Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/52A0A88E141711EFBB1EDD27017001B1.roa
File: 52A0A88E141711EFBB1EDD27017001B1.roa (raw, json)
Hash identifier: oc96J94irSQxF4SWJMw3yuR9KKUMkslSkG5kzPVcCJs=
Subject key identifier: 41:B1:AC:4B:89:88:F6:13:CD:53:33:BA:BC:40:D9:4B:7B:63:A6:1C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B821
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/52A0A88E141711EFBB1EDD27017001B1.roa
Signing time: Fri 17 May 2024 06:33:08 +0000
ROA not before: Fri 17 May 2024 06:33:04 +0000
ROA not after: Mon 12 May 2025 06:33:04 +0000
asID: 41095
IP address blocks: 154.193.186.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47137 (0xb821)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 17 06:33:04 2024 GMT
Not After : May 12 06:33:04 2025 GMT
Subject: CN=6646fa23-9d40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:37:cc:fd:70:da:58:cd:3f:de:9b:6d:1d:35:
06:24:d6:4f:eb:db:69:5e:c6:52:0b:9c:59:ef:30:
35:9c:aa:05:60:b2:96:0a:7e:c1:b8:11:f7:1a:db:
41:68:48:d3:b8:ca:26:b5:10:55:11:f7:e8:e0:f3:
8c:47:ba:94:15:48:b3:85:71:29:42:6e:5e:ec:62:
2a:95:8a:c1:ea:89:75:a6:c4:d3:08:2c:5e:e1:a9:
87:7a:ce:46:44:2c:24:82:5f:35:56:08:6a:c5:2a:
ad:de:a3:91:c2:97:63:53:0c:15:d8:1c:91:7d:44:
38:23:fa:ff:72:30:4c:e4:d3:ae:13:7e:11:12:eb:
c2:bf:7e:36:79:28:df:aa:0e:97:11:2f:4e:7c:a3:
0b:fb:14:41:e5:91:eb:c7:aa:cf:63:1c:0e:bb:a4:
5c:d6:5a:d0:05:54:82:57:39:3a:ea:b3:d7:ba:22:
5c:92:d1:ea:7d:5a:f6:88:ea:ec:7a:a4:a2:80:61:
a0:f2:65:1a:e1:1b:0d:50:6b:c5:02:84:92:ff:c3:
c2:1f:7e:74:55:87:f7:94:48:10:75:a5:ed:17:9d:
f0:86:c4:d1:ff:1b:3e:65:b4:64:30:dc:1a:43:73:
57:40:7e:97:c2:62:d1:47:78:f7:cd:b3:ca:12:32:
4d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:B1:AC:4B:89:88:F6:13:CD:53:33:BA:BC:40:D9:4B:7B:63:A6:1C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/52A0A88E141711EFBB1EDD27017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.186.0/23
Signature Algorithm: sha256WithRSAEncryption
c4:28:c5:a1:ea:f0:30:7d:a4:ed:b4:94:26:62:81:6a:0e:49:
31:71:e1:e4:cf:1a:bc:9c:d9:8f:86:35:9a:10:17:8e:da:4f:
18:21:c5:df:04:84:1e:01:1c:be:13:fe:0b:46:59:df:73:ad:
4f:5d:81:b1:72:2f:21:e3:57:97:28:9c:5f:8d:9b:59:f6:2a:
15:ad:28:0c:16:5d:3d:37:43:f2:4a:18:59:f4:48:4f:79:0a:
bc:74:c6:0a:bf:0c:25:df:78:bc:85:c7:34:52:41:60:10:30:
95:ea:69:0f:7c:d5:25:e7:57:2c:b4:52:31:d1:3d:9c:05:7f:
67:0b:c6:ee:da:ba:fd:25:b5:9f:8b:fe:1f:35:95:5b:bc:12:
e5:66:9a:ad:1b:58:12:45:c3:46:11:e8:39:76:50:84:1c:c1:
68:c0:6b:b0:8c:af:c0:11:4c:94:18:41:82:d4:00:b5:f9:bb:
a2:e4:b0:e9:85:10:54:c0:99:2e:32:01:25:db:e0:4a:8c:22:
85:14:a1:1d:87:f9:a8:6d:4a:f3:9a:97:f2:75:fc:67:ac:6f:
3c:7a:4d:03:d6:0e:b3:9c:81:86:f5:9c:3f:fb:2e:f6:0c:0c:
be:cd:b1:9c:0d:c1:a7:85:43:70:a8:61:11:0a:e9:39:52:ea:
19:89:92:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:06 2024 by rpki-client on console-fra.rpki-client.org