Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B42B05C4F17411EE94540177775412E6.roa
File: B42B05C4F17411EE94540177775412E6.roa (raw, json)
Hash identifier: a3BdYT/lgNMPiy+UrK8UicGLkkDRD3hBGtcM6YxeeFY=
Subject key identifier: 6B:9F:D4:A6:E1:F8:67:53:31:8E:52:8E:F7:26:04:88:2C:10:05:52
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A946
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B42B05C4F17411EE94540177775412E6.roa
Signing time: Wed 03 Apr 2024 04:43:24 +0000
ROA not before: Wed 03 Apr 2024 04:43:20 +0000
ROA not after: Sun 05 May 2024 04:43:20 +0000
asID: 150698
IP address blocks: 154.197.72.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43334 (0xa946)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 3 04:43:20 2024 GMT
Not After : May 5 04:43:20 2024 GMT
Subject: CN=660cde6c-d9d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:92:53:39:fd:8f:d6:e6:1d:61:00:77:64:03:
64:d1:f4:ec:dd:0f:e6:06:7f:49:e1:66:87:d0:83:
5a:49:76:f1:57:37:48:a0:2a:63:f4:18:50:07:4b:
f2:c3:99:98:a9:53:cd:92:a7:7f:06:45:c9:a8:65:
0c:b7:11:5b:a0:29:9f:ab:7f:9c:7d:22:a8:a0:14:
55:ff:3a:8b:c6:f7:bd:e3:41:ea:ac:08:9e:68:ed:
e1:47:b8:d1:29:a6:c8:76:82:e5:c6:4b:b7:42:1a:
f4:c2:f9:75:94:4f:dd:66:91:c6:0e:3c:80:ea:b2:
0d:53:23:d1:62:56:c8:b0:3d:fb:7b:6d:01:e2:7e:
60:c0:52:cf:56:fd:db:2e:96:6b:2a:60:62:88:97:
ab:bb:e9:61:f1:63:d3:f3:97:76:69:24:fa:28:d0:
8d:94:49:d6:e1:f9:dc:e2:2f:1c:ec:3e:5a:d3:f1:
b2:7f:67:94:c0:cc:93:9b:5a:c1:37:08:e8:3f:d8:
0d:80:6d:e7:5e:e4:44:29:b6:79:52:ab:2f:54:05:
4d:7d:ba:38:ef:ef:34:4c:ee:7d:65:d0:03:a8:27:
25:03:cd:d9:82:fa:4a:8d:b7:43:ed:45:0d:71:55:
64:d1:f9:3e:c2:83:a7:f5:06:d7:ad:36:66:71:79:
46:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:9F:D4:A6:E1:F8:67:53:31:8E:52:8E:F7:26:04:88:2C:10:05:52
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B42B05C4F17411EE94540177775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.72.0/24
Signature Algorithm: sha256WithRSAEncryption
27:9d:4d:55:3a:d0:f1:67:17:d9:b7:30:d8:93:2c:e3:11:d4:
46:5b:46:93:f4:00:68:0d:b1:ea:d4:91:42:87:f5:f4:07:87:
bb:a1:af:fa:33:1a:ce:9d:3e:01:41:82:c2:86:9d:1f:f3:c0:
01:10:16:a0:19:4c:33:50:98:22:6f:21:d3:6b:26:54:22:d7:
22:40:de:9d:fb:e4:bc:1a:14:89:13:50:cd:98:56:58:74:1d:
29:20:ea:5c:8e:85:c7:6a:51:9d:83:d8:60:1d:78:b5:77:a5:
2a:af:af:c1:5b:e2:ed:a0:83:3e:7d:41:40:76:10:1a:3b:7f:
f7:c6:67:b8:79:b3:34:4c:48:2b:01:3a:b7:70:00:c9:de:ac:
5e:3c:36:ba:8a:b3:19:e5:62:ad:8c:1b:2e:1a:24:fa:44:8e:
ed:c6:51:7a:ab:27:a4:34:a8:19:d4:a2:a6:69:69:0c:18:ed:
16:0e:de:aa:27:4e:68:27:eb:60:bd:90:66:67:9f:09:82:69:
99:0f:6a:22:25:bb:ec:2b:f9:1c:41:8f:95:e4:c3:2d:bd:b4:
c6:da:05:42:be:a1:bd:40:b9:ef:92:9c:6a:95:6a:79:af:f1:
92:2b:86:e1:4c:fe:d2:e3:e4:d0:24:97:9e:2c:c5:78:cf:9f:
77:2c:4c:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:18 2024 by rpki-client on console-ams.rpki-client.org