Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5827D45AF7BE11EE88A93818017001B1.roa
File: 5827D45AF7BE11EE88A93818017001B1.roa (raw, json)
Hash identifier: uByqcSPCeVj08zZEmtG6v4iFmfNzrfP5sICzIJ8QfmQ=
Subject key identifier: 2A:76:81:21:1B:BD:1F:E4:D7:02:CA:74:EC:AD:ED:D2:1D:2D:90:E9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB11
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5827D45AF7BE11EE88A93818017001B1.roa
Signing time: Thu 11 Apr 2024 04:45:39 +0000
ROA not before: Thu 11 Apr 2024 04:45:36 +0000
ROA not after: Sun 19 May 2024 04:45:36 +0000
asID: 138915
IP address blocks: 154.93.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43793 (0xab11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 11 04:45:36 2024 GMT
Not After : May 19 04:45:36 2024 GMT
Subject: CN=66176af3-5299
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:38:c3:16:09:4d:e7:e0:b2:89:95:8b:8f:d7:
e1:1a:97:f0:da:d4:7e:09:06:c3:6c:d2:4e:4d:81:
21:f6:82:d3:fc:ba:30:2e:67:59:11:04:69:56:78:
ba:c6:71:ce:46:8b:64:b3:22:fc:47:b2:49:7a:24:
8b:52:d1:c8:06:7f:05:77:a7:34:03:3e:36:29:e2:
19:59:70:c6:7d:49:95:dd:c8:1a:30:45:b8:61:41:
ae:1a:36:62:67:42:88:88:99:5c:dc:66:3f:01:2b:
86:02:03:8e:b1:ca:9b:90:de:e3:04:ee:94:88:aa:
68:a5:08:b0:09:23:23:91:ff:81:83:5e:72:66:ec:
f3:95:8d:ba:28:a8:0f:b1:73:8a:09:75:0c:ba:ac:
ec:b0:e7:2f:08:c6:5b:a9:bd:48:f5:ee:f4:45:63:
e3:7c:22:dc:52:6d:46:db:57:ca:b5:73:15:60:40:
ee:33:14:2d:10:50:0f:41:ea:66:ae:d4:36:59:12:
5d:a7:ce:d9:ef:bc:1d:69:ae:bc:15:46:47:0f:fa:
d2:f8:92:a3:e4:84:58:d7:f9:7b:be:58:0d:56:d1:
80:99:c0:0d:57:9e:06:aa:c6:fa:0d:00:31:03:48:
14:c2:43:02:a5:b9:3c:4c:5e:32:ec:2c:80:21:3d:
f4:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:76:81:21:1B:BD:1F:E4:D7:02:CA:74:EC:AD:ED:D2:1D:2D:90:E9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5827D45AF7BE11EE88A93818017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.59.0/24
Signature Algorithm: sha256WithRSAEncryption
af:a1:64:bb:61:85:8a:d4:58:5e:e2:ce:79:c8:c6:d3:38:6a:
2a:d0:e3:fa:56:cc:f0:d9:99:99:06:87:cf:be:03:32:30:e6:
27:e0:c3:55:14:55:9e:7f:c0:06:7d:32:b2:c2:80:08:4e:c5:
79:d2:14:41:62:4d:24:72:0f:bf:fd:5d:bf:29:67:74:1b:60:
81:c3:9e:c0:ae:f1:40:d4:4d:db:f8:4f:ff:dc:d6:78:a7:24:
54:68:d5:ce:28:33:15:f7:e6:22:a6:c3:02:12:83:be:38:85:
7c:82:cd:6a:9f:f9:d3:bb:95:ae:e8:44:d5:4f:d7:f3:d3:b5:
f3:02:18:ae:a8:b9:c0:45:6f:9c:de:80:ad:0f:bf:f4:b2:a9:
27:28:94:a4:ee:f2:57:8c:9e:04:58:26:00:55:0b:af:83:6b:
f4:16:f5:9e:5e:79:d8:75:93:3b:f9:6c:db:fc:aa:e3:5e:79:
5a:9d:62:d8:7a:da:3f:f9:52:72:87:fd:0e:a0:f1:71:75:e9:
4e:43:28:83:dd:b4:e4:d7:91:66:1a:95:cf:d9:3b:45:9c:70:
5e:6a:67:8d:8e:25:9e:db:da:00:af:f1:87:a7:bf:41:f2:1d:
78:ad:7d:8f:be:5a:3b:61:c7:f0:39:cc:54:26:2a:c2:81:af:
8e:a6:d0:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:09 2024 by rpki-client on console-ams.rpki-client.org