Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AC7804CCFBAF11EEB7413A3E017001B1.roa
File: AC7804CCFBAF11EEB7413A3E017001B1.roa (raw, json)
Hash identifier: 3sdNT/vIvNHmfIhHo7Sf1NQNJNcP66YDgfVY2f+Dxws=
Subject key identifier: D6:52:41:FF:BB:15:0C:67:72:20:C8:A8:C6:AF:86:AA:12:8B:C8:9D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ADDB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AC7804CCFBAF11EEB7413A3E017001B1.roa
Signing time: Tue 16 Apr 2024 05:10:43 +0000
ROA not before: Tue 16 Apr 2024 05:10:39 +0000
ROA not after: Sun 09 Jun 2024 05:10:39 +0000
asID: 25818
IP address blocks: 154.91.208.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44507 (0xaddb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 05:10:39 2024 GMT
Not After : Jun 9 05:10:39 2024 GMT
Subject: CN=661e0853-31a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:90:15:32:c4:4b:6e:5c:b6:fc:4a:29:4e:3a:
86:91:f1:8f:8f:20:c9:74:72:25:03:dd:0f:20:a9:
ef:23:bb:be:0f:77:db:9b:75:fe:5f:42:58:15:7f:
7a:1a:26:28:a8:77:2d:95:df:42:c1:97:5a:29:6f:
9f:e6:d2:29:28:78:42:6f:3d:c6:f5:73:65:c0:6a:
7c:ef:24:c4:33:f5:0c:59:a7:11:68:f4:e2:62:a6:
e7:bb:16:89:f9:ef:f1:8a:eb:87:f9:0f:7b:02:55:
90:b6:aa:83:84:a2:2c:12:8e:fc:41:03:06:5d:b8:
e9:f2:20:12:ea:44:04:b7:a9:6a:5a:b1:98:20:f7:
ab:d8:20:b8:a7:cf:f6:a6:b0:ce:cd:c9:93:f8:52:
97:4a:b4:0a:9d:ea:18:c2:99:6c:a9:d2:8d:ce:3e:
8b:eb:58:8f:e9:40:44:eb:24:d5:49:e6:75:10:91:
e6:29:43:25:8d:1a:0a:67:5c:74:6c:02:93:06:e5:
31:8a:54:f5:51:c2:11:a7:0e:0b:38:0f:88:77:db:
23:38:07:91:78:37:00:b3:c7:bd:65:5d:76:f0:8b:
42:17:c2:74:c9:17:eb:a4:6a:a4:dc:37:03:7c:25:
6b:7e:d5:05:0b:1c:86:ea:55:dc:42:f6:52:59:06:
40:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:52:41:FF:BB:15:0C:67:72:20:C8:A8:C6:AF:86:AA:12:8B:C8:9D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AC7804CCFBAF11EEB7413A3E017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.208.0/20
Signature Algorithm: sha256WithRSAEncryption
41:e2:cc:8c:b7:8e:d1:8b:76:3f:82:43:cf:c2:e5:d1:82:8c:
6d:05:ab:ce:c1:32:55:e4:66:80:d0:a5:b3:c8:16:70:d9:22:
ae:ff:21:ee:1e:29:92:e3:a1:2c:78:7c:30:33:19:8d:20:a6:
7a:05:3d:5a:f3:21:22:4d:cc:99:11:b8:c2:53:1e:9f:a9:8d:
79:f4:20:b5:d0:88:ab:0d:16:c6:6e:88:a5:ea:22:5d:c8:9f:
62:d7:9b:bb:1f:26:d8:f2:4b:67:3a:f1:06:07:a7:93:ed:d1:
70:f3:4b:86:15:ed:6b:4a:1b:ed:4f:df:15:58:df:dc:92:96:
12:97:ef:35:fa:e8:71:bc:ff:88:43:32:f3:4d:16:90:b2:12:
3c:32:0a:3a:95:7e:ec:af:98:e7:76:16:27:c0:65:c0:53:df:
83:b6:95:09:5b:47:19:9e:d8:6d:3b:9e:17:fd:3e:24:7e:81:
8c:27:7f:45:07:41:10:ee:1d:2a:1f:3e:99:ad:5d:21:55:b4:
ea:da:8b:f7:c9:87:91:45:ec:63:66:ec:ab:4e:da:da:10:c0:
a3:9c:52:3a:bd:fc:90:58:2b:b6:68:d8:28:25:83:f9:2f:e3:
01:70:10:e4:c1:48:b6:a5:15:51:14:88:a7:12:da:3f:3d:64:
2c:d6:09:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:18 2024 by rpki-client on console-ams.rpki-client.org