Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B54CA310F72B11EEA1F3B365017001B1.roa
File: B54CA310F72B11EEA1F3B365017001B1.roa (raw, json)
Hash identifier: leImrRjobyRDrUda6td9njfaQHNNvHh9OZNteGT4vO4=
Subject key identifier: 70:A8:74:69:70:5D:BD:70:25:90:32:B7:0E:84:D1:74:E5:19:F5:21
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AAD4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B54CA310F72B11EEA1F3B365017001B1.roa
Signing time: Wed 10 Apr 2024 11:15:59 +0000
ROA not before: Wed 10 Apr 2024 11:15:54 +0000
ROA not after: Fri 20 Dec 2024 11:15:54 +0000
asID: 152450
IP address blocks: 154.211.20.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43732 (0xaad4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 10 11:15:54 2024 GMT
Not After : Dec 20 11:15:54 2024 GMT
Subject: CN=661674ef-1925
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:96:44:6d:61:1c:87:37:22:bb:32:5f:39:fb:
7a:d9:9e:bf:e8:28:8e:f7:8c:8c:5a:e7:3e:df:15:
b4:62:25:de:8d:4e:c6:5f:da:92:72:aa:e9:d5:97:
52:b9:1e:24:49:0c:ce:a2:7b:31:23:3f:80:a4:03:
cc:9e:a5:0f:70:03:05:87:5e:49:ce:15:06:b1:5f:
cc:5e:c9:ba:26:29:dc:af:42:9c:29:d3:00:97:c3:
3f:13:38:ad:1e:a9:94:67:a7:93:04:04:be:aa:ee:
9e:0e:8a:fb:3d:a0:c5:71:56:b1:14:e4:7b:c7:80:
3e:b4:78:e4:7c:e0:2e:b7:dd:0d:30:1b:f0:17:20:
f2:54:a7:04:6c:5c:12:63:50:fa:88:ec:7b:b6:de:
9a:4b:15:39:fe:55:d7:28:87:bc:10:cc:02:f5:e7:
78:fb:2e:cf:e1:1b:6a:a4:82:d8:53:fb:dd:0e:64:
32:c2:68:39:97:9d:fe:dd:46:53:fa:7e:40:66:3d:
75:ca:2c:55:63:97:ab:99:a6:f8:fe:67:a8:1f:fe:
ad:35:d0:4f:64:37:96:db:15:db:41:af:87:7c:78:
d9:f7:8c:2a:71:1e:4b:20:84:08:42:53:35:3c:7a:
9d:d0:8b:49:a2:19:49:fd:b0:db:81:09:16:2d:8d:
ea:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:A8:74:69:70:5D:BD:70:25:90:32:B7:0E:84:D1:74:E5:19:F5:21
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B54CA310F72B11EEA1F3B365017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.20.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:ac:8d:b5:57:80:d5:93:c6:b2:90:0e:6a:6e:3b:18:80:a1:
8f:10:e0:6e:35:b7:87:c3:30:e8:67:42:8d:2f:d4:70:4f:de:
42:1c:6c:c5:f6:26:91:13:c6:88:52:a9:2d:49:af:de:89:21:
73:70:cd:ab:08:47:98:4f:b6:44:31:a1:39:ad:37:27:9f:df:
8c:eb:9d:dd:b7:2c:26:18:e6:6e:65:01:7a:95:2b:b5:5a:ce:
5a:b2:a1:0c:9a:18:df:41:cd:d5:1f:5f:ab:2e:da:a9:a0:28:
5f:75:cf:20:2d:59:1c:21:30:27:70:9f:cc:cd:ae:83:e3:16:
fc:e9:8f:ea:d8:09:51:3f:3c:a8:7c:14:22:d3:f1:88:ba:5e:
1d:65:7e:5e:e8:02:9f:3b:2b:d9:47:48:43:54:06:72:f2:43:
bd:af:e0:64:6b:67:81:bc:f2:a2:18:40:46:ff:f9:9c:18:8b:
52:c4:43:04:26:de:91:bf:77:29:ae:1f:1b:68:01:b5:28:2a:
a1:f0:e3:3e:f2:82:26:92:72:9e:8d:27:4c:0c:65:83:ab:35:
d5:f3:9c:36:2d:56:22:d5:0b:de:e7:be:bf:f0:14:a5:3b:18:
5f:90:e8:c9:74:ba:1b:55:58:50:b7:32:51:83:e6:92:64:4f:
99:ac:f9:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:36 2024 by rpki-client on console-fra.rpki-client.org