Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5383AAE4F47D11EEB65D9DAB775412E6.roa
File: 5383AAE4F47D11EEB65D9DAB775412E6.roa (raw, json)
Hash identifier: UJviFuxrpcqjrC74JzuhxxbaX0qE2chMIYumk7kmwVQ=
Subject key identifier: 1B:3A:7D:37:B3:2F:44:72:65:DF:AF:9D:57:05:DA:F7:39:89:B4:F2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A98C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5383AAE4F47D11EEB65D9DAB775412E6.roa
Signing time: Sun 07 Apr 2024 01:22:40 +0000
ROA not before: Sun 07 Apr 2024 01:22:37 +0000
ROA not after: Mon 13 May 2024 01:22:37 +0000
asID: 138915
IP address blocks: 154.206.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43404 (0xa98c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 01:22:37 2024 GMT
Not After : May 13 01:22:37 2024 GMT
Subject: CN=6611f560-752c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:e5:fc:c5:eb:d7:13:df:f8:e7:f0:83:99:f4:
c1:8d:5a:98:60:1a:14:93:8d:b4:2c:37:04:07:b5:
99:ba:02:d8:53:f4:8b:0c:9d:94:9c:58:4d:27:8a:
28:e3:b1:c3:df:79:07:e7:22:f7:40:19:3b:c4:08:
98:11:8b:d9:41:7c:af:c6:17:4a:12:de:16:0b:f2:
6e:c5:7c:2e:65:1f:a3:34:47:1c:c6:e9:ee:8e:ed:
3f:88:31:e5:26:b5:50:99:88:14:52:a3:da:3a:4f:
a0:09:83:21:33:03:1a:29:cd:21:c0:a8:8b:c6:4b:
5c:06:a5:07:d7:46:c4:26:61:1d:89:63:5f:d1:d0:
0a:d4:48:0e:85:dc:31:52:4c:3a:77:47:92:dc:0a:
b5:fe:56:e9:f5:e4:8b:27:06:5e:c7:b6:a2:f7:ca:
11:b0:5b:b8:84:01:63:5f:90:df:17:72:72:74:9b:
bb:1d:29:17:cb:7b:3b:a9:13:a3:d6:3a:b1:df:44:
37:66:fa:14:d1:95:55:47:b3:f2:53:35:10:d0:e9:
e7:0d:72:24:66:9d:bc:4b:b3:82:a6:24:de:69:08:
bd:5e:58:17:3f:62:0b:eb:96:24:89:50:27:b6:6c:
74:23:3f:a1:8f:f0:39:0f:c4:37:86:58:f9:00:92:
f0:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:3A:7D:37:B3:2F:44:72:65:DF:AF:9D:57:05:DA:F7:39:89:B4:F2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5383AAE4F47D11EEB65D9DAB775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.65.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:e7:7a:58:3d:18:e6:c0:da:fb:44:9f:30:83:c4:a8:ca:73:
17:e6:5f:b6:30:12:6c:53:24:f6:1d:98:e5:85:c6:c5:65:97:
b9:d2:92:91:ec:b7:4c:1a:af:d0:9d:a7:94:85:8c:5c:53:8b:
b4:76:cf:e5:cc:1c:fa:39:1b:1b:06:7a:15:4b:5c:71:4e:89:
e4:4e:7b:d7:55:bb:7e:35:cc:52:32:98:d8:a8:e4:a7:04:10:
d7:3f:14:93:6f:9b:c7:4f:d2:9a:ef:f0:e5:ef:bc:48:7c:74:
c4:1d:b5:78:24:c8:b9:0e:82:f1:24:63:75:51:fc:05:a8:0d:
29:41:ba:88:5d:28:d4:85:4c:1b:33:22:89:78:4f:7d:0c:44:
42:96:57:97:f4:0e:54:d7:88:26:4f:b4:0b:37:12:82:4f:fb:
0a:df:28:2d:2d:03:9b:c7:b8:8d:69:85:10:35:f2:24:1f:c6:
23:7b:48:88:19:a4:1c:97:f0:97:58:8f:84:c3:21:93:86:7c:
3d:bc:61:86:46:ec:07:6c:42:21:d4:f4:9d:88:9c:61:77:a6:
b4:42:e7:4a:40:aa:ef:c2:2e:32:54:e4:b8:b6:3c:62:f5:4f:
e5:ca:19:b2:f6:ce:53:82:c5:21:ad:2a:d4:b2:08:8c:be:2f:
84:e7:d0:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:09 2024 by rpki-client on console-ams.rpki-client.org