Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/474ADA42F72D11EE87315A71017001B1.roa
File: 474ADA42F72D11EE87315A71017001B1.roa (raw, json)
Hash identifier: m+K5H4TB0JCMFek9n8Y9JynCHobyS5vTLvVC0RrKu+w=
Subject key identifier: 4D:52:FE:40:A0:22:A8:6E:73:A2:4E:5F:20:E2:A4:51:4B:6D:D7:03
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AADE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/474ADA42F72D11EE87315A71017001B1.roa
Signing time: Wed 10 Apr 2024 11:27:14 +0000
ROA not before: Wed 10 Apr 2024 11:27:10 +0000
ROA not after: Thu 17 Oct 2024 11:27:10 +0000
asID: 137443
IP address blocks: 154.205.6.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:58:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43742 (0xaade)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 10 11:27:10 2024 GMT
Not After : Oct 17 11:27:10 2024 GMT
Subject: CN=66167792-b12c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:11:3a:05:29:bf:d2:86:3a:ac:69:2d:42:63:
b0:87:be:e0:af:90:ac:0b:c6:ac:ef:1a:a1:35:b3:
cf:07:36:3b:a7:9c:71:3e:3b:4a:21:6a:88:2b:7e:
63:07:74:f4:bf:53:41:a1:89:3e:fd:3b:01:d2:3d:
2a:36:f3:87:24:e8:6b:fc:84:77:4e:ae:0f:b4:08:
3d:31:4c:cc:bf:62:bb:ac:16:f4:75:4c:85:0f:ed:
c6:a8:85:7a:44:01:98:62:0a:58:b3:cb:9b:91:02:
58:be:d0:be:34:e8:8c:56:38:e1:79:ee:5e:e2:31:
a3:9e:a8:83:1c:2d:95:a0:67:63:b6:f0:26:6f:64:
fd:06:24:a4:82:14:5a:6d:0f:29:00:e0:6f:7e:78:
db:33:ab:8b:d7:43:14:dc:0b:4c:8d:ae:4f:4a:94:
9a:10:06:bf:75:0a:db:ab:a7:51:59:36:12:c0:4a:
d9:d7:e6:b6:e4:c6:d9:47:8f:0a:63:2c:99:da:3c:
18:21:9e:31:cf:05:87:e8:a5:77:0e:16:31:61:8b:
75:27:05:72:ff:25:bc:44:79:77:f1:6d:c3:4c:32:
ba:2b:cd:fd:40:8b:3c:8e:d8:8f:dc:4d:0b:34:c9:
64:d6:0c:88:b5:51:07:84:af:b0:cc:45:2a:c5:f5:
de:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:52:FE:40:A0:22:A8:6E:73:A2:4E:5F:20:E2:A4:51:4B:6D:D7:03
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/474ADA42F72D11EE87315A71017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.6.0/23
Signature Algorithm: sha256WithRSAEncryption
90:30:61:58:47:9f:e7:bd:e3:32:9c:3f:51:a7:a2:ef:7a:55:
4d:8e:3c:7c:40:b8:86:fe:5a:fd:e0:24:4a:48:dd:e3:88:f9:
81:b2:f7:62:05:e4:e5:c2:fb:92:f1:a3:17:e8:37:92:01:af:
42:12:1d:42:64:17:da:3f:4f:d9:9d:22:6c:4d:d9:ef:22:89:
09:1e:ed:2e:75:ed:32:6f:d6:2d:60:64:3c:2e:b7:95:3c:1f:
4a:bb:f0:30:ea:da:82:b9:66:d0:34:00:45:dd:f0:76:e3:f5:
87:10:c7:4a:6f:38:c8:d5:da:51:ea:7e:d3:f4:ac:ca:a3:b2:
27:6b:bf:8e:e4:29:93:39:4a:1b:a8:a2:9e:f7:66:9e:51:e5:
a2:80:84:0b:03:8b:1b:69:ea:ff:34:ca:e1:02:64:05:e0:5f:
ed:54:50:63:e2:7b:d0:a7:b7:2b:9b:c3:f7:db:89:c7:52:20:
4a:b8:ab:b5:ee:9d:ad:50:d5:fd:15:d0:89:7a:f9:b3:51:e0:
92:61:7b:5f:24:5d:4d:f0:0d:96:da:b9:a1:a9:ee:fa:9a:6a:
ae:2d:af:84:71:93:c2:d8:a5:55:7c:d3:46:78:b3:8e:2b:eb:
c4:a4:7b:a4:43:14:73:dd:f1:d0:ba:40:8f:66:f0:f4:3c:ac:
1a:bc:a8:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 17:42:26 2024 by rpki-client on console-fra.rpki-client.org