Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB3005F8F86A11EEBF90000B017001B1.roa
File: AB3005F8F86A11EEBF90000B017001B1.roa (raw, json)
Hash identifier: LF749WVbFlKgEjFIDT6J2+hxeSUneUlr5wY/irpN+vU=
Subject key identifier: FA:08:5B:28:72:C7:31:25:4C:14:14:AE:C0:62:66:92:CE:CE:A4:C7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB72
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB3005F8F86A11EEBF90000B017001B1.roa
Signing time: Fri 12 Apr 2024 01:19:12 +0000
ROA not before: Fri 12 Apr 2024 01:19:08 +0000
ROA not after: Sun 19 May 2024 01:19:08 +0000
asID: 138915
IP address blocks: 154.93.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43890 (0xab72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 12 01:19:08 2024 GMT
Not After : May 19 01:19:08 2024 GMT
Subject: CN=66188c10-c03d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:dd:15:ee:f2:d1:7b:40:57:64:d2:ae:78:63:
9f:0e:a4:24:6b:ed:e6:32:b9:83:99:7e:f2:2d:7d:
49:ba:0e:29:93:d8:d1:a9:ad:a1:8a:0d:8a:b7:c3:
ef:f4:10:05:62:25:4f:f0:17:60:e9:ec:75:3b:31:
b3:9d:57:45:5e:a7:20:85:1c:5a:cc:c8:69:c4:9f:
53:30:fd:ed:12:36:d5:df:6e:52:d0:8b:eb:09:b1:
26:d4:ac:4b:f4:f6:2e:a0:11:c2:7b:f8:7f:04:b0:
3a:e7:5e:a7:2f:35:e6:bf:b7:7b:1b:c5:31:bc:6b:
5b:89:4c:d7:ac:40:b1:77:ca:6e:80:2f:9d:20:8f:
b3:33:3c:6b:16:f7:9d:01:1f:ee:e1:3a:e9:7e:93:
d8:45:19:a8:47:8b:59:1d:7d:2d:1c:81:52:92:6e:
61:fd:ea:45:c0:95:50:85:78:cf:ec:f7:bd:a2:28:
73:50:42:41:f9:f6:f3:b5:fe:a3:bc:eb:ad:c2:19:
f9:75:16:da:12:f4:00:1a:c9:ca:17:f0:13:f4:d2:
ea:56:5a:c2:4a:71:f7:ed:83:de:cb:b3:13:73:1b:
b3:03:6d:03:a3:92:27:69:04:d1:b1:a9:1c:77:bc:
10:e2:10:47:7a:c3:a3:ae:eb:81:da:51:17:34:d8:
86:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:08:5B:28:72:C7:31:25:4C:14:14:AE:C0:62:66:92:CE:CE:A4:C7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB3005F8F86A11EEBF90000B017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.60.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:d8:b5:26:80:45:b9:6f:5c:ef:71:2f:fc:10:0e:4c:50:ce:
dd:5b:bd:54:ec:a4:9c:a4:0a:6d:09:8b:dc:23:0b:32:c1:79:
24:63:80:0a:2d:11:0b:ca:7a:68:a2:e1:96:97:b2:df:27:e0:
e1:70:45:26:12:83:90:a1:33:30:63:e8:dd:9d:f9:75:17:30:
9d:71:e7:17:01:79:8d:3c:23:c6:16:95:50:f3:02:88:e7:76:
27:5f:d2:93:66:03:37:5f:0a:8a:cf:4e:34:29:dc:e6:d8:36:
0b:70:fb:43:da:30:28:b2:de:26:92:f8:95:68:6a:e0:33:27:
3a:81:e5:dc:58:25:b4:63:b4:96:89:24:56:5a:76:4e:54:03:
e0:5c:44:1d:12:03:76:bd:a5:d2:23:d6:05:6e:a4:e1:e7:fb:
93:ed:e5:49:44:18:a9:54:c3:a6:99:f4:31:78:3a:c5:de:ed:
a2:b6:45:ff:75:4a:81:56:3b:d7:81:a8:de:b6:13:a2:ef:95:
0c:5a:7d:83:2d:65:08:fc:fd:d2:a0:f4:18:bd:35:55:a6:38:
eb:95:62:de:ea:09:c6:4d:87:74:21:c2:c3:cb:73:00:c2:64:
ce:32:4e:58:eb:c2:11:66:4b:33:1e:42:19:b3:2d:6e:54:1c:
ba:0a:b8:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:17 2024 by rpki-client on console-ams.rpki-client.org