Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5194018CF00B11EEBFBEB962775412E6.roa
File: 5194018CF00B11EEBFBEB962775412E6.roa (raw, json)
Hash identifier: /TRoIsKRwayy2GNGcqLPT/XQot3wbruAhZkJrg9FyyU=
Subject key identifier: C0:9D:F6:B8:AB:A0:95:AC:09:39:D1:98:91:55:07:15:4D:F8:4D:4D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A846
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5194018CF00B11EEBFBEB962775412E6.roa
Signing time: Mon 01 Apr 2024 09:36:30 +0000
ROA not before: Mon 01 Apr 2024 09:36:27 +0000
ROA not after: Sat 11 May 2024 09:36:27 +0000
asID: 138915
IP address blocks: 154.203.132.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43078 (0xa846)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 09:36:27 2024 GMT
Not After : May 11 09:36:27 2024 GMT
Subject: CN=660a801e-19d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:99:c2:6b:6c:13:00:03:94:40:2d:35:c5:5e:
c8:db:9e:86:c2:97:66:9f:e8:d9:70:2b:94:6b:a3:
ac:85:64:83:bb:e6:80:22:56:ee:ff:f3:de:aa:f6:
f1:62:15:e9:81:3b:12:2a:5d:e8:d6:a1:32:e0:69:
ae:e2:00:58:92:5e:e4:4b:3d:74:ab:81:63:59:0a:
55:ec:33:c3:83:83:3d:17:59:7a:fa:6b:7b:3b:33:
62:a6:ad:48:d6:76:e8:4d:74:9e:db:bb:7e:aa:20:
85:6e:2a:2e:d9:65:81:d7:af:2f:8d:6d:10:c1:4c:
3e:05:be:36:b4:08:68:db:4f:d8:cb:99:a8:c9:3d:
0e:bb:08:e1:e9:47:6f:d4:20:cb:1f:4c:61:a3:80:
7c:f3:02:0f:b2:e5:9b:87:e9:ae:b9:e0:d1:a2:02:
60:c7:72:04:78:1d:ee:58:12:66:15:46:d8:a5:85:
18:e5:5d:32:5e:b1:0d:97:0d:07:28:ee:99:40:14:
26:f6:ef:37:0c:b6:f7:1b:ee:58:88:8e:55:74:9b:
74:46:54:a3:0e:c4:ef:55:97:6e:f6:e1:be:66:6f:
47:fd:99:96:83:14:f4:11:9e:34:a3:02:d0:17:e7:
51:17:ba:71:1b:2f:84:5c:3b:d1:39:ec:0b:98:d0:
dd:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:9D:F6:B8:AB:A0:95:AC:09:39:D1:98:91:55:07:15:4D:F8:4D:4D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5194018CF00B11EEBFBEB962775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.132.0/24
Signature Algorithm: sha256WithRSAEncryption
68:a6:b7:22:eb:a4:de:63:cd:f4:7e:63:f9:a7:4f:c5:67:d7:
c0:34:1b:6a:dc:d7:15:50:51:9f:4d:85:06:f3:67:bb:93:80:
71:9b:a0:e9:97:3c:4f:58:ea:bf:21:df:f5:12:8d:35:93:8a:
1d:f0:a0:38:71:82:83:ac:b6:8e:57:0a:4a:1f:bb:9e:a6:9b:
f5:fe:11:f5:9e:9d:15:84:08:a9:0a:35:37:1b:c3:3b:14:29:
50:cd:95:97:0e:da:e8:82:d1:33:db:aa:d2:33:a6:e8:cf:07:
02:cc:4c:3c:0c:09:ea:3c:26:e7:08:29:eb:d3:c8:24:a9:81:
8d:5a:bd:1b:1f:82:c9:ab:ca:ae:54:23:1c:48:30:3a:ae:ac:
72:4a:ec:3d:6e:21:d7:1d:a4:83:75:39:57:14:85:1c:1f:9b:
89:a3:e5:80:e7:8c:bc:21:ca:40:da:61:26:c9:80:28:ac:8b:
97:ba:c6:ad:c0:e9:19:9b:34:1c:86:1f:d6:81:27:60:1a:f2:
04:01:fa:57:97:7e:2a:a9:a4:1e:fe:b3:1f:41:4b:f4:ca:fb:
bb:38:29:d2:9e:35:fe:aa:26:0b:67:6b:64:1f:36:77:79:8c:
de:22:9d:63:79:30:44:e9:9f:39:fb:7f:39:d6:8b:df:f9:0b:
7e:7a:7d:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:09 2024 by rpki-client on console-ams.rpki-client.org