Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D674D3CF01011EEA0D62488775412E6.roa
File: 2D674D3CF01011EEA0D62488775412E6.roa (raw, json)
Hash identifier: ao7/7TREBZ1nhBk/75j32OTfT38ErhtnGI+BXjpXGbg=
Subject key identifier: B1:5D:3B:8B:24:05:01:54:76:D9:9E:B7:FC:28:F8:8A:E2:9D:D9:10
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A87E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D674D3CF01011EEA0D62488775412E6.roa
Signing time: Mon 01 Apr 2024 10:11:17 +0000
ROA not before: Mon 01 Apr 2024 10:11:13 +0000
ROA not after: Sat 11 May 2024 10:11:13 +0000
asID: 63139
IP address blocks: 154.203.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43134 (0xa87e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 10:11:13 2024 GMT
Not After : May 11 10:11:13 2024 GMT
Subject: CN=660a8845-7fdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:33:9a:9f:6a:1f:ff:eb:01:c0:b0:3f:ec:a6:
de:6b:e2:52:33:88:2d:c2:97:1f:18:89:3a:5a:63:
76:7b:2a:c0:b1:21:f9:91:4f:1d:fa:d5:26:6b:be:
40:35:b4:a3:db:92:1e:5d:72:e9:e4:ea:a1:85:2f:
04:c3:82:e8:89:e5:a5:07:23:3e:30:0e:51:c8:ef:
b8:ab:9c:fa:b5:9b:96:88:b0:e3:0b:ce:e5:77:dd:
ee:21:c5:20:d1:34:05:86:64:e3:e0:11:33:86:01:
74:54:6b:ef:f9:33:94:94:ce:a0:93:ef:60:b3:f1:
cd:7d:8e:63:7e:f7:ab:f4:9b:ad:d8:90:c8:41:79:
ff:64:aa:68:93:ec:ff:34:b5:80:29:a6:3b:6d:dd:
3a:32:e1:6e:b7:4b:b4:03:59:1e:67:46:04:48:15:
a0:88:11:a8:48:67:a2:24:13:ca:2b:86:16:70:bb:
b4:6c:6c:0c:4a:b3:f2:94:2c:a8:ea:32:b3:e1:30:
3e:7f:00:f2:71:cc:be:ab:c8:de:54:56:e7:a5:e9:
02:e8:f5:98:0b:4d:63:fc:f4:93:4b:5f:a4:c9:a3:
45:ed:6e:15:a2:83:04:9f:49:86:d5:b8:3c:8f:80:
eb:7e:ce:29:2c:cc:53:07:ee:42:1a:ed:b0:fd:ae:
03:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:5D:3B:8B:24:05:01:54:76:D9:9E:B7:FC:28:F8:8A:E2:9D:D9:10
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D674D3CF01011EEA0D62488775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.167.0/24
Signature Algorithm: sha256WithRSAEncryption
31:61:0d:84:6f:80:11:4e:4d:14:61:9c:ed:38:27:a8:04:d1:
77:4a:ec:e4:6e:85:a0:b3:93:da:3d:50:2d:dd:7e:fe:00:55:
1c:28:b1:4e:88:66:82:cc:62:27:63:f4:d7:32:43:15:17:11:
a5:b2:9d:c1:7d:f8:81:30:cf:de:21:6f:4c:97:e9:47:e5:1c:
c3:e0:6e:e3:fe:74:0a:24:36:c1:e0:c0:10:27:94:b9:a7:47:
a7:05:4d:02:0f:e6:f0:06:c7:8a:f1:50:df:c6:ca:d3:52:88:
b6:da:78:5a:11:6e:50:da:d0:32:93:c9:0f:6e:ab:b8:21:5a:
f8:ee:60:d0:2f:07:3f:bf:06:dc:b6:51:d8:52:b2:56:69:31:
c2:27:bc:af:22:35:9b:f8:37:c9:45:56:4e:f5:36:8b:cf:46:
55:68:90:ca:b7:c7:91:e4:48:c6:63:9c:14:ae:04:71:ae:10:
2a:a4:cf:e8:d6:07:de:62:33:c7:93:45:d5:8d:06:7e:18:71:
0b:cf:55:28:45:61:cc:19:57:e6:35:fe:e4:bf:c4:79:7d:85:
91:6d:1f:62:90:52:14:94:78:b9:61:f8:53:b2:68:5d:6d:df:
aa:24:c3:9f:8f:92:f1:67:bb:e3:13:a7:87:18:93:66:38:f1:
dd:a7:75:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:05 2024 by rpki-client on console-ams.rpki-client.org