Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/570475B8021F11EFAEC30D31017001B1.roa
File: 570475B8021F11EFAEC30D31017001B1.roa (raw, json)
Hash identifier: N0D5ZP0R4ew4z3KBxn4MxWFRyDQGuaG6/cd/uYMWzNs=
Subject key identifier: 64:80:A4:B9:C0:3E:24:79:CB:08:58:58:B9:7A:EC:DD:25:BA:0F:CD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AFFC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/570475B8021F11EFAEC30D31017001B1.roa
Signing time: Wed 24 Apr 2024 09:45:10 +0000
ROA not before: Wed 24 Apr 2024 09:45:07 +0000
ROA not after: Mon 29 Apr 2024 09:45:07 +0000
asID: 399077
IP address blocks: 154.82.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 29 Apr 2024 09:45:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45052 (0xaffc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 24 09:45:07 2024 GMT
Not After : Apr 29 09:45:07 2024 GMT
Subject: CN=6628d4a6-e46a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ea:ff:b1:36:10:1a:ee:17:e0:6b:1a:ec:77:
1b:36:4d:56:0f:4e:24:c9:83:4d:4b:f3:c3:ce:28:
7c:29:7c:c1:33:a2:23:a7:88:cb:0c:c8:6c:29:d2:
63:f1:f0:1d:65:bd:ba:98:fd:a9:c6:11:e2:8a:14:
60:cc:84:b8:7f:e2:25:dd:aa:17:b7:5f:51:40:49:
97:d4:f5:f9:6a:0d:49:62:ba:0f:12:b6:1a:69:e3:
5f:d8:8c:83:c7:07:42:f8:33:19:04:73:a6:08:0e:
cf:ee:7a:1e:76:0c:44:71:14:4e:89:f3:7b:0b:aa:
37:d4:84:ec:4f:5e:c7:a1:de:6d:0a:93:86:c7:a9:
72:a1:74:fe:3d:3f:a0:8b:72:27:90:4e:44:1f:56:
ed:11:54:85:f2:47:c1:40:69:f7:b2:44:11:b4:0a:
2a:81:d7:e7:e3:5d:0a:cc:c0:69:ae:99:c3:fd:96:
2e:22:ac:33:4c:72:a3:88:dc:09:44:ab:7a:03:70:
1c:a8:46:80:e3:54:12:31:ec:ea:55:fa:c3:72:32:
d9:4c:13:b8:8c:28:ca:88:aa:bd:63:1d:3a:c6:e3:
35:39:ab:6d:6a:78:fa:13:24:e9:96:94:82:49:6c:
e1:37:da:e8:64:a1:ad:27:8d:e0:b1:1e:58:c6:35:
89:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:80:A4:B9:C0:3E:24:79:CB:08:58:58:B9:7A:EC:DD:25:BA:0F:CD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/570475B8021F11EFAEC30D31017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.64.0/18
Signature Algorithm: sha256WithRSAEncryption
61:f3:a0:00:f3:73:22:84:ce:c7:76:38:75:c0:2f:e1:d9:02:
96:3a:a6:17:22:84:a1:40:5c:3b:d9:64:03:a3:09:81:b6:1e:
7e:e5:4c:22:ed:1d:08:55:b8:91:0e:b5:51:82:52:b2:25:ce:
01:f7:7e:eb:cf:9a:f8:df:87:8d:a9:21:37:a5:c8:6f:a1:0a:
af:b1:42:2b:6f:ff:1e:76:f8:18:74:33:00:53:7b:8a:84:61:
d5:e2:9f:e1:cd:92:d4:05:d2:80:c0:81:bb:11:0b:ac:65:7b:
02:df:83:8a:be:78:93:05:a8:42:05:f6:62:83:b0:c4:d7:d5:
e1:75:b0:89:b3:3d:4a:22:93:17:e1:a6:a9:11:d7:5b:f1:83:
a2:6c:b0:00:33:02:70:dc:9a:f5:ae:c5:ec:35:0f:0a:e4:7e:
b2:60:c7:1b:0a:63:99:f3:51:06:1a:34:34:6d:44:2f:92:6d:
07:4a:9f:f9:de:d9:f8:6b:1b:c1:d3:27:45:5c:22:dd:a7:38:
33:6f:50:ba:13:6b:48:81:28:dc:eb:72:a7:ef:8f:8a:07:55:
cd:81:11:64:3a:22:51:bd:5c:12:00:b6:45:c8:cf:73:51:9c:
20:e9:42:21:89:4e:4b:f5:da:61:f0:6a:d8:ad:bf:6d:f3:10:
4c:54:b9:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 07:56:00 2024 by rpki-client on console-ams.rpki-client.org