Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F72EE7AC02D911EFBCCC7B24017001B1.roa
File: F72EE7AC02D911EFBCCC7B24017001B1.roa (raw, json)
Hash identifier: sEeR0ckpJVi7zqYNrBcuUpqxiKxwsH337JbbKnCMtxs=
Subject key identifier: B3:F2:55:70:0B:D5:03:1B:37:FD:CE:34:E9:E9:E1:7C:6B:62:CC:F4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B047
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F72EE7AC02D911EFBCCC7B24017001B1.roa
Signing time: Thu 25 Apr 2024 08:01:05 +0000
ROA not before: Thu 25 Apr 2024 08:01:02 +0000
ROA not after: Tue 15 Apr 2025 08:01:02 +0000
asID: 136513
IP address blocks: 154.197.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45127 (0xb047)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 25 08:01:02 2024 GMT
Not After : Apr 15 08:01:02 2025 GMT
Subject: CN=662a0dc1-1501
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d9:e5:ad:52:75:56:6c:37:bf:1d:ef:7d:22:
09:54:9a:45:d5:06:8b:1f:60:90:43:88:74:9d:e2:
5a:22:64:89:de:1c:56:e6:5d:c3:da:56:7c:6a:9c:
ff:e7:c6:a7:22:ae:e3:37:31:70:9c:e4:87:14:30:
91:67:8e:09:95:ca:49:64:2c:3a:0f:c9:14:09:78:
9d:47:fd:70:f7:bd:ff:43:2b:cb:f1:20:64:a7:61:
71:e8:b7:58:0c:ae:93:30:60:0d:08:1e:2d:f0:0f:
dc:de:bb:85:7e:16:3c:39:2e:7e:7d:74:9a:07:4d:
aa:da:88:72:6c:48:e7:67:3f:59:94:b0:e9:8b:43:
ea:3e:71:9e:1a:1d:74:3e:8f:12:31:a3:f7:dd:ce:
ef:b0:6e:81:8a:fd:29:5a:7b:b8:19:5d:15:f7:b3:
55:73:a3:68:e6:29:27:58:f6:87:c1:c5:c0:eb:25:
b4:17:ca:03:d9:c3:18:7a:67:52:27:90:67:0e:3f:
9e:ee:a4:11:f4:e9:8e:41:dc:9d:02:28:ff:c4:68:
70:bf:4e:ed:83:c2:bb:dc:f8:67:3e:65:c1:f1:4c:
62:5f:88:6e:6c:02:dc:a1:7d:7e:9f:63:13:40:08:
56:57:72:1b:ba:29:39:9c:10:0e:d1:86:fd:89:d2:
ca:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:F2:55:70:0B:D5:03:1B:37:FD:CE:34:E9:E9:E1:7C:6B:62:CC:F4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F72EE7AC02D911EFBCCC7B24017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.0.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:5f:f1:ca:41:6a:90:4f:b9:18:b3:aa:ad:51:44:eb:aa:cc:
2f:70:a1:94:66:e6:99:e7:e0:1f:b8:66:de:19:c2:e2:0e:51:
58:08:73:81:f0:46:dc:79:01:51:4f:3c:cb:bc:61:a1:7e:ce:
52:28:47:1c:92:7d:4a:09:54:20:e1:54:9a:f0:bd:21:31:84:
94:ba:5e:a8:09:dc:68:b2:6b:02:dc:c7:78:fc:7c:f0:b0:5e:
b6:45:90:3e:c3:87:f0:7b:81:e9:17:2d:42:79:9d:7e:5c:f7:
a8:47:68:25:90:39:89:ee:da:f2:4a:d8:71:1f:0c:32:02:dc:
8b:3d:3f:81:4a:02:8c:b4:c9:65:ff:5f:5a:bf:01:19:9e:73:
80:1b:e0:29:dc:ef:48:7f:95:05:65:59:d1:80:5f:40:f8:82:
5c:45:16:f0:61:f7:67:f1:42:7a:40:79:bf:ea:13:3a:a8:22:
98:db:da:66:e8:94:5e:c5:bf:51:28:3c:68:89:a8:5c:03:89:
21:4d:b0:53:64:c3:cb:a7:6f:68:f7:94:56:a6:88:6d:e6:24:
fa:b3:22:76:30:ad:38:00:af:d8:e1:e9:69:3e:7c:68:93:40:
2a:ba:2c:93:09:c8:d4:88:fb:6b:76:9a:36:b3:05:c1:10:7d:
76:53:ed:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:26 2024 by rpki-client on console-fra.rpki-client.org