Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BAC3DF02F87511EEA11A9F70017001B1.roa
File: BAC3DF02F87511EEA11A9F70017001B1.roa (raw, json)
Hash identifier: Yb+XIiFeqy01ZN5vLK7L8QAfVY0mulwySEvu6d2VRcc=
Subject key identifier: EF:58:A4:78:A7:23:BE:23:EC:68:C5:0A:88:8A:98:94:A3:1C:BC:71
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ABAE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BAC3DF02F87511EEA11A9F70017001B1.roa
Signing time: Fri 12 Apr 2024 02:38:22 +0000
ROA not before: Fri 12 Apr 2024 02:38:19 +0000
ROA not after: Mon 22 Apr 2024 02:38:19 +0000
asID: 5065
IP address blocks: 154.86.112.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 22 Apr 2024 02:38:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43950 (0xabae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 12 02:38:19 2024 GMT
Not After : Apr 22 02:38:19 2024 GMT
Subject: CN=66189e9e-f62e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:aa:70:d5:bd:f6:41:75:d9:7f:35:62:cd:c9:
b9:bb:c5:8c:b7:c8:b1:5a:16:f0:af:69:b7:0a:b8:
c4:91:34:06:f5:dd:f2:48:ff:96:a0:53:50:81:48:
d4:74:fe:ab:62:90:04:28:ad:64:87:28:cc:d3:42:
46:a2:83:d2:4a:68:3b:0d:59:f6:64:dd:30:ea:18:
c5:63:1a:0f:00:86:57:be:67:dc:60:25:f4:c8:15:
94:dd:0a:db:5e:f7:b6:34:f5:be:65:0c:e0:e4:15:
bc:43:9d:0b:62:f5:4c:8f:7b:21:45:c8:56:10:6a:
c7:2a:1b:1c:d8:27:4e:55:6e:b9:32:b2:a1:eb:69:
0e:8b:a0:10:8a:db:90:19:e2:f1:76:da:06:0a:7c:
86:4e:c9:63:d1:c7:a4:d6:c9:6a:21:87:9c:60:28:
b8:9a:f0:a1:ff:1e:95:54:b0:82:31:2c:b4:85:bb:
e6:4b:1f:00:94:db:b9:d7:30:4e:cc:2b:06:11:0b:
ff:98:93:7f:02:1d:cd:aa:f7:32:0a:1d:b7:6f:c3:
75:a0:52:17:9a:8b:fe:6c:fa:7f:9e:37:34:3b:f3:
9b:6b:c4:ee:0b:a1:de:37:81:f7:4a:79:66:1d:5d:
93:16:6d:70:04:5d:40:a6:c9:99:70:10:1f:21:81:
c9:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:58:A4:78:A7:23:BE:23:EC:68:C5:0A:88:8A:98:94:A3:1C:BC:71
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BAC3DF02F87511EEA11A9F70017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.112.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:96:b7:ca:91:a2:d3:89:7d:b8:31:96:8a:e4:6a:bf:9a:67:
c7:eb:f6:d9:1e:6a:13:67:bb:07:9f:7c:77:97:ac:8a:15:88:
e6:1f:cf:a4:92:bd:38:af:8d:a9:63:01:73:b7:0a:0c:68:35:
ff:a9:dc:05:5d:0c:3e:0d:c1:80:d8:5e:ca:ff:2c:3f:9c:27:
88:36:cb:5e:f7:58:d8:42:5e:e8:3d:29:b4:10:56:3c:58:8b:
63:a1:2e:3b:58:e5:c2:65:2d:28:61:98:ea:f8:55:da:31:74:
08:ba:d6:41:a0:fa:c2:49:88:cf:01:48:52:16:bb:8f:ac:a8:
fd:28:63:98:aa:94:ba:e7:5e:9c:cc:77:02:89:22:24:b1:77:
0c:a6:5c:2f:c2:2b:be:26:39:e7:7f:c3:90:b9:17:fe:15:4c:
9c:fa:e0:f3:ed:67:51:cc:89:dc:6e:53:5d:ce:f5:7c:d3:56:
e7:15:d9:9c:41:0e:cf:d4:11:ee:6a:eb:c3:e3:2c:f8:7f:93:
2f:14:46:e6:1d:69:6f:ae:d8:17:58:a5:9e:51:78:80:68:72:
39:35:f8:6b:1a:b1:af:f5:d7:66:b3:58:9c:0a:fc:03:4e:67:
3a:34:fa:a7:fb:7e:2c:ac:67:ac:e2:63:35:63:5a:4c:a8:bf:
0c:69:2c:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:25 2024 by rpki-client on console-ams.rpki-client.org