Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F4C9C8C183911EFAE613D4C017001B1.roa
File: 2F4C9C8C183911EFAE613D4C017001B1.roa (raw, json)
Hash identifier: L/pWApvwU4z5qGL5LJZ2d/l0amhMgs83sKNcQqqjLIQ=
Subject key identifier: AE:D6:2A:C7:14:A4:30:83:E2:D8:55:AB:89:54:EE:7F:93:B8:A4:A4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B9A2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F4C9C8C183911EFAE613D4C017001B1.roa
Signing time: Wed 22 May 2024 12:45:36 +0000
ROA not before: Wed 22 May 2024 12:45:32 +0000
ROA not after: Sat 03 May 2025 12:45:32 +0000
asID: 63199
IP address blocks: 154.204.4.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47522 (0xb9a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 22 12:45:32 2024 GMT
Not After : May 3 12:45:32 2025 GMT
Subject: CN=664de8f0-224f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9d:f8:38:4b:75:76:93:82:4d:c5:30:c9:35:
59:46:07:ef:27:34:aa:73:85:9b:7a:2e:f1:69:e1:
66:63:ed:d7:0c:a3:78:e6:df:77:cc:75:ad:c7:ea:
71:a6:68:a6:41:1d:12:a0:28:83:28:dd:0d:6e:e6:
93:1c:95:46:fa:73:14:b2:bf:a4:f7:e1:b8:18:89:
ef:0d:0f:b9:37:4e:3f:e5:e0:73:9d:05:a2:8b:0d:
13:07:cf:72:7b:33:d3:5a:ce:45:51:a1:9e:ff:56:
c9:0e:81:cc:92:94:16:b2:7f:05:08:23:0d:9e:66:
6e:d2:28:9b:39:69:ba:d2:5e:09:9c:26:5a:16:b9:
6e:bc:ec:66:b3:f1:74:74:66:0b:dc:c5:05:d9:ae:
37:a5:01:4d:ab:0d:bd:f2:87:b6:1b:84:71:70:e7:
50:f3:a3:cb:1d:ed:e8:fa:ba:9c:80:4d:6b:a0:77:
cc:4e:f1:68:34:75:6e:af:ad:7e:77:a9:56:83:17:
9c:5f:a5:f0:fd:3a:bf:cc:63:97:9d:1b:ad:1a:75:
a5:2c:bf:b6:27:21:6b:78:69:9e:04:1d:60:e3:d2:
38:bd:27:f5:90:7a:be:6a:74:50:81:54:69:97:30:
d2:cb:13:a9:6c:62:be:13:de:76:f1:b0:80:10:09:
f9:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:D6:2A:C7:14:A4:30:83:E2:D8:55:AB:89:54:EE:7F:93:B8:A4:A4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F4C9C8C183911EFAE613D4C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.4.0/22
Signature Algorithm: sha256WithRSAEncryption
10:a9:f9:49:51:25:f2:a4:fc:20:5c:4c:15:cc:25:29:0c:42:
ed:8e:64:26:d5:e6:d2:89:9c:e5:73:64:52:32:b7:af:31:2f:
b1:af:6d:9f:f8:f8:85:b0:2b:8c:bc:fc:44:40:55:4c:1a:bb:
b6:81:79:c0:ec:ec:8d:5d:0e:36:92:f6:4e:5b:90:57:b7:d4:
d5:21:e5:aa:c9:2f:42:76:45:56:dc:f2:8d:b0:9b:ff:f9:94:
4f:b9:fa:82:db:3c:0c:4b:59:fe:35:c3:46:69:ea:6e:e8:86:
d9:7e:d8:50:3c:bd:8e:fa:cd:a8:29:40:ff:03:bb:e5:ec:87:
4a:0c:fa:b2:5c:ac:56:a7:75:ed:45:63:04:d4:65:73:e5:3f:
1d:6d:4f:6c:8a:a2:d1:bd:ec:87:04:a1:43:be:07:81:5f:4e:
d2:98:6c:f2:7b:65:d5:3e:a4:a8:57:52:7f:38:48:cc:35:4b:
98:bd:41:ef:43:64:40:8f:f0:c3:75:cd:2e:45:e8:3e:4e:b6:
3c:73:aa:17:68:af:93:94:b5:48:70:5d:c5:5d:48:90:1e:a5:
1d:65:63:e0:b2:b5:3e:b0:2f:27:37:31:0e:dc:8d:86:a2:32:
8f:b4:8e:ae:8c:52:42:c9:ea:9c:34:08:fa:a8:e2:0f:4a:96:
58:f1:6c:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:02 2024 by rpki-client on console-fra.rpki-client.org