Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C1C2F6BEF17011EE9F0FDF57775412E6.roa
File: C1C2F6BEF17011EE9F0FDF57775412E6.roa (raw, json)
Hash identifier: 3IDgsUoCih+OTNLJk0exibp8+oPrTTI/T0QNpUXjaLA=
Subject key identifier: F8:3B:1E:9E:0C:FF:3D:CD:A4:40:77:04:0B:0C:AA:8D:66:8C:FC:93
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A922
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C1C2F6BEF17011EE9F0FDF57775412E6.roa
Signing time: Wed 03 Apr 2024 04:15:08 +0000
ROA not before: Wed 03 Apr 2024 04:15:05 +0000
ROA not after: Tue 07 May 2024 04:15:05 +0000
asID: 272369
IP address blocks: 154.194.56.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43298 (0xa922)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 3 04:15:05 2024 GMT
Not After : May 7 04:15:05 2024 GMT
Subject: CN=660cd7cc-2eec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a4:99:ad:fa:01:cd:24:6c:db:9e:f9:bf:7f:
bf:83:38:8e:e5:b2:66:a6:37:84:ed:a7:71:bf:6f:
f4:c4:fd:f0:56:8f:e4:63:cf:bb:cf:2b:e0:e3:2f:
62:2e:a7:0e:0b:35:16:d0:9a:bf:87:b4:7c:29:d1:
99:dc:07:09:e2:a3:a5:ec:0d:27:c5:b7:4e:7f:5a:
60:96:6c:ea:89:16:c9:bc:53:98:bd:22:69:4a:79:
77:2c:41:8e:38:fb:bd:66:53:10:c6:f2:e1:6f:45:
34:c5:50:b0:c3:bd:51:cb:c9:0f:e4:97:5a:7f:29:
52:81:9a:9a:c3:02:e7:2f:0f:a2:85:59:ec:51:f6:
a2:e0:a8:6b:34:e7:65:45:99:dc:e3:30:04:1a:1f:
4d:ca:62:89:cd:59:13:98:45:46:48:3c:75:7d:18:
72:a9:ae:54:40:ec:cc:db:84:5c:f6:96:f2:bf:02:
a5:f3:4f:51:95:1d:41:30:f4:aa:b9:17:db:9c:68:
bb:65:07:2c:92:de:83:1d:de:7e:2d:ed:19:35:e2:
7c:a2:58:da:68:bf:c6:6c:f4:d3:dc:76:18:54:2d:
78:1f:49:1b:47:4d:04:41:76:9f:8e:3b:de:11:f4:
bc:94:b1:84:4f:2b:74:63:c0:bd:cb:23:cc:91:f7:
76:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:3B:1E:9E:0C:FF:3D:CD:A4:40:77:04:0B:0C:AA:8D:66:8C:FC:93
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C1C2F6BEF17011EE9F0FDF57775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.56.0/24
Signature Algorithm: sha256WithRSAEncryption
80:27:a2:3a:d7:89:ff:cc:7b:49:0e:23:18:74:e7:aa:69:59:
fe:be:16:0c:46:49:b0:6e:3d:ed:17:96:12:8a:c8:ea:2d:08:
38:22:7c:55:f1:09:1a:a8:ec:87:26:04:32:ff:5f:c7:de:0b:
86:60:bb:83:be:b7:b1:21:01:2f:a4:46:60:c3:cc:6f:8e:0e:
fa:40:08:3a:7b:50:a6:b8:4e:09:47:16:34:3f:2c:a1:5c:91:
fe:8f:d4:64:7c:73:aa:89:1d:46:e5:c8:8f:61:79:c2:cc:02:
a3:b1:e2:b3:f6:f3:29:0f:97:97:97:20:88:53:9f:92:02:4d:
3c:b2:22:88:b1:45:7c:d0:79:d3:8f:3d:18:b6:ee:4a:48:21:
ed:14:c6:90:30:8f:35:eb:63:97:2a:7f:42:36:24:f5:7f:d4:
ed:4a:4c:ef:de:ae:85:32:72:e5:03:71:b2:f3:3d:24:16:1d:
6f:43:56:ea:54:1c:bc:05:22:c9:a9:71:44:e1:aa:ec:b4:cd:
66:ac:d6:7a:d2:2b:a2:17:1f:a1:20:01:07:3d:96:8d:2e:02:
8f:2f:4e:a4:40:69:dc:de:db:63:42:ba:ef:4c:5e:32:72:44:
1d:95:92:1e:51:c2:12:49:7d:12:9b:6f:92:8d:a2:e7:5f:00:
cd:4a:a3:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:20 2024 by rpki-client on console-ams.rpki-client.org