Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B183D3F0F00C11EEB7915C6D775412E6.roa
File: B183D3F0F00C11EEB7915C6D775412E6.roa (raw, json)
Hash identifier: YuFE8LBw7i/Owxh3DlZtIzhVju7Np25Neq4JIF19zEY=
Subject key identifier: 4E:E9:C3:F3:1F:D8:88:23:19:2A:51:00:2D:63:27:06:70:57:C1:49
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A856
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B183D3F0F00C11EEB7915C6D775412E6.roa
Signing time: Mon 01 Apr 2024 09:46:20 +0000
ROA not before: Mon 01 Apr 2024 09:46:17 +0000
ROA not after: Sat 11 May 2024 09:46:17 +0000
asID: 138915
IP address blocks: 154.205.145.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43094 (0xa856)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 09:46:17 2024 GMT
Not After : May 11 09:46:17 2024 GMT
Subject: CN=660a826c-3bbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c4:53:67:e6:e4:bd:ca:71:de:eb:20:39:43:
eb:e2:fa:c8:7a:f2:46:c3:4a:ad:0e:02:53:47:ca:
f1:1a:52:68:0d:3a:a4:0d:00:30:d0:87:10:52:5b:
ff:b6:40:02:a9:34:7f:44:60:86:6b:aa:89:c3:92:
9e:2e:08:ff:42:34:e5:f0:57:3e:29:05:41:c2:f6:
9a:62:32:40:3e:f7:0a:a4:2b:b1:b8:e1:a2:83:16:
c9:83:c0:d8:5c:e4:aa:77:0e:9a:68:2f:51:7c:a4:
98:60:6a:56:78:b4:59:7a:d2:26:cc:14:65:50:db:
a6:e6:af:c7:d4:23:39:fe:cc:92:ac:4f:d5:a8:21:
a6:dc:46:b2:c4:5f:b8:ee:dc:8a:7c:23:d9:b8:7c:
0f:3a:c4:d9:60:ed:9c:62:4e:fa:d7:23:f2:73:40:
01:fa:aa:eb:62:4f:1d:77:bf:39:e3:80:6a:e2:9e:
1f:f8:36:18:c1:60:28:2b:dc:92:47:d7:6c:19:7e:
14:ba:ac:95:bd:b9:f2:62:d7:a8:46:a8:0a:20:77:
37:db:10:c3:e1:29:06:83:05:37:bf:4b:bc:f9:96:
8b:0a:bd:1b:b8:a7:ee:cc:fc:9a:b9:b5:d1:f5:c4:
dc:1f:1c:76:c3:d3:e2:d2:9c:3a:02:44:18:03:9b:
85:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:E9:C3:F3:1F:D8:88:23:19:2A:51:00:2D:63:27:06:70:57:C1:49
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B183D3F0F00C11EEB7915C6D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.145.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:be:0f:0d:e3:6f:b9:20:76:c5:53:35:c1:53:2f:db:64:6c:
f6:bd:0b:7a:c9:38:57:b8:bf:62:50:ad:fd:29:6a:e9:30:7b:
3c:92:04:86:88:4d:35:1d:38:94:a4:53:b6:07:aa:62:47:e3:
b7:2a:5e:c1:70:d6:6e:5d:28:fb:94:8f:9a:6a:06:e5:44:0f:
9e:fc:b0:82:1c:b5:4a:3b:76:5d:21:4f:bd:c1:87:bb:d0:76:
69:72:ca:95:cc:ef:ca:32:4f:af:e8:66:93:2b:76:b1:89:35:
19:ec:f4:ef:88:df:1e:55:61:04:b6:91:32:8d:61:dd:a9:bc:
7a:85:bd:2a:bd:ee:c8:fc:60:c6:26:b8:88:82:e2:cf:a1:86:
dc:04:1a:73:53:c9:a7:80:fe:b0:98:51:b3:ef:82:52:f0:41:
da:bb:a1:0c:48:38:53:dd:21:b7:b8:3e:33:e6:7c:f6:8e:07:
15:eb:ed:e7:a4:f7:e3:1c:17:21:11:eb:51:d4:99:87:a0:2b:
59:73:07:6f:6f:b5:30:f1:68:d5:a0:c8:14:f6:99:5b:5d:32:
cc:3c:ca:31:ef:0a:b9:6f:d8:32:4b:cf:ee:4e:06:58:4e:70:
40:37:88:74:b9:20:17:55:a5:30:30:ed:94:45:0a:b7:00:1a:
83:21:ca:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:30:00 2024 by rpki-client on console-fra.rpki-client.org