Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF5FA1E8F7BE11EEB868BF1C017001B1.roa
File: BF5FA1E8F7BE11EEB868BF1C017001B1.roa (raw, json)
Hash identifier: JVvEc4M9lRZ4okEwu3dQhjqX/B3EwT4M7jjAfPTojI0=
Subject key identifier: 1F:DB:92:C5:F4:0F:5A:92:FB:85:C9:DE:5F:07:74:18:0B:9B:42:0D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB15
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF5FA1E8F7BE11EEB868BF1C017001B1.roa
Signing time: Thu 11 Apr 2024 04:48:32 +0000
ROA not before: Thu 11 Apr 2024 04:48:28 +0000
ROA not after: Sun 19 May 2024 04:48:28 +0000
asID: 138915
IP address blocks: 154.93.33.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43797 (0xab15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 11 04:48:28 2024 GMT
Not After : May 19 04:48:28 2024 GMT
Subject: CN=66176ba0-5600
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:98:7f:3f:ee:41:29:15:76:c9:d1:8e:43:a0:
31:96:a3:03:c8:ee:04:f4:46:32:23:9d:8d:a1:9b:
be:89:37:63:70:11:80:40:6a:17:e7:d3:7a:e9:ca:
15:6c:4e:05:13:95:0c:4c:2f:89:32:dc:04:37:cf:
7f:e2:c2:92:d3:8f:37:38:46:8e:58:ab:75:f3:fc:
f5:06:22:dd:87:15:93:f1:fb:dc:9f:13:08:2a:3f:
aa:e7:ac:e9:0d:f4:27:6f:81:fb:e5:3c:a2:db:42:
07:21:30:1a:80:a7:41:a3:6c:1a:db:db:b2:c2:58:
99:42:c3:52:ce:37:ba:41:98:74:64:9e:25:01:ce:
79:bf:cb:88:76:93:c0:2b:0e:4f:bd:ea:13:f5:55:
8d:9d:18:3b:5b:1f:8e:f4:83:9d:30:23:99:49:33:
b6:f8:e5:66:69:04:d3:b0:2e:4d:b7:34:ef:4e:d1:
53:a9:ea:6d:d7:41:c6:99:d0:78:b6:5c:ce:56:c8:
a8:97:65:ec:02:8e:d0:c2:3b:b8:14:52:88:06:ae:
9b:d3:8d:bd:82:57:86:ee:1e:de:86:b2:21:29:5c:
71:46:c6:0b:ea:0e:19:ca:63:11:0e:57:0c:aa:49:
46:24:6d:42:5b:41:2f:c3:e4:12:86:ea:7d:19:30:
9f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:DB:92:C5:F4:0F:5A:92:FB:85:C9:DE:5F:07:74:18:0B:9B:42:0D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF5FA1E8F7BE11EEB868BF1C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.33.0/24
Signature Algorithm: sha256WithRSAEncryption
85:e2:26:ac:32:77:b7:39:1d:95:d5:9e:ed:fd:d7:0e:85:95:
80:f9:75:5e:15:ee:fb:f1:f9:c7:2d:85:8e:b8:8b:53:0a:00:
d6:25:0f:f2:8b:fc:2e:05:49:b1:67:77:b9:25:7c:a8:b0:33:
eb:9a:b4:4c:d1:7b:6e:55:66:c2:bf:12:44:70:3a:e0:5a:e0:
98:5a:46:84:be:83:55:4f:2a:1c:9a:91:05:83:8b:59:b6:7d:
71:ef:e8:e1:16:b8:40:7c:5d:a4:d3:19:10:02:a7:f1:6a:c2:
91:2d:b6:47:88:e7:1e:3a:85:90:c4:1c:1a:f8:18:a4:9c:52:
2b:24:43:9a:a1:f0:0c:aa:9d:b2:98:0d:76:1c:41:d6:39:4b:
e1:69:f8:b4:c7:aa:48:d2:10:42:8f:f6:7b:1d:0c:d2:bd:5f:
c2:fa:10:d2:01:1c:63:1d:4b:52:94:64:34:f0:56:37:5a:cc:
41:1c:3c:64:8e:bd:57:af:f8:e1:97:42:63:f6:60:02:33:cc:
da:0a:16:4a:a3:1e:7e:59:a7:e4:43:d0:24:29:71:b3:f6:c4:
f3:81:67:57:34:b3:db:6e:34:f6:52:e8:40:cf:74:4c:3b:cf:
b2:7f:8c:53:9e:2d:a1:a1:f0:30:c3:bf:04:5b:a6:e7:a5:0a:
9c:cc:ae:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:19 2024 by rpki-client on console-ams.rpki-client.org