Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/25CA272AFAEC11EEBC9BE300017001B1.roa
File: 25CA272AFAEC11EEBC9BE300017001B1.roa (raw, json)
Hash identifier: 91JVsjs1LID8EAfe1UMdMF0VUoMz1qcodvOhc74wq2c=
Subject key identifier: 5C:00:21:B2:7A:B2:58:8A:15:BF:1F:48:93:78:1A:7E:1B:95:73:B3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ACB2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/25CA272AFAEC11EEBC9BE300017001B1.roa
Signing time: Mon 15 Apr 2024 05:51:05 +0000
ROA not before: Mon 15 Apr 2024 05:51:02 +0000
ROA not after: Thu 30 May 2024 05:51:02 +0000
asID: 63139
IP address blocks: 154.93.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44210 (0xacb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 05:51:02 2024 GMT
Not After : May 30 05:51:02 2024 GMT
Subject: CN=661cc049-9b64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:1f:c6:a3:b1:ce:d9:1a:a2:4d:ed:ef:20:bf:
bd:06:4f:5f:00:1c:c4:45:b4:cd:5b:5e:c1:3a:68:
be:bb:5a:b6:40:ee:44:29:26:32:df:ad:a3:58:34:
e2:a2:90:43:4f:6c:9e:fd:5a:3f:ac:e3:e2:8a:f4:
a4:ab:07:e5:1d:07:e4:32:99:09:26:6a:76:28:29:
93:8a:36:83:6e:8e:65:44:84:0e:69:0c:81:8a:c0:
a2:aa:a7:c9:14:83:be:2b:32:2b:d4:1b:ad:64:66:
53:1c:24:50:67:86:a8:99:7e:c0:9b:39:27:a5:52:
c3:b4:95:19:28:6e:02:20:94:93:96:67:6d:7c:b7:
43:5b:13:e1:6b:00:1a:e8:c7:4e:a7:64:c3:09:1a:
a4:0a:c8:d4:84:2c:d0:b5:bc:5e:48:59:64:4a:82:
59:45:46:7b:65:95:32:a1:56:7e:23:ea:d3:14:92:
fe:27:b5:1c:0f:49:7d:7d:7a:b8:e3:b5:ed:48:76:
20:04:f2:b9:75:6b:16:33:ed:55:41:f0:2a:ac:b8:
32:ab:4e:eb:85:05:0c:ea:09:94:fd:3e:73:c6:33:
5a:93:47:1e:ca:82:03:7f:b0:74:e5:5e:3f:b1:17:
30:10:e5:4f:98:a6:29:b9:ec:1b:b2:b4:ce:87:e4:
63:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:00:21:B2:7A:B2:58:8A:15:BF:1F:48:93:78:1A:7E:1B:95:73:B3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/25CA272AFAEC11EEBC9BE300017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.65.0/24
Signature Algorithm: sha256WithRSAEncryption
21:9f:8a:85:62:bc:7f:9e:85:7a:6b:e9:05:38:54:12:61:f2:
4f:46:1c:8d:a1:24:ef:2d:19:18:80:0d:9e:fd:f1:f4:08:86:
e9:28:ae:42:84:ac:95:82:8b:8e:2c:d3:5e:b6:3f:70:47:bd:
d4:ad:6f:26:fa:d4:4a:e0:bc:74:63:a4:5e:4b:fa:6f:ec:f8:
a1:a9:f6:3b:95:83:ee:e5:1a:59:94:ea:64:a7:d6:7d:90:f1:
31:03:44:fb:83:97:fb:1f:5e:14:cc:91:fa:7f:36:56:83:1e:
32:39:f9:6f:f5:e8:04:6c:cf:da:79:86:02:7d:dd:9c:2e:e1:
fe:fc:7a:6a:65:ac:5e:d6:d7:54:1c:3a:d7:1a:08:cf:08:a4:
dd:2e:e4:2f:a7:b9:d9:4d:35:50:45:82:4b:d8:88:bf:e9:b1:
32:72:0f:7e:24:de:10:23:70:66:d0:fd:03:64:f2:25:6d:e4:
26:56:f7:67:ab:d4:8e:0f:bc:66:72:df:fd:e3:d8:fa:8a:2d:
cd:bd:f2:8e:36:e0:7c:f1:ff:f1:30:35:dc:26:b0:42:03:81:
22:48:1d:4d:54:a4:b6:7b:46:a3:f7:6d:f1:da:32:a9:c0:14:
e4:eb:5c:7f:59:a6:69:06:ca:7f:75:26:a2:13:97:ce:fe:37:
47:22:f8:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:04 2024 by rpki-client on console-ams.rpki-client.org