Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/515661ACFE2411EEA9FB633E017001B1.roa
File: 515661ACFE2411EEA9FB633E017001B1.roa (raw, json)
Hash identifier: nmicysikN0XMSRbZ2zg7E3+OReecwgN3yMxM3XvkbCc=
Subject key identifier: 12:73:91:34:32:1D:28:AF:B4:CF:25:63:A8:25:E7:D8:6C:DE:24:21
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AE6C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/515661ACFE2411EEA9FB633E017001B1.roa
Signing time: Fri 19 Apr 2024 08:10:43 +0000
ROA not before: Fri 19 Apr 2024 08:10:40 +0000
ROA not after: Mon 29 Apr 2024 08:10:40 +0000
asID: 5065
IP address blocks: 154.84.184.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 29 Apr 2024 08:10:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44652 (0xae6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 19 08:10:40 2024 GMT
Not After : Apr 29 08:10:40 2024 GMT
Subject: CN=66222703-52fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c7:f6:20:31:f6:c8:7d:81:0d:61:29:b8:4f:
88:99:0d:70:84:fe:76:27:12:fd:72:33:3c:ec:7d:
00:1f:e2:24:a9:a1:90:b6:83:bf:1a:1b:be:04:d5:
5b:17:5b:18:29:f3:a8:2f:23:4a:26:01:97:6d:d4:
f7:15:b3:72:21:3c:2c:b1:3d:73:c4:e2:6b:8d:3a:
fc:5a:fe:f4:af:45:dc:16:a6:dc:9c:5b:67:da:8b:
0d:15:8c:dd:7a:b8:0b:51:5f:b4:c7:89:e4:93:bb:
be:56:b2:5e:71:ad:3b:69:93:dd:64:d4:7d:30:2d:
21:e2:a3:2e:ec:80:ac:a1:4b:4d:4f:46:04:05:83:
70:ef:d9:77:3c:ef:80:b7:3f:b0:de:d8:1a:4a:97:
67:91:5c:b8:aa:31:a4:c9:82:f1:e3:3d:41:5e:63:
a6:ee:45:63:ab:b5:41:76:ea:c8:53:49:5f:f1:47:
9e:aa:85:c9:13:d9:37:2a:b2:89:7a:2a:b5:90:f9:
23:3c:68:bc:81:2d:e4:23:41:d0:56:76:ef:b2:52:
59:47:bc:06:ac:8e:f7:23:fe:db:39:a1:4c:dc:25:
fd:cf:a9:93:4f:e0:38:40:39:2e:e3:6c:9e:58:bb:
b8:b1:18:85:02:f5:8b:02:a9:b7:8d:22:fe:62:d4:
ee:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:73:91:34:32:1D:28:AF:B4:CF:25:63:A8:25:E7:D8:6C:DE:24:21
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/515661ACFE2411EEA9FB633E017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.184.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:8a:bf:83:a7:50:09:eb:33:e8:70:d2:00:be:95:c6:ba:a0:
2b:ee:bf:a2:05:b1:b5:0f:4b:1e:c4:bc:53:e0:83:08:28:8b:
82:6a:3d:93:94:60:0b:c1:c8:a5:a6:21:93:80:ba:97:ba:22:
1b:44:b3:6a:e6:92:92:f9:8d:6f:dd:e4:e4:9a:94:e2:8a:28:
c7:59:8e:cb:41:7d:f0:3f:a3:a5:88:42:1a:4e:e6:e7:9f:77:
cc:91:ae:58:62:3c:28:ed:b4:d3:a2:fe:d3:04:0e:28:bf:bd:
d0:e0:65:f1:59:bb:37:8c:6f:c6:8f:ad:66:bb:31:f6:7f:6d:
91:57:16:21:76:71:2f:c0:59:96:20:e8:b1:a3:e3:86:12:8b:
b5:8f:4b:d4:26:b1:b0:29:60:3c:bc:82:2c:4d:7e:38:31:c8:
70:6f:ba:5f:17:32:b8:ad:bc:2f:bc:10:c2:d8:f1:c5:c8:ed:
1e:15:56:72:bf:fb:80:fd:1d:eb:84:59:22:28:0d:84:ce:ad:
e3:d4:b0:37:37:c1:dc:86:65:75:44:b7:2c:d9:2a:b0:0e:eb:
6f:58:f6:d6:d4:63:6a:4b:36:f0:30:f4:45:fc:55:d9:fa:c8:
d1:f7:9c:1e:cb:5d:22:0a:2f:9d:b5:cd:29:a1:08:2f:ac:ac:
2d:37:32:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 07:55:59 2024 by rpki-client on console-ams.rpki-client.org