Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2274C0FE05F411EFA8E28871017001B1.roa
File: 2274C0FE05F411EFA8E28871017001B1.roa (raw, json)
Hash identifier: egB5X6UeVbTnh2uoNbpWmTEK1l/tez9QMgBQNzxDjbs=
Subject key identifier: A9:93:0A:E6:E2:87:3C:CA:52:79:FF:15:DE:FE:34:65:62:52:AC:0A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B1F8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2274C0FE05F411EFA8E28871017001B1.roa
Signing time: Mon 29 Apr 2024 06:45:58 +0000
ROA not before: Mon 29 Apr 2024 06:45:55 +0000
ROA not after: Tue 04 Jun 2024 06:45:55 +0000
asID: 142062
IP address blocks: 154.86.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45560 (0xb1f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 06:45:55 2024 GMT
Not After : Jun 4 06:45:55 2024 GMT
Subject: CN=662f4226-387c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:31:fa:4e:d8:81:7e:2c:d1:74:30:e7:44:30:
c3:2e:cd:74:c4:f9:d9:67:5d:72:a9:17:fd:db:af:
9a:76:96:2e:5a:c5:1a:ae:89:9d:ec:14:81:99:6a:
b8:5b:81:6b:6d:f2:d7:5e:0a:c1:c1:03:75:4f:7d:
3d:3b:af:92:b0:17:b9:9c:30:a5:e1:f3:cd:b9:96:
17:a9:3a:69:1d:09:a0:a5:ab:e9:4f:76:15:77:d8:
ab:47:18:cd:99:4c:33:4a:d5:d3:2d:28:af:0f:73:
c9:d4:86:72:76:79:0b:f7:6b:9c:38:e9:e5:f7:45:
bb:23:77:c8:52:9c:a3:4f:fa:36:fb:87:44:22:c0:
ce:7f:6e:8f:32:b0:6a:70:dc:4e:bd:7f:b8:8a:38:
c4:d5:75:63:11:bc:71:8e:a3:e6:64:0f:55:05:a2:
f3:a6:f8:a1:d6:f7:7f:6b:e7:3e:4c:bd:8c:72:e0:
de:47:de:04:bc:65:67:25:ef:cb:f8:9e:be:76:eb:
df:22:03:16:77:da:17:6f:c4:67:f9:51:d2:3d:72:
65:75:33:71:95:92:6d:4e:dd:b7:54:41:64:d8:b2:
be:1b:86:c5:a1:2d:f7:17:b6:5f:fb:75:9a:91:0b:
c6:1c:b0:a2:dd:8c:8c:0d:89:aa:47:90:f8:f0:0b:
f3:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:93:0A:E6:E2:87:3C:CA:52:79:FF:15:DE:FE:34:65:62:52:AC:0A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2274C0FE05F411EFA8E28871017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.64.0/18
Signature Algorithm: sha256WithRSAEncryption
ba:ea:c5:46:79:d1:a6:c6:1d:98:bb:17:3f:f5:58:27:52:51:
fc:f7:86:e1:4e:d6:4c:7f:56:af:0b:4a:9e:20:c0:01:e7:95:
82:67:b5:52:13:48:98:ff:67:c2:fd:55:7e:4f:61:98:ef:d6:
b4:42:63:32:83:ab:2e:f9:32:1e:18:26:93:a8:4a:a9:3c:aa:
54:ad:bb:4d:70:7f:9d:11:d4:76:88:ef:42:ae:7f:1f:cb:af:
17:00:7e:16:8f:31:b6:0c:2d:03:b0:be:f8:11:3a:21:97:25:
85:bb:a6:5e:64:ed:65:29:2a:af:8b:32:16:f3:d4:05:3d:3a:
d1:0c:8f:5f:e9:f4:5c:68:dc:72:4e:68:c3:dd:c8:fb:67:c1:
f9:8d:fe:a7:98:4a:87:8a:27:7e:df:7b:92:44:2e:32:42:8a:
37:cb:35:18:d1:af:cb:aa:49:e0:3b:b5:b4:86:8f:d9:82:36:
34:fb:d7:48:df:d7:a3:d9:88:fc:e8:f4:3d:95:8f:7d:e3:1e:
31:e5:db:7b:10:c6:d1:5e:28:02:e4:33:75:8a:44:ee:f5:19:
cb:71:e3:1e:08:32:64:22:ce:a8:83:5c:42:5c:c3:29:b6:d3:
4d:4c:90:46:8d:16:a6:15:53:55:fe:c2:6a:c8:9a:74:37:58:
31:1b:c7:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 08:15:15 2024 by rpki-client on console-ams.rpki-client.org