41:e6:00:
ce:04:bc:b8:ea:f5:9c:a7:ba:b3:1b:54:37:c5:2e:8b:e1:45:
2b:21:c2:1b:fd:d5:9e:84:2d:bf:94:b7:51:b3:9a:a0:3b:f1:
f9:c7:2f:bb:e5:1f:0e:c0:6a:c1:e7:c5:9e:f0:84:4f:3a:6e:
4f:23:20:75:63:55:c4:5d:5f:e5:19:aa:60:d6:9e:5f:82:e7:
73:82:1d:d5:30:e1:b6:05:d9:95:c4:48:56:58:94:3a:eb:f0:
04:96:99:c2:98:31:02:f0:fb:14:ef:58:be:79:9a:b3:83:84:
11:07:9d:8b:80:f0:b8:ef:b6:b8:d0:dd:2f:90:8e:e8:ea:fc:
e1:e1:46:d0:d8:a7:c9:92:03:89:5f:a4:7c:21:c2:44:77:40:
89:38:20:c4:cb:ab:49:ff:5a:1f:18:36:e1:a6:29:df:36:49:
7e:38:b9:c5:a1:fe:e4:89:cd:a8:97:b7:29:0b:6f:f4:9a:c5:
b2:eb:d7:13:f2:00:6f:81:9c:7b:e4:45:2e:67:35:4d:30:cc:
21:76:d2:02:46:9f:ec:3e:24:a1:5e:ba:88:79:39:f3:c5:63:
5d:1c:fd:6c:4c:b6:bd:ff:48:44:50:ec:60:e7:3c:5a:a5:cf:
e0:96:7b:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:26 2024 by rpki-client on console-fra.rpki-client.org