Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1869A332F00E11EE92190F78775412E6.roa
File: 1869A332F00E11EE92190F78775412E6.roa (raw, json)
Hash identifier: wIGF5sTD1HagjEa2gnE1MWAjGI+iNnjcm9Hl65/eNZo=
Subject key identifier: AD:D5:EE:D9:1F:3B:72:D9:EC:DA:E1:B0:C5:10:C3:DA:B2:E6:32:B4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A866
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1869A332F00E11EE92190F78775412E6.roa
Signing time: Mon 01 Apr 2024 09:56:23 +0000
ROA not before: Mon 01 Apr 2024 09:56:19 +0000
ROA not after: Sat 11 May 2024 09:56:19 +0000
asID: 63139
IP address blocks: 154.203.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43110 (0xa866)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 09:56:19 2024 GMT
Not After : May 11 09:56:19 2024 GMT
Subject: CN=660a84c6-d4e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c4:4c:a6:ba:8a:33:08:e5:bc:c0:a6:b6:b7:
1c:0d:e7:fb:dc:26:22:68:e5:45:4a:08:93:1e:41:
26:fe:fe:c1:a7:10:80:5b:7c:b2:2d:b5:5e:5b:f9:
d8:47:2a:6a:31:aa:a0:5d:7e:1d:fd:5f:93:09:c1:
42:b8:a5:4c:78:e6:fd:a9:7b:d5:6a:54:5a:ef:df:
e9:34:a2:83:be:01:93:5a:84:cb:a5:c6:76:8a:f0:
cc:37:a7:b7:bd:28:9a:32:ef:fa:55:f8:93:70:00:
e5:0f:e0:9e:10:13:b0:bb:21:26:e6:e1:6d:eb:0d:
d5:b2:e4:37:d6:60:9f:b5:a3:fd:f8:33:fd:db:10:
61:96:59:4a:d8:d6:23:34:2f:50:13:e4:5a:f6:8a:
12:19:d1:33:f1:c7:9a:cb:53:e2:b0:8d:ad:57:d5:
5a:6a:67:8f:8f:79:27:2f:6c:5e:ea:4e:12:1f:6b:
9f:11:b9:93:23:d8:e8:93:11:99:70:98:c1:58:83:
3c:cd:22:49:2e:58:14:f9:22:f1:3c:8a:26:cb:bc:
18:3b:07:b6:1d:19:56:4c:37:b5:03:eb:b6:09:39:
9b:cf:e8:d0:8a:ff:70:63:7b:b5:42:5a:57:69:95:
25:8c:c6:17:04:83:f8:8a:1b:9f:47:b0:b4:ae:21:
e3:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:D5:EE:D9:1F:3B:72:D9:EC:DA:E1:B0:C5:10:C3:DA:B2:E6:32:B4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1869A332F00E11EE92190F78775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.179.0/24
Signature Algorithm: sha256WithRSAEncryption
33:d6:79:0d:79:22:5b:bd:c0:36:bc:54:00:57:29:a4:f6:84:
40:ed:a3:b4:b5:e6:f5:db:ab:7d:e3:ad:5f:f1:ae:18:45:d0:
04:44:ec:fa:a2:57:38:ba:04:43:42:9c:7f:ef:d4:4d:32:6f:
d7:aa:6c:e2:33:30:e1:c9:b4:86:7a:fd:61:35:4c:0c:06:30:
80:6a:06:92:fa:1e:aa:0d:e5:9e:5f:71:5d:9c:15:ac:3e:d8:
95:b8:55:e3:31:c9:33:9e:f9:3c:57:e1:d5:e8:0e:eb:39:df:
14:c7:ea:1a:83:f9:0b:f8:f8:65:1c:3a:bd:4c:b3:2d:a8:74:
ec:23:96:3b:b9:5a:38:37:c4:18:08:17:fd:e2:bf:76:7e:76:
f0:4a:09:56:2f:20:b8:64:71:16:c7:5a:ba:af:cb:4b:5c:5e:
4a:99:8f:15:35:f3:45:65:c3:91:7d:da:a2:01:3f:f1:68:9f:
51:69:44:aa:f9:f3:d6:e1:9d:d0:95:b0:e9:39:72:21:00:3a:
a3:13:fd:10:cd:cf:12:c5:b4:cf:ed:58:9e:e8:e3:5b:b8:4c:
d7:2c:1b:cc:71:38:14:0c:06:85:36:10:d5:d8:09:3b:c0:88:
35:b9:94:e1:bc:72:b2:6d:42:1a:3d:e3:5a:52:00:5a:02:e6:
ff:03:bf:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:03 2024 by rpki-client on console-ams.rpki-client.org