Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81C1910EF00F11EE8BC8D382775412E6.roa
File: 81C1910EF00F11EE8BC8D382775412E6.roa (raw, json)
Hash identifier: Hg2WrM+ulNnMg6llMeJtslcFhp2fqt1czTYBuvgLW08=
Subject key identifier: 3A:2A:DC:8D:39:84:B6:0E:E4:9A:7E:91:52:38:77:EE:3E:D5:44:93
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A876
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81C1910EF00F11EE8BC8D382775412E6.roa
Signing time: Mon 01 Apr 2024 10:06:30 +0000
ROA not before: Mon 01 Apr 2024 10:06:25 +0000
ROA not after: Sat 11 May 2024 10:06:25 +0000
asID: 63139
IP address blocks: 154.203.171.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43126 (0xa876)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 10:06:25 2024 GMT
Not After : May 11 10:06:25 2024 GMT
Subject: CN=660a8726-afa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:34:25:b3:fd:8c:39:5e:27:7a:c2:be:de:79:
c9:70:bc:27:e1:9e:96:e6:ed:ad:33:5e:2f:bc:f0:
45:b0:18:f1:77:30:7b:b6:fc:32:83:f7:78:e6:69:
98:83:7e:33:d4:cf:fe:e1:f8:af:c9:b6:2f:63:ee:
c2:f7:db:86:a0:d8:d8:eb:53:90:09:fb:d7:44:2d:
58:ec:9c:22:53:06:b0:9d:83:9e:4c:da:f9:5b:ea:
9b:55:5c:a6:22:e7:3a:3c:e8:58:d8:3e:95:5c:e0:
47:7d:8a:d5:80:dc:25:9f:05:51:eb:78:bd:18:08:
10:28:7c:fb:1b:69:cc:ce:47:8f:e4:f0:6f:2a:17:
29:99:42:b1:bc:a7:35:d9:c4:40:36:93:68:30:29:
2e:98:1c:de:02:6b:51:d6:25:cb:53:73:ee:e0:f7:
10:8f:93:de:52:54:8d:f1:c1:8f:50:87:13:ae:e7:
fc:a2:63:25:c7:05:6d:43:fb:04:88:cf:f8:d7:53:
5a:66:57:cb:69:48:3f:64:b3:eb:3d:52:8a:1f:4f:
b5:8a:af:08:c7:6e:0f:07:6c:c8:88:4c:5e:a4:d2:
48:cd:be:fc:4b:b6:0b:5c:7e:ed:b8:61:86:47:c3:
25:61:82:a3:fd:3f:fb:fc:0d:b5:39:fe:f9:b3:bc:
06:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:2A:DC:8D:39:84:B6:0E:E4:9A:7E:91:52:38:77:EE:3E:D5:44:93
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81C1910EF00F11EE8BC8D382775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.171.0/24
Signature Algorithm: sha256WithRSAEncryption
21:5c:4b:06:91:b2:a3:90:b2:3a:56:51:68:dc:74:f7:8b:63:
19:1d:a3:2f:65:df:4e:1a:0e:30:0b:49:e1:b4:2b:e6:d0:a4:
96:cf:5a:19:e2:0a:5c:2c:28:8c:70:66:07:44:cb:f8:00:29:
42:d8:56:68:e8:59:1c:d6:06:3f:89:43:68:c5:5d:8c:7a:24:
7b:ae:5a:31:c5:7f:c4:a7:b1:d5:21:2b:99:86:d8:48:ee:13:
77:88:32:aa:ff:bc:90:c6:96:7e:07:e2:77:98:77:ef:11:8b:
1e:b2:78:ed:1a:5a:b1:f4:94:5d:65:f1:b3:c7:40:e5:2d:ca:
3f:59:1c:57:62:ea:fa:34:19:81:ff:5b:c0:e5:00:fb:93:a6:
4f:78:66:86:eb:f3:fd:39:2a:79:16:97:2f:14:3f:7b:6d:d1:
73:c1:c3:1f:ff:0d:cd:e5:27:a8:ef:73:6a:4d:06:0d:b6:e7:
fb:2d:ba:5f:55:50:60:8b:e1:6c:67:00:dc:2f:0f:b4:98:2d:
df:d5:0a:24:79:fa:8d:22:42:6a:eb:25:e1:b3:d1:cb:97:3d:
3e:83:ac:49:ee:ca:7b:22:28:fa:fd:a9:85:96:a4:39:da:b7:
34:4c:20:e4:1e:a3:47:73:ae:5a:ba:8f:52:91:7d:e7:3b:f1:
f6:ff:70:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:14 2024 by rpki-client on console-ams.rpki-client.org