Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55CF54A4FE1B11EE9F0FD4F6007001B1.roa
File: 55CF54A4FE1B11EE9F0FD4F6007001B1.roa (raw, json)
Hash identifier: BV/HSsnbkcwOUDjGqYPd/hKopIXh+Yu68sr+EJVrc/A=
Subject key identifier: 1D:9A:77:67:EB:E8:AF:6C:3C:B6:B4:20:9F:F2:64:6D:4A:02:B1:45
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AE54
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55CF54A4FE1B11EE9F0FD4F6007001B1.roa
Signing time: Fri 19 Apr 2024 07:06:25 +0000
ROA not before: Fri 19 Apr 2024 07:06:22 +0000
ROA not after: Wed 22 May 2024 07:06:22 +0000
asID: 150698
IP address blocks: 154.197.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44628 (0xae54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 19 07:06:22 2024 GMT
Not After : May 22 07:06:22 2024 GMT
Subject: CN=662217f1-377f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:33:4e:33:80:a7:d7:a8:94:4c:48:e5:9c:da:
51:87:50:d2:d6:7a:24:f2:f9:92:bb:c7:a0:58:fa:
43:45:2d:4d:b8:f7:80:c6:88:c4:77:47:13:a3:06:
4e:49:08:b1:db:0f:32:03:7a:39:36:f7:97:02:66:
b3:1d:41:4a:f4:b9:88:9c:d0:e0:42:d6:8d:5b:84:
07:7c:bf:d1:ff:14:f2:53:f8:7d:ab:c2:c8:3d:0f:
dd:78:59:a7:28:27:b9:8b:83:aa:1d:51:f4:c9:56:
68:30:52:d7:77:45:d4:4b:62:68:82:ec:f7:bc:9e:
34:a7:06:fd:bc:f3:7c:72:a2:94:17:4c:17:86:51:
39:c0:51:70:c7:59:cb:7f:49:2a:27:49:6f:f1:c8:
f6:f6:5c:fd:ac:5b:18:f9:9d:4b:6c:3d:ac:d4:fa:
01:60:fc:2d:bd:fd:dd:ce:9d:80:99:ff:7f:6b:21:
47:f5:a4:ff:9f:29:bb:b5:3e:10:28:a8:11:81:11:
60:07:1d:06:45:1a:3b:81:d0:c2:43:51:5a:f2:fa:
31:de:d0:cf:c9:57:77:b1:d0:e1:18:b6:7a:90:61:
fa:bb:d3:54:8d:8a:03:a2:4e:ce:70:f6:20:62:4e:
ba:f8:3c:af:92:6b:75:a2:b6:c4:1e:55:9b:62:13:
d5:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:9A:77:67:EB:E8:AF:6C:3C:B6:B4:20:9F:F2:64:6D:4A:02:B1:45
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55CF54A4FE1B11EE9F0FD4F6007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.117.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:3c:e2:4e:83:c9:b5:49:74:75:62:46:b5:d1:6a:90:3d:59:
f4:8f:de:79:05:51:07:e5:0b:ec:a7:05:63:7a:b4:ce:e1:8e:
fd:ef:16:aa:c2:cf:f1:73:b7:4f:1f:e6:12:26:79:e6:c6:a8:
e4:90:22:6d:7c:18:1f:d0:d8:98:fd:ab:6c:e5:f5:cb:81:98:
5f:9e:c4:af:db:82:9c:db:91:c7:db:e8:0b:4d:ee:9a:0d:48:
8e:ed:b1:62:40:59:97:dc:12:70:6a:30:80:8b:ad:df:15:c1:
0f:a7:05:12:49:a7:5a:8b:40:ec:28:7f:a6:45:5b:eb:d1:21:
9e:fd:2a:cb:db:6c:88:be:54:4c:04:29:4e:c0:a3:42:8a:29:
03:4c:2a:0d:3f:19:5b:50:0b:c2:09:f4:77:3f:b6:96:2e:aa:
00:b5:3d:10:0b:81:19:82:84:6b:bc:29:05:c1:cd:0c:b9:41:
6e:ec:8e:01:bc:78:7a:d4:83:31:be:ef:b0:e8:57:0b:1a:fc:
d1:08:0b:d1:c5:92:c3:19:16:43:5c:52:ed:50:93:c1:db:11:
4f:ea:58:5b:0c:36:7b:0e:f9:80:d1:1c:4b:17:7d:a9:e0:28:
e9:0e:f9:bb:5b:59:f6:cb:74:cd:68:0b:f8:8b:e9:9f:dd:43:
49:79:5c:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:09 2024 by rpki-client on console-ams.rpki-client.org