Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/06842D6AF7C811EEA0CF3966017001B1.roa
File: 06842D6AF7C811EEA0CF3966017001B1.roa (raw, json)
Hash identifier: OBMoBBRJGdkHuMPei3OV71zDDlkskw5Xp63Hm+PWqXI=
Subject key identifier: 75:82:25:F1:7F:EF:49:0A:22:29:78:E6:D6:2B:96:02:CB:72:8C:AC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB4D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/06842D6AF7C811EEA0CF3966017001B1.roa
Signing time: Thu 11 Apr 2024 05:54:57 +0000
ROA not before: Thu 11 Apr 2024 05:54:54 +0000
ROA not after: Sat 20 Apr 2024 05:54:54 +0000
asID: 7018
IP address blocks: 154.81.0.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 20 Apr 2024 05:54:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43853 (0xab4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 11 05:54:54 2024 GMT
Not After : Apr 20 05:54:54 2024 GMT
Subject: CN=66177b31-a9be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5c:60:c9:d7:03:f7:9e:23:83:1a:f1:f3:e7:
1b:a7:61:7c:12:a8:81:5b:9c:79:72:12:e1:2b:9d:
1b:7c:1e:39:4e:87:b5:89:2c:f4:42:cf:95:c1:26:
2e:bc:f2:bc:7d:ca:98:a0:c5:9b:dd:87:93:69:c0:
59:8f:f7:7e:f8:ca:b8:ca:95:0f:fe:d3:74:8d:3a:
d1:c5:58:e5:39:2e:32:71:21:55:e5:f9:90:e8:36:
b8:f0:3e:4b:44:c4:4b:52:15:bf:85:1d:ed:d6:12:
b8:fd:fd:8a:82:ec:91:35:86:a5:7d:08:1a:4c:b5:
fd:a4:be:df:db:ab:d0:14:38:9c:b6:a0:a3:a1:26:
33:55:08:1b:5d:77:7c:77:9b:df:33:d2:3d:14:ab:
38:03:13:8c:72:a8:be:40:d6:24:49:ec:0b:4f:65:
aa:67:bd:59:8d:3e:f0:68:1c:35:67:7d:97:77:fa:
e6:c1:15:4e:8f:8e:56:7c:ff:e7:53:02:d4:86:15:
20:27:ec:7e:a4:1b:4c:80:38:fb:01:37:c9:06:86:
1f:72:a4:7f:97:ea:9e:75:11:42:64:e9:c2:89:6e:
ed:50:5d:9f:b4:cd:ff:10:70:1c:7a:f2:09:72:16:
5d:bc:6f:7d:96:ba:ef:f7:7e:32:63:22:bb:f4:fb:
8d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:82:25:F1:7F:EF:49:0A:22:29:78:E6:D6:2B:96:02:CB:72:8C:AC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/06842D6AF7C811EEA0CF3966017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.0.0/21
Signature Algorithm: sha256WithRSAEncryption
a8:63:67:e4:19:87:15:c9:1e:f9:d6:57:54:5c:b4:d2:74:47:
34:cc:32:90:c4:8a:57:4b:b1:65:71:f0:03:bb:c3:e9:2b:90:
f8:b9:60:1b:f5:4a:ae:8f:81:9a:eb:d2:9f:47:50:89:3e:31:
b5:8f:92:90:55:67:68:9d:65:fb:7d:a0:49:c1:71:27:6c:0e:
36:7a:15:e3:98:72:42:da:98:44:13:a8:f2:46:d7:09:d2:18:
9e:db:e7:a7:92:c9:d8:3d:56:9f:48:8d:91:e3:98:4a:84:e3:
c7:ba:e8:d0:a8:00:5d:88:8d:60:bd:8f:f2:87:ad:a5:2f:7c:
16:d6:f3:0a:2c:2e:e9:7e:ea:8d:ac:4e:a1:c4:a8:a5:c8:bd:
02:d6:91:b4:df:e5:d2:4b:6a:eb:27:3c:25:fc:09:a7:fc:b2:
37:81:f6:b7:c9:c8:69:2d:cf:ee:78:34:6e:3a:4a:41:cb:b9:
76:a4:19:9c:cd:54:21:7b:59:e8:b3:fb:4e:c8:6b:f8:34:b6:
09:e0:4b:fe:ba:02:0c:75:46:90:e8:f4:09:91:32:01:0b:be:
63:bc:08:9e:b6:0c:48:9d:e2:c7:46:be:63:6f:bb:31:12:2d:
e8:f6:93:b2:ff:95:8b:e2:70:08:a5:06:4b:ae:b7:71:70:4a:
b3:91:18:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 02:38:54 2024 by rpki-client on console-ams.rpki-client.org