Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A46EA16039111EF86131CF8007001B1.roa
File: 1A46EA16039111EF86131CF8007001B1.roa (raw, json)
Hash identifier: H2ulQgZYmo2igY33ZJ2cbyuHVsJd7kcqbrqeC8COWf0=
Subject key identifier: 89:6C:66:95:F6:7D:D3:F5:DE:07:97:47:67:44:79:38:A3:09:03:FA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B182
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A46EA16039111EF86131CF8007001B1.roa
Signing time: Fri 26 Apr 2024 05:52:02 +0000
ROA not before: Fri 26 Apr 2024 05:51:58 +0000
ROA not after: Mon 27 May 2024 05:51:58 +0000
asID: 138195
IP address blocks: 154.207.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45442 (0xb182)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 26 05:51:58 2024 GMT
Not After : May 27 05:51:58 2024 GMT
Subject: CN=662b4102-209d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:86:f7:39:b6:1e:8e:fd:b8:f5:56:c4:18:9e:
28:bb:a6:8a:f7:33:30:bb:8b:fd:ce:73:54:8d:58:
7d:2a:52:5a:97:c5:25:70:dc:f2:90:71:9f:cc:06:
3a:f0:d7:c9:0a:42:22:18:0b:51:c5:8b:62:f4:6c:
89:0d:0f:31:ff:f4:08:90:7b:0b:2b:0a:f2:ec:0e:
91:18:5e:6a:59:a8:84:0c:16:ab:57:11:cd:81:95:
26:76:5d:58:39:f1:51:38:78:f4:ba:1c:fa:35:c7:
7d:bd:be:48:4b:53:f1:83:cd:ff:2f:8c:a4:8a:5f:
22:66:0a:f0:ac:63:4e:e0:80:4e:5b:54:28:55:bc:
13:6e:57:a0:de:c4:e9:9f:dc:91:f3:3a:21:ec:65:
e3:55:df:85:8a:d4:1a:2a:fa:d2:ed:df:7f:7c:e0:
ce:49:74:c5:77:c0:3b:eb:6b:51:3a:c4:9f:bc:d4:
0b:4f:70:ee:42:d0:b8:89:6e:1f:27:9c:65:8b:97:
dc:04:49:ab:f6:3e:41:b6:ca:4d:bf:14:c1:b3:d2:
c1:ce:a0:b5:ae:2c:6f:43:f9:49:b1:e6:e5:bf:2a:
14:d0:03:40:03:e8:17:48:da:8b:66:53:36:7f:16:
87:5b:df:5d:1b:42:98:ea:6e:ff:1a:83:23:24:c4:
a5:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:6C:66:95:F6:7D:D3:F5:DE:07:97:47:67:44:79:38:A3:09:03:FA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A46EA16039111EF86131CF8007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.32.0/19
Signature Algorithm: sha256WithRSAEncryption
4b:69:42:44:7e:ba:8e:08:ca:ce:e2:b9:b1:ba:16:61:bd:16:
fc:8e:de:bf:0a:0a:dc:f6:af:95:d3:3d:30:34:bc:70:98:dd:
1e:0b:24:ce:0f:c5:5f:27:db:6e:d9:ca:96:8c:a6:e6:db:cd:
51:1d:b1:c8:88:40:7c:88:ef:e6:b3:be:cc:4c:08:8a:4b:ad:
04:79:ca:bd:bb:c7:91:f0:09:61:f1:be:38:a3:0f:05:ef:fe:
59:b7:69:6b:5c:75:a6:b8:f9:f6:5a:b4:23:e5:8c:76:10:1c:
ab:70:e8:da:6a:a8:2a:1a:06:d8:73:a8:83:3d:09:20:77:42:
1c:ee:39:ab:70:ba:08:61:45:04:2d:cb:fd:fa:03:0f:e9:0c:
a3:64:20:a8:86:09:49:0b:fc:86:55:7b:06:b9:0b:7d:2f:57:
95:e2:a8:77:18:e9:de:17:dd:b1:ba:55:65:a4:10:ca:e2:de:
ad:8e:98:3a:79:da:72:f5:b3:7b:2c:25:a1:c8:a3:78:2b:c2:
66:6b:dd:b1:d2:37:4b:47:f2:cf:14:13:fd:94:08:13:8f:c0:
83:da:94:e3:94:72:b0:26:b2:bc:81:f8:70:ad:34:b1:95:9c:
dd:9b:c4:8c:c0:4a:ca:45:2b:d1:1c:40:d1:11:a1:9f:35:24:
66:61:bb:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 01:46:52 2024 by rpki-client on console-fra.rpki-client.org