Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8B0A591EF00D11EE8A060D73775412E6.roa
File: 8B0A591EF00D11EE8A060D73775412E6.roa (raw, json)
Hash identifier: bZ2M9BVOK43HojJ5y0Wn1jHo3y1cvvnD9sFT1I0cVTw=
Subject key identifier: DF:03:E6:4F:DC:BD:E5:A7:AB:25:55:E5:91:81:DF:68:73:A8:22:A5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A860
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8B0A591EF00D11EE8A060D73775412E6.roa
Signing time: Mon 01 Apr 2024 09:52:25 +0000
ROA not before: Mon 01 Apr 2024 09:52:22 +0000
ROA not after: Sat 11 May 2024 09:52:22 +0000
asID: 63139
IP address blocks: 154.203.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43104 (0xa860)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 09:52:22 2024 GMT
Not After : May 11 09:52:22 2024 GMT
Subject: CN=660a83d9-44c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:8f:8e:7a:f6:b9:8f:32:bb:75:37:cb:76:c5:
18:fb:8d:9f:36:71:3d:70:12:e1:1d:76:22:fc:5c:
24:17:4b:f1:60:db:1e:34:84:fa:6d:80:22:c9:7e:
3e:c6:98:54:3c:5f:4c:ca:8b:a2:e4:33:d6:22:26:
ec:b7:ac:7e:ae:c4:08:a0:64:2b:6f:c3:50:c5:9a:
05:b4:f0:7b:ff:26:9f:57:15:54:49:bd:ea:dc:03:
dd:69:71:32:12:43:54:c7:da:f7:f5:6a:72:18:13:
4f:47:db:df:bd:1b:7c:0f:a9:3d:97:14:ef:4c:84:
ea:86:f6:cd:9b:4f:0e:ea:47:82:f4:bc:68:8e:47:
b2:e5:b3:ba:b7:e2:f8:f0:bd:97:85:c8:6d:be:c3:
c9:74:de:14:af:c6:fd:c7:92:ab:1f:4a:12:60:8a:
d7:9a:6c:e0:94:d8:ff:cb:15:3d:55:d6:e5:44:99:
d8:9e:28:73:66:1f:fd:6c:51:c2:4e:96:42:c1:35:
19:44:2e:6d:52:87:5c:39:e9:77:5c:f2:02:ba:22:
2d:cf:42:3d:e4:e6:64:c0:43:58:f6:ca:d7:d2:69:
c7:83:12:ec:7c:a6:51:4c:c2:9a:8a:e5:d7:3a:ad:
49:9f:28:b9:2a:ed:0b:78:76:37:6c:75:0a:a1:17:
f1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:03:E6:4F:DC:BD:E5:A7:AB:25:55:E5:91:81:DF:68:73:A8:22:A5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8B0A591EF00D11EE8A060D73775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.182.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:8c:56:13:c1:40:be:1c:50:79:2c:25:51:81:0e:be:91:ac:
ae:04:f6:d5:b6:52:2a:db:be:59:e2:90:ec:28:83:67:ea:94:
39:ba:a0:d9:f0:73:f6:72:f4:14:2b:6d:1d:13:5b:62:28:2a:
30:f0:a5:42:ac:14:70:b0:ed:4b:17:92:94:fe:8a:33:69:86:
4c:8b:a3:b9:63:09:f7:76:7f:c2:7b:36:a8:b7:8e:7e:67:e6:
87:85:41:54:a5:5e:fb:06:47:c9:04:c1:4f:66:eb:2f:af:e9:
4e:39:9b:52:ce:d0:ea:a7:dd:d2:b8:23:60:e3:30:2d:78:81:
0a:03:a2:ed:f9:73:3c:e1:12:40:a6:9b:0d:7c:e4:84:9d:4d:
6e:93:77:f2:8d:30:15:d8:b8:47:f6:01:88:11:48:40:f0:bb:
20:9a:46:fb:31:4e:84:42:c6:d4:40:9c:03:19:77:40:f8:c7:
1b:79:40:a5:b4:ca:7f:86:d3:73:e1:65:5d:4e:88:e6:58:d0:
0e:c7:1d:d2:7a:4e:6e:0c:7a:d2:2d:08:27:ec:7b:d7:68:9b:
47:b7:81:52:71:2c:cc:6b:eb:84:0e:14:85:e7:bb:5f:42:86:
45:a4:bb:0b:87:43:5d:93:f8:c4:0b:30:89:cf:69:46:02:2a:
1c:75:27:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:14 2024 by rpki-client on console-ams.rpki-client.org