Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6CA5694EFAEB11EEB8FE28FB007001B1.roa
File: 6CA5694EFAEB11EEB8FE28FB007001B1.roa (raw, json)
Hash identifier: 8E7RPc6MgxCuau5tUYgmjK67e8zQmu4rNXNaLLf2hl0=
Subject key identifier: 1F:45:6E:E0:1B:62:D5:9E:E8:26:94:5D:C6:1D:DC:22:93:F4:C0:21
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ACAA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6CA5694EFAEB11EEB8FE28FB007001B1.roa
Signing time: Mon 15 Apr 2024 05:45:54 +0000
ROA not before: Mon 15 Apr 2024 05:45:51 +0000
ROA not after: Thu 30 May 2024 05:45:51 +0000
asID: 63139
IP address blocks: 154.93.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44202 (0xacaa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 05:45:51 2024 GMT
Not After : May 30 05:45:51 2024 GMT
Subject: CN=661cbf12-56fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:bd:14:8a:6c:a4:dc:6d:8e:ac:a9:49:75:c0:
15:90:62:36:20:e1:33:ca:5f:a3:1b:15:67:e7:ef:
36:0b:08:9a:8e:d5:ba:fe:cd:6d:2a:8a:a1:de:cb:
c0:e2:ec:64:55:ba:cb:6d:d5:c6:8b:87:fd:9c:16:
db:11:20:4c:29:46:c8:e2:37:5a:27:88:27:fa:ff:
25:11:93:80:31:e4:83:06:11:b0:0e:6a:9e:e6:f8:
b8:1b:7c:6e:47:df:7d:d7:35:2d:ab:93:c8:90:ec:
b1:d5:ac:6e:21:c5:78:c5:94:80:48:00:c1:cb:97:
78:2b:20:24:0a:ab:7f:f1:cb:bc:e5:6d:3c:87:b8:
da:80:a7:07:b4:21:8b:37:a2:7a:94:15:d7:34:ff:
62:7d:86:04:35:72:03:a3:3d:4c:d1:6f:ce:ba:76:
56:c3:96:68:b6:b2:ac:a9:4c:2f:cf:d4:e8:6e:ea:
5f:ca:9e:a6:a4:1d:62:96:9f:4d:de:70:cb:1a:70:
eb:e3:82:2a:33:34:9f:d6:ff:af:16:15:8a:60:06:
34:4a:4f:4b:4a:d0:4e:d6:c0:d8:1f:a3:f8:be:1d:
91:5c:14:9e:32:a8:62:d1:78:90:a0:fd:55:ed:4f:
95:1e:61:c3:46:25:01:bf:c7:23:97:5f:f6:e5:d6:
b9:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:45:6E:E0:1B:62:D5:9E:E8:26:94:5D:C6:1D:DC:22:93:F4:C0:21
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6CA5694EFAEB11EEB8FE28FB007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.69.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:e6:03:c8:8c:6c:50:44:41:6f:99:6c:70:5e:8f:6f:52:ef:
15:2c:8f:0d:61:b8:20:a7:16:66:40:ff:c1:c0:b5:f8:96:95:
80:ee:e1:5d:43:64:3b:07:fb:d7:1f:66:3b:f2:12:4e:53:57:
fb:10:4b:ef:b7:72:17:98:5c:fc:c5:a5:5d:cf:f9:55:86:97:
d4:ea:4b:d2:ee:37:a0:5e:c2:d5:a0:30:33:5d:b9:42:8a:07:
4a:13:94:03:46:fa:4b:43:ea:66:94:a7:73:35:ef:00:43:2a:
31:cf:f7:7a:8f:24:74:bf:6c:3d:00:44:d6:a1:fa:f0:4b:4d:
71:27:18:cd:78:13:b1:10:7e:2d:2d:cd:be:60:48:12:a4:6a:
ab:bb:af:2c:13:80:93:60:22:92:f5:cb:b4:d6:1c:49:a8:08:
bb:5c:3a:d4:96:6c:dd:cc:9b:15:2d:5f:9e:45:92:1e:82:ac:
af:cf:e2:b0:36:2a:dd:96:83:21:c3:22:57:79:bc:cf:12:9a:
8f:d2:b3:fb:75:88:0c:ae:55:2e:ba:11:da:b3:ef:9c:91:65:
3e:09:0f:41:c7:27:aa:78:a6:d6:b4:7d:65:8c:72:14:83:0d:
8a:ea:9d:85:6d:dc:bc:4c:e0:a1:f5:c0:41:0e:a3:6e:64:b5:
37:f7:2d:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:12 2024 by rpki-client on console-ams.rpki-client.org