Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7603A8EEF86F11EE9390F137017001B1.roa
File: 7603A8EEF86F11EE9390F137017001B1.roa (raw, json)
Hash identifier: j8EAWF40qnJT1uFoc9qJrlVXjqlLJJPNJ8k67+VI7U0=
Subject key identifier: 8B:92:CB:2F:3A:FE:E6:7F:E0:D6:44:50:32:43:2D:80:E6:D8:C9:0F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ABA6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7603A8EEF86F11EE9390F137017001B1.roa
Signing time: Fri 12 Apr 2024 01:53:30 +0000
ROA not before: Fri 12 Apr 2024 01:53:27 +0000
ROA not after: Mon 22 Apr 2024 01:53:27 +0000
asID: 5065
IP address blocks: 154.222.32.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 22 Apr 2024 01:53:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43942 (0xaba6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 12 01:53:27 2024 GMT
Not After : Apr 22 01:53:27 2024 GMT
Subject: CN=6618941a-90a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:6e:25:6a:c5:74:10:8a:7a:16:f1:2a:0c:e6:
3e:c4:1b:aa:9f:80:af:86:82:d4:8f:5c:c9:6b:94:
91:ad:aa:02:8d:d7:14:1b:67:a1:25:be:77:cb:69:
58:54:0e:0b:32:67:85:37:bb:96:65:db:79:17:ae:
5b:2f:84:2f:ca:c9:58:a5:a2:53:35:f5:cc:d2:b7:
66:54:b7:9d:32:0b:01:85:7c:23:dc:1a:7d:9f:89:
d9:40:6a:bd:f0:80:fd:06:fe:9a:73:7d:b7:7d:f2:
73:0c:60:99:a2:e7:26:3b:61:30:56:7d:20:3a:81:
f6:e0:bb:07:c6:e7:d0:91:29:af:76:39:c8:bf:23:
41:a9:d0:bf:3d:15:b1:62:2e:0e:2a:bc:b2:5d:7a:
76:a8:b8:07:92:53:ba:6f:68:66:3e:75:0c:5b:95:
08:b1:ae:98:a6:c9:27:23:33:2a:fb:34:e2:d9:cc:
33:9f:34:4a:9e:94:79:c9:7a:f6:b0:2d:2e:85:3b:
e5:67:6c:bf:14:99:aa:7e:78:43:c6:8e:36:a6:78:
53:5e:91:19:15:88:13:03:56:a7:74:e0:f5:a8:cb:
0f:b8:64:04:95:2f:35:b0:67:ed:26:8e:09:b2:d2:
4e:f0:5f:2e:96:f9:a3:f9:6e:33:a7:f5:d8:25:28:
9d:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:92:CB:2F:3A:FE:E6:7F:E0:D6:44:50:32:43:2D:80:E6:D8:C9:0F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7603A8EEF86F11EE9390F137017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.32.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:c5:7f:ec:99:ef:61:4d:9e:94:59:5e:ad:4c:51:ec:6e:a2:
25:2b:1d:2c:16:07:61:96:8a:68:d6:e7:b3:01:3e:f8:48:5d:
e5:f1:ab:44:9d:97:52:d5:8e:12:f9:0d:26:ec:7d:22:c9:ef:
07:db:77:7f:18:e9:cd:b8:c4:92:75:28:b7:f2:26:bf:4f:e0:
59:c4:36:61:87:c5:25:3c:ed:48:f7:71:68:e9:96:a6:a3:7c:
d1:c1:30:53:90:e1:a8:91:34:1d:7a:ce:80:17:8f:85:32:27:
ba:2a:cb:4b:69:14:3b:3d:8f:32:82:6c:31:ba:43:d6:9c:4a:
45:1f:b4:6a:91:1c:4d:aa:61:d9:bf:a0:07:3a:2b:4d:7a:6a:
93:84:21:70:97:0a:d9:a7:82:73:24:f6:2a:f9:ff:d7:4f:e5:
2d:19:89:cb:21:62:0d:b4:29:5d:44:09:bf:79:9b:47:a1:e8:
3a:71:2b:d3:1d:30:19:72:3f:50:14:54:67:00:d0:9b:47:94:
c3:53:c1:78:83:8e:10:75:25:a3:b0:48:9d:77:df:52:9f:ad:
0f:d2:2a:37:0c:11:b4:e5:ec:25:9d:f7:a4:0d:73:d9:6d:87:
f8:76:5d:dc:4c:0d:6a:e0:3f:69:2d:8e:dc:f8:6e:d3:22:bd:
3a:29:04:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:23 2024 by rpki-client on console-ams.rpki-client.org