Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/588FD650F01011EE9D498088775412E6.roa
File: 588FD650F01011EE9D498088775412E6.roa (raw, json)
Hash identifier: MjSycw5uoORB2LLP07FajjN9/H3983gysobBhfy4l+E=
Subject key identifier: 99:9C:23:79:40:AC:6A:5E:18:D7:78:35:D7:F1:07:2D:84:E2:B9:12
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A880
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/588FD650F01011EE9D498088775412E6.roa
Signing time: Mon 01 Apr 2024 10:12:29 +0000
ROA not before: Mon 01 Apr 2024 10:12:26 +0000
ROA not after: Sat 11 May 2024 10:12:26 +0000
asID: 63139
IP address blocks: 154.203.166.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43136 (0xa880)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 10:12:26 2024 GMT
Not After : May 11 10:12:26 2024 GMT
Subject: CN=660a888d-69cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:33:60:db:59:9b:3b:5a:88:14:44:a8:1f:0e:
e3:3f:61:73:d0:9c:c7:7d:49:59:0f:c6:99:40:32:
96:94:44:7e:b2:62:3b:98:0e:2e:91:85:ac:40:e7:
ef:1c:ce:73:48:69:62:3e:13:e7:42:37:1a:e6:8d:
1b:59:e8:85:bf:ae:db:d6:a7:0c:ef:8d:d8:e1:7f:
06:e2:ea:76:09:9a:50:91:2e:82:15:d9:19:39:67:
a3:d7:9a:6b:e9:0b:b1:28:e7:e0:13:b6:bb:e0:cb:
63:fe:2d:da:7c:e9:4f:97:ff:d3:df:46:01:3a:b7:
55:17:e5:95:cf:c0:d8:4e:9d:30:96:90:0d:44:ac:
fa:36:73:41:5b:9d:99:e1:e6:a5:e0:ba:41:a9:2e:
5e:50:9f:11:7b:25:27:ab:2b:d7:4c:1a:8a:73:ea:
d6:73:e5:25:83:c5:b9:44:0e:c1:f7:e9:81:1b:38:
88:3e:bb:32:ab:83:b2:9b:ab:4b:04:16:95:bb:d6:
c7:be:a8:7e:97:c0:7a:08:52:ad:01:3b:37:ed:7a:
c6:96:9f:d1:35:aa:40:1f:f4:3b:7f:36:84:8e:b2:
42:f6:7b:d5:54:75:cd:21:f8:41:b1:bd:4d:d1:da:
a0:b9:17:8c:2b:a7:5e:b0:a6:e4:4c:5f:87:09:70:
8d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:9C:23:79:40:AC:6A:5E:18:D7:78:35:D7:F1:07:2D:84:E2:B9:12
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/588FD650F01011EE9D498088775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.166.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:b4:11:aa:c3:b2:84:f4:db:39:88:2c:09:dc:d1:88:8b:2a:
84:f1:c3:f1:0c:42:ce:b0:fd:7d:63:eb:79:03:36:59:ab:1e:
b9:8e:48:7d:15:fd:f6:b8:0a:b2:9a:b9:10:48:d7:19:07:4c:
3d:5f:1d:df:91:85:ce:a9:e0:48:9e:e7:63:a2:98:67:ce:bc:
45:43:01:b6:01:a0:f3:9e:8d:4a:94:95:1d:17:47:64:0e:a8:
63:f5:78:d7:da:14:13:0f:8e:55:47:72:5f:b1:c2:ba:16:f7:
1f:8d:15:06:52:2b:ab:b7:f8:dd:80:b5:f9:09:98:b7:3f:07:
92:5b:bf:fd:0b:5b:c1:80:89:c3:0c:9b:0b:03:7c:23:c4:bd:
5e:fb:ea:f9:56:25:b3:72:ac:76:94:80:91:6c:9b:50:8c:4b:
97:8b:f4:f5:db:1a:df:7d:a6:39:05:c1:e0:d7:43:5d:d7:51:
cf:e0:1a:16:cc:ae:7a:a0:ef:0c:05:59:1a:2d:5b:b5:39:29:
90:32:a3:c8:be:cf:68:42:ff:b8:19:3e:99:96:48:90:66:fe:
4d:45:8f:fe:a2:fd:fe:76:15:a6:49:1e:d6:ba:ea:46:cb:b9:
d6:b7:34:b2:a7:0d:d7:ab:8b:f9:4a:d2:ff:e3:46:a0:df:50:
04:6a:6e:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:09 2024 by rpki-client on console-ams.rpki-client.org