Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57B090BC417911EEB21300894AD9E6FC.roa
File: 57B090BC417911EEB21300894AD9E6FC.roa (raw, json)
Hash identifier: 0fr1yQ1mKknppxOdNkxzhR7yHjL+GCuBSw6RIxvntKY=
Subject key identifier: 82:5B:9C:19:0B:F0:BB:C9:A1:D7:AB:29:3A:CE:ED:E6:76:FA:C4:BE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3799
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57B090BC417911EEB21300894AD9E6FC.roa
Signing time: Wed 23 Aug 2023 05:53:11 +0000
ROA not before: Wed 23 Aug 2023 05:53:08 +0000
ROA not after: Sat 24 Aug 2024 05:53:08 +0000
asID: 5065
IP address blocks: 154.86.96.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14233 (0x3799)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 23 05:53:08 2023 GMT
Not After : Aug 24 05:53:08 2024 GMT
Subject: CN=64e59ec7-67ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:40:fa:1f:af:58:dc:43:5b:be:d9:80:c2:3a:
28:35:8c:0d:cf:d9:01:36:10:88:40:ff:81:76:2b:
09:9e:4c:d9:6b:07:65:b6:a9:eb:d4:45:7d:72:89:
2e:5c:1a:93:1c:d3:35:ec:c5:a9:22:43:9e:66:fc:
a1:73:a6:28:e2:34:86:0d:a3:73:a2:27:ff:5a:22:
d2:1b:c5:fb:cd:a2:54:1f:94:c5:61:eb:13:d9:eb:
cd:21:3b:f7:6d:8f:36:40:8a:9a:8c:3e:fa:b6:ab:
e6:2a:78:0c:18:4c:b4:4b:4c:ff:3e:1a:a9:22:6c:
c0:1e:99:e1:37:07:47:bb:a8:55:db:a1:e6:75:44:
f6:5a:c9:fa:e5:64:14:e2:52:42:e5:9d:a0:50:06:
75:d0:a6:c2:a9:20:05:9e:7b:8b:1e:a7:61:af:1c:
c5:8b:65:9c:73:00:78:6f:74:12:2e:5a:35:e7:72:
67:51:39:80:18:b6:e0:ae:6b:23:e0:31:44:c5:b7:
54:42:27:73:1b:52:ae:f6:5b:05:ff:00:8d:ff:07:
94:b1:ad:6e:4b:cd:b9:c3:57:8b:b0:3f:81:8e:e8:
7b:0c:35:2f:67:ac:a6:d0:a7:cc:4c:0b:05:fa:05:
83:d7:4d:89:7c:23:71:ed:fc:8a:14:6c:eb:a3:6f:
96:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:5B:9C:19:0B:F0:BB:C9:A1:D7:AB:29:3A:CE:ED:E6:76:FA:C4:BE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57B090BC417911EEB21300894AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.96.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:04:99:5e:0b:aa:3b:d2:b7:7d:99:d2:af:20:ff:b7:f9:60:
8a:54:e6:82:75:3a:81:54:c3:0f:71:ef:f8:68:a1:fd:67:9b:
8d:1b:8f:ac:28:3f:1d:00:c0:d2:63:cc:68:ba:1f:d7:98:2f:
00:10:54:5d:00:a9:aa:3e:d2:1c:7a:47:bd:c7:69:60:2a:b6:
52:b7:b0:5f:1d:a2:f2:75:08:2a:b7:55:c1:8c:c6:bf:f2:a4:
0f:96:57:b0:fb:dd:90:1a:fb:02:80:e8:e0:44:7a:0c:c6:fa:
ff:1f:d4:13:1b:58:6f:ba:df:67:03:90:b2:ca:de:b4:3f:41:
ce:5e:9a:76:75:c5:92:13:52:84:70:c2:c0:0a:be:34:09:76:
7e:ac:3e:a3:80:d7:0e:62:27:90:fd:38:c0:47:17:94:55:97:
de:83:b7:44:13:73:be:00:e3:da:38:ef:2d:a1:14:a8:73:c4:
43:50:bf:45:27:f3:f8:13:fd:a1:2d:48:3f:94:4d:a5:cb:0a:
89:1c:da:b1:57:a2:c8:9c:b3:70:c5:6b:83:96:92:65:81:92:
68:d8:32:e8:f8:1e:1f:fb:29:a3:40:44:2e:38:6d:30:c9:8a:
2d:11:16:94:ad:86:17:d4:27:28:9d:9d:67:9b:d5:d2:ee:82:
b4:11:4e:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:09 2024 by rpki-client on console-ams.rpki-client.org