Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/317F4C140D0011EF80E22B55017001B1.roa
File: 317F4C140D0011EF80E22B55017001B1.roa (raw, json)
Hash identifier: FuOoTCquuqqGh1CcIjiu0n4T7iwVEkUZzSCKT7rXX/Y=
Subject key identifier: 4E:71:34:02:F0:63:93:DF:08:F8:8A:6B:68:E9:8C:68:F9:6B:19:36
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B592
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/317F4C140D0011EF80E22B55017001B1.roa
Signing time: Wed 08 May 2024 05:59:55 +0000
ROA not before: Wed 08 May 2024 05:59:52 +0000
ROA not after: Sat 08 Jun 2024 05:59:52 +0000
asID: 150698
IP address blocks: 154.198.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 08 Jun 2024 05:59:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46482 (0xb592)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 8 05:59:52 2024 GMT
Not After : Jun 8 05:59:52 2024 GMT
Subject: CN=663b14db-e2a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:12:0b:6e:6a:62:9c:ee:24:bd:c3:e2:1f:51:
f5:71:3c:e5:d6:bb:46:9f:99:71:25:15:72:9e:67:
76:50:f0:b3:a6:d4:65:33:4a:a6:e8:f7:5a:60:b7:
ec:2d:da:a1:06:40:85:8f:c5:53:b7:2e:05:27:fe:
9c:2d:03:af:85:39:f7:45:05:d9:51:96:2f:65:32:
3a:6a:09:57:b5:80:f6:16:26:87:c2:c7:b2:cf:19:
cf:e3:1f:a3:6a:75:70:a3:79:e4:74:97:fb:a3:0e:
3f:c8:cc:a7:da:0d:ca:87:54:ec:87:be:50:1e:aa:
2f:d1:4b:c4:71:cb:ea:68:81:22:d5:0a:3f:4d:f1:
a7:8b:aa:24:6e:ad:f0:80:7c:2f:f7:aa:12:da:b0:
9c:3a:4e:1e:3f:47:64:81:69:29:c9:1a:6b:6c:81:
a0:aa:dc:e6:a1:63:bf:fc:1c:ac:c9:f0:e7:19:f2:
d0:53:46:a4:87:5a:ca:e5:34:8a:fc:cd:d2:6f:c8:
71:ea:b6:9d:ae:39:f1:53:0a:90:60:84:dd:d3:be:
72:02:ed:9c:5a:ba:70:e6:1c:c3:7f:d1:a8:9b:68:
b8:3e:be:cb:b6:c0:0e:68:69:06:da:69:9a:21:34:
47:1b:36:4c:a4:6a:65:df:00:25:76:af:b9:96:8f:
d0:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:71:34:02:F0:63:93:DF:08:F8:8A:6B:68:E9:8C:68:F9:6B:19:36
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/317F4C140D0011EF80E22B55017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.10.0/24
Signature Algorithm: sha256WithRSAEncryption
29:08:b2:3e:4e:f4:ae:ca:5e:04:97:62:0b:d6:d9:0a:49:51:
78:11:45:2d:f2:9f:ec:b5:b1:2e:4e:a4:9b:c4:21:11:f1:e6:
7e:74:cb:c8:8d:55:3b:1e:e3:fe:d1:8b:8b:d8:79:79:81:8e:
63:58:18:3f:96:14:7c:02:97:5f:8d:eb:86:6c:8f:53:b6:6c:
16:13:12:97:04:94:ef:39:fb:65:65:b9:d6:42:dd:ff:3a:fb:
f1:08:33:d7:84:34:a4:37:b3:3d:1e:eb:a1:a1:27:8a:1a:12:
82:7e:09:fb:c0:99:49:64:c8:7d:d1:f7:a0:1c:ec:15:9d:6f:
e3:98:e1:db:d6:7a:05:c1:f2:f8:96:6e:05:f6:6d:57:ac:c8:
25:a6:64:9d:9a:28:81:4d:c9:59:5a:31:12:e4:5f:20:d0:93:
df:16:b1:87:79:88:f9:61:d7:97:14:b7:55:c2:31:19:ce:8d:
02:c3:b8:da:b7:68:ac:30:46:83:56:98:30:0a:33:81:e0:19:
ad:cb:af:ee:ef:07:04:46:4b:4a:7c:4c:8c:2c:fe:33:90:23:
1e:57:ce:81:97:dc:00:8a:bd:d1:84:4b:d2:5a:c9:92:28:b1:
ed:87:8a:64:62:e0:6e:82:7c:28:64:ed:8a:b7:8a:81:5a:b6:
c4:b5:04:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 12:37:37 2024 by rpki-client on console-ams.rpki-client.org