Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/62509E56F57711EEA1894B5E775412E6.roa
File: 62509E56F57711EEA1894B5E775412E6.roa (raw, json)
Hash identifier: bSIEg1E+iALEi/arwEAwtUYY5yu55Jdd+PI5zxFLN8Q=
Subject key identifier: 28:18:BC:DA:FC:E5:03:FC:75:50:D6:17:E1:0D:66:92:64:D5:3F:57
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AA4D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/62509E56F57711EEA1894B5E775412E6.roa
Signing time: Mon 08 Apr 2024 07:12:40 +0000
ROA not before: Mon 08 Apr 2024 07:12:36 +0000
ROA not after: Sat 11 May 2024 07:12:36 +0000
asID: 150698
IP address blocks: 154.198.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43597 (0xaa4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 8 07:12:36 2024 GMT
Not After : May 11 07:12:36 2024 GMT
Subject: CN=661398e7-5657
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d7:3c:6b:a1:b8:4c:3d:83:f6:51:ab:ae:8f:
95:1f:d2:f3:86:be:e5:e0:8c:62:4c:96:99:ee:c8:
81:7f:5a:6d:cc:a8:0d:91:c6:bf:73:bc:f0:b6:17:
81:3d:b1:cf:7e:7e:2e:04:62:16:5e:a5:9d:e0:a1:
97:e7:9c:69:f8:b3:d2:b0:89:1f:8d:d7:e6:fa:df:
90:a1:c1:98:b9:de:1f:b7:cb:2f:71:f0:93:d0:a9:
e3:82:94:fd:5c:1d:34:ba:da:ea:8f:29:0f:ed:be:
a2:31:7a:37:17:73:c0:7a:3f:3f:df:5b:d1:be:2d:
9f:a4:59:45:78:79:f5:68:c7:c4:72:a4:09:0c:18:
51:f3:6b:67:d8:76:ae:56:93:6a:02:4b:c9:ac:51:
ce:e4:93:b7:f2:7d:af:63:ab:49:88:73:d2:13:5a:
d5:63:08:45:7c:3b:85:35:f1:82:2e:f8:72:1b:3f:
1f:35:07:cf:73:c7:42:e9:6a:c8:7d:56:50:fd:7f:
dc:3b:94:3e:81:1d:8c:70:65:50:ac:0f:94:ff:c2:
a6:f3:5c:e6:87:b9:90:70:4d:bc:15:e5:4e:d9:0c:
82:b1:a6:bd:e7:5b:05:8f:4e:3c:0a:b9:57:bb:19:
6e:cf:7d:c5:be:0e:19:db:2c:7d:6b:74:6c:e6:85:
ae:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:18:BC:DA:FC:E5:03:FC:75:50:D6:17:E1:0D:66:92:64:D5:3F:57
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/62509E56F57711EEA1894B5E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.10.0/24
Signature Algorithm: sha256WithRSAEncryption
09:13:b9:da:b3:4b:a9:ad:fe:43:5f:9e:9a:3f:ea:5a:ce:38:
b3:78:1c:0d:9a:a1:d5:e2:04:57:0f:3a:40:a9:43:b4:83:9e:
8b:d3:db:67:2c:06:61:e3:48:3c:3e:96:88:61:d8:f4:b6:74:
40:55:eb:99:18:8e:c9:79:66:b3:28:15:94:a8:d4:1d:4a:b1:
6b:d4:59:24:0f:6d:64:5e:03:f7:ca:4c:ed:09:56:99:9d:0a:
a1:25:ee:e6:2a:cd:a7:16:08:31:95:4f:d6:00:12:25:67:48:
72:8b:b2:70:2d:fa:16:42:7a:40:99:75:95:76:9e:c4:43:cf:
81:a0:b6:31:9c:05:39:e4:3d:67:88:58:ef:89:1a:7f:eb:00:
22:83:d5:e5:ce:ee:a5:69:c5:dc:25:ca:7f:3d:02:44:d9:4f:
78:d2:10:5d:46:7c:ea:00:29:d7:19:22:23:15:95:d3:f5:a7:
52:36:4c:5b:ef:b1:7e:66:a1:08:18:53:91:f0:80:27:76:15:
61:9b:3a:cf:fd:dd:0b:1a:96:f5:f6:9d:f9:41:c7:4a:c7:48:
69:f3:83:02:c5:92:6f:3d:69:f2:1f:c3:3b:c9:25:ae:60:a8:
3b:8d:42:27:9c:aa:69:54:b5:6b:81:a4:93:88:a4:4d:7c:3f:
b7:b1:19:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:11 2024 by rpki-client on console-ams.rpki-client.org