Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6DA6A540F7C311EEA16CA940017001B1.roa
File: 6DA6A540F7C311EEA16CA940017001B1.roa (raw, json)
Hash identifier: +vtIpF3YkhctbcjULQdp7szT6Nt/QYUTejGTYeU39Lc=
Subject key identifier: 64:AD:A9:67:C4:17:CB:19:90:2F:42:48:ED:67:70:41:A3:CB:4E:23
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB45
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6DA6A540F7C311EEA16CA940017001B1.roa
Signing time: Thu 11 Apr 2024 05:22:03 +0000
ROA not before: Thu 11 Apr 2024 05:21:59 +0000
ROA not after: Sun 19 May 2024 05:21:59 +0000
asID: 138915
IP address blocks: 154.93.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43845 (0xab45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 11 05:21:59 2024 GMT
Not After : May 19 05:21:59 2024 GMT
Subject: CN=6617737a-ea9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:33:cb:e5:1c:aa:49:57:de:75:d2:ae:b0:42:
5e:51:bc:e5:66:00:72:40:32:53:98:04:7f:65:59:
60:25:39:3d:08:22:e7:31:ff:fb:9a:34:96:ec:f2:
76:d2:8b:18:5b:0f:0a:e6:28:b1:89:8b:c7:cf:09:
d9:00:0f:15:3d:39:8d:4f:dc:05:f8:9f:b5:c9:68:
85:04:74:04:ba:2c:c4:60:52:9d:e9:3c:d3:2b:6b:
c2:26:50:1c:7c:c4:74:b5:81:e6:42:4a:5f:db:a0:
d9:81:6a:9e:44:99:b8:9a:9f:26:9e:39:f2:20:13:
2b:ab:45:91:0f:11:6f:3c:7b:fe:58:55:bd:06:8b:
2d:39:b3:ed:a4:59:ec:38:c4:48:28:84:54:c8:65:
63:e6:7a:3d:25:d9:85:93:37:da:fe:04:4e:36:bb:
89:94:f6:11:81:3c:04:2d:b6:d5:83:9a:ef:6c:54:
19:da:99:f5:72:9e:e2:fa:4b:93:30:8e:85:1c:59:
f5:fb:21:7b:2e:18:6f:b0:d0:56:03:1b:9d:05:cf:
25:01:f9:08:4e:01:7d:3c:07:f1:70:a8:47:c2:a6:
fe:e8:48:4f:9b:d0:f8:06:60:fc:ef:f2:a3:c6:ad:
13:8d:ed:23:72:06:ab:83:1a:46:97:fd:3f:3d:9d:
2c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:AD:A9:67:C4:17:CB:19:90:2F:42:48:ED:67:70:41:A3:CB:4E:23
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6DA6A540F7C311EEA16CA940017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.62.0/24
Signature Algorithm: sha256WithRSAEncryption
40:60:1b:93:2e:a9:9b:9d:0b:62:15:4a:45:26:8e:6d:79:86:
2a:ad:dc:38:26:36:7e:c4:40:6b:d1:63:58:9a:77:eb:41:91:
d3:42:77:21:e7:0a:f3:78:5d:18:3d:bd:ea:df:23:66:7e:26:
d5:55:ef:cc:c3:6a:8e:c7:44:1e:f5:67:83:42:20:f1:df:23:
97:82:5f:15:30:b7:6f:45:1c:32:57:ca:23:49:3d:f7:2b:12:
11:07:67:4c:da:4b:92:f2:4d:b1:ef:7c:3f:e3:8a:09:95:ae:
c6:f6:a6:8c:23:4e:fe:e5:f3:4f:cd:e4:57:ca:8a:87:b4:43:
80:90:3e:d9:a3:25:28:74:7b:cb:c9:e0:14:4c:94:53:b3:5c:
c4:62:6c:35:a6:e5:a2:5b:81:09:3c:4b:6b:5e:e3:3e:03:c7:
2b:77:c9:e9:1c:c1:b8:c6:1d:ee:ee:f4:4b:57:d9:95:79:4a:
a4:ea:5e:77:b8:62:24:f3:32:41:a8:19:9e:5e:81:9e:4d:54:
51:b0:8c:29:a8:a2:04:d3:47:25:41:43:ec:f1:5e:e4:e3:25:
ba:ba:8b:ba:64:e3:4a:6c:18:64:0c:6e:73:85:1d:33:4f:97:
87:5c:03:03:fe:40:b0:ad:5c:6c:9b:40:f7:57:2e:2f:b6:32:
f8:72:aa:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:27 2024 by rpki-client on console-fra.rpki-client.org