Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B66D51E8B10011EEB1015160775412E6.roa
File: B66D51E8B10011EEB1015160775412E6.roa (raw, json)
Hash identifier: UWbZpj5Pau6iUTqI7+gpGS64HKPZVYrE/NvlTYgQXb0=
Subject key identifier: 4F:B1:6F:CD:E7:23:3C:05:01:93:35:38:C8:DF:22:27:62:AB:B9:C8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 7491
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B66D51E8B10011EEB1015160775412E6.roa
Signing time: Fri 12 Jan 2024 04:11:51 +0000
ROA not before: Fri 12 Jan 2024 04:11:48 +0000
ROA not after: Fri 13 Dec 2024 04:11:48 +0000
asID: 140224
IP address blocks: 154.205.212.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29841 (0x7491)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 12 04:11:48 2024 GMT
Not After : Dec 13 04:11:48 2024 GMT
Subject: CN=65a0bc07-b474
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a0:dd:3b:76:10:d9:64:1b:b4:07:5e:d1:0d:
60:d7:82:12:f6:b0:85:bb:ba:5a:93:e4:a5:d8:7a:
b6:51:ae:da:4e:79:a9:fc:89:30:8a:5f:c4:e0:cf:
5e:e1:50:d0:63:36:35:26:c0:21:7e:55:41:53:fa:
41:0c:39:a7:9a:41:e1:05:65:0e:c1:6b:47:1b:44:
60:02:d1:2e:c1:eb:ad:ff:b7:ae:df:57:02:13:11:
c9:ea:04:01:d2:78:05:33:76:25:8a:2d:97:2a:a3:
9d:c5:3a:1e:15:5a:65:07:70:0f:8f:51:83:51:e3:
95:5a:93:6f:52:20:98:04:7c:7a:96:7d:40:c5:c4:
42:fc:de:b8:09:e6:a2:d7:6c:52:48:d2:56:92:31:
49:a4:b2:f6:c8:f0:3e:38:b8:13:28:7f:50:53:0a:
f1:e0:e3:d1:f2:7d:d3:f9:7c:11:9d:60:10:2c:83:
eb:7b:76:28:70:69:23:89:4c:14:64:d6:86:17:e8:
b4:fb:9e:1d:43:9b:04:86:31:cc:a8:7d:f0:f3:9e:
22:d3:6f:a2:16:a5:58:30:9e:87:b6:b9:ab:b8:57:
61:f5:ae:7e:2a:59:93:fc:fb:b7:44:49:f5:74:b8:
2f:0a:e8:ad:af:2d:b3:51:93:9d:b1:41:ac:8e:0d:
36:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:B1:6F:CD:E7:23:3C:05:01:93:35:38:C8:DF:22:27:62:AB:B9:C8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B66D51E8B10011EEB1015160775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.212.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:e3:ac:20:2b:01:7b:89:1c:da:55:a9:07:7a:72:ac:f6:70:
62:8a:70:4a:5a:7c:4e:a8:08:ad:fc:57:17:d3:88:10:af:20:
dd:c7:3f:26:ef:be:98:68:a7:10:2b:f0:d2:d6:23:e9:b4:e4:
39:c9:ca:e5:d3:29:92:cb:4a:50:63:09:95:4e:8e:7c:0c:de:
95:66:49:a0:e1:61:01:88:41:ea:e0:d9:8c:2d:79:f8:ed:fb:
58:9e:eb:64:a3:d5:08:1a:f5:0e:9d:dc:99:30:73:cc:1d:18:
b7:b5:23:1b:cd:a5:a6:0f:c1:ed:34:c9:9b:af:dd:94:8c:1e:
a0:bf:77:92:4d:04:cc:27:44:3d:9a:65:eb:22:ec:12:61:cc:
da:04:d8:0b:94:cf:53:b4:e8:e6:50:ff:1b:2f:44:1e:83:dd:
09:e8:3b:b5:11:12:83:c9:97:1c:1e:91:78:2e:51:cc:b6:f5:
75:07:3d:54:66:31:48:0b:9f:5d:a7:2a:6c:b0:c3:21:90:2d:
c6:ea:7d:44:e3:53:23:88:e6:96:27:59:48:30:d3:57:08:68:
71:9f:2c:70:12:a7:c6:2d:66:9c:80:9c:be:a9:fc:7b:58:a1:
2a:ba:d3:79:0f:8e:a1:09:fd:b7:3e:e5:10:b1:c2:84:f7:87:
d5:17:c1:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:19 2024 by rpki-client on console-ams.rpki-client.org