Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F896221204E711EF975A685C017001B1.roa
File: F896221204E711EF975A685C017001B1.roa (raw, json)
Hash identifier: qQ+9WOBGuenp2SaFWrVYrSUmvtheMwHUce8HEOOiJ+o=
Subject key identifier: E7:F4:C9:C0:54:D2:4D:4E:49:E4:A8:4D:0C:E6:85:0A:D8:D0:D0:38
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B1C0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F896221204E711EF975A685C017001B1.roa
Signing time: Sat 27 Apr 2024 22:46:23 +0000
ROA not before: Sat 27 Apr 2024 22:46:19 +0000
ROA not after: Sat 25 May 2024 22:46:19 +0000
asID: 26617
IP address blocks: 154.202.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45504 (0xb1c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 27 22:46:19 2024 GMT
Not After : May 25 22:46:19 2024 GMT
Subject: CN=662d803f-2313
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:84:9b:fe:b4:be:f9:f6:d9:27:5c:5e:59:d5:
e3:6d:e4:14:5a:1a:ca:25:e3:66:53:dd:18:85:62:
75:66:fb:66:e2:44:c0:58:06:92:1d:fd:2b:ca:06:
9a:2d:6a:66:7d:e7:01:57:75:43:b4:11:4a:bb:25:
69:37:e2:43:38:67:f1:f0:45:b4:44:c1:46:24:b1:
c9:90:d4:d6:fa:b3:55:23:e0:e9:fe:5e:10:cc:ae:
90:3e:0b:92:b4:89:74:ff:bb:e4:57:75:64:98:1d:
35:ef:35:e8:4f:6b:f6:28:7e:05:55:4c:77:d4:ea:
3a:04:e6:a4:02:2d:cc:a5:08:a2:fa:06:d6:7c:ad:
40:c5:1c:1d:d3:01:6e:a8:25:ed:bc:c8:12:73:06:
af:7d:a4:0a:b4:1e:2b:77:9e:80:28:55:51:3c:2e:
b9:a9:c5:b9:4e:04:d9:92:77:40:60:99:e0:fd:4f:
ec:7d:f4:b0:6f:1d:2a:d1:d4:04:46:ec:c7:ca:5a:
6a:e8:45:6e:e1:8c:dc:0d:83:83:a2:26:c6:ab:21:
93:e1:5d:0c:37:69:93:c4:ac:e6:32:af:d0:29:c2:
f8:a1:fa:b6:94:4e:2f:d8:45:b1:37:2a:c4:a7:50:
95:a9:80:77:94:fb:da:f3:57:9a:9b:1f:49:98:44:
38:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:F4:C9:C0:54:D2:4D:4E:49:E4:A8:4D:0C:E6:85:0A:D8:D0:D0:38
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F896221204E711EF975A685C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.7.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:42:b5:e5:61:10:bf:d9:dd:a1:9d:cd:9f:77:53:ae:3b:08:
7f:12:f4:78:27:8b:c1:41:f3:40:2c:30:11:fa:bd:3d:ec:a8:
b3:06:07:1a:40:00:63:80:ac:e8:12:84:d4:23:74:b4:2e:ca:
8c:72:c0:a6:ff:f7:10:71:88:21:66:86:53:43:8a:89:38:cd:
c3:c7:ce:43:a8:98:41:20:4f:b9:b3:36:28:16:40:42:88:85:
82:9a:d1:82:c4:0c:5e:f2:3a:fa:59:e6:d5:cd:a6:9f:67:52:
27:b8:e8:19:5b:7b:64:b6:39:d5:6b:97:38:39:d8:a8:42:f5:
a9:ef:a1:cc:10:8f:dd:18:5f:74:70:ca:ce:b8:f0:3d:16:c7:
ab:e0:c1:ae:47:8c:d4:42:16:16:3c:32:24:fd:d4:7d:22:8e:
49:70:20:28:b3:06:cf:08:4d:13:cd:05:14:c3:74:05:96:ee:
ed:bc:52:32:ce:90:16:8a:62:2a:42:9d:8a:df:f5:b3:7b:9e:
49:cc:65:7a:61:fb:db:72:8b:3c:4f:bc:5f:d2:76:cf:4c:4b:
d9:a1:4f:d2:ad:a4:c9:7c:f3:ca:17:c4:02:d2:6d:b0:6b:40:
14:65:83:56:d8:f2:27:b2:9d:5c:a6:2e:ca:7f:d9:31:26:d4:
86:dc:dd:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:33 2024 by rpki-client on console-ams.rpki-client.org