Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D225AE5EF7C211EE8CB4DC3E017001B1.roa
File: D225AE5EF7C211EE8CB4DC3E017001B1.roa (raw, json)
Hash identifier: IqazD33DMUV0nWb4ih5+ucahXlbazj/xkpNXNjt33YE=
Subject key identifier: A8:5D:C0:24:36:8C:5C:BE:FC:4D:09:51:1A:26:EB:B0:A3:8A:BC:86
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB3F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D225AE5EF7C211EE8CB4DC3E017001B1.roa
Signing time: Thu 11 Apr 2024 05:17:42 +0000
ROA not before: Thu 11 Apr 2024 05:17:38 +0000
ROA not after: Sun 19 May 2024 05:17:38 +0000
asID: 138915
IP address blocks: 154.93.36.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43839 (0xab3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 11 05:17:38 2024 GMT
Not After : May 19 05:17:38 2024 GMT
Subject: CN=66177276-6a35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ce:38:8f:a2:8a:09:87:19:0c:fb:f4:1a:fd:
00:30:56:d9:9b:f7:d1:d2:90:0c:08:a2:fc:e7:68:
49:a8:3e:89:b1:93:0f:11:a6:b9:30:94:f4:95:4f:
f6:81:2f:4c:30:25:64:80:d0:f4:46:5b:03:02:6a:
a2:d8:1d:58:9b:bf:12:f3:17:5f:1c:86:38:bf:bd:
5f:d2:2a:f9:3b:ec:30:3a:34:3c:1e:db:66:e0:3e:
1c:8b:92:12:76:87:dc:33:ab:ba:14:fc:64:c1:f4:
41:8f:a1:75:9e:40:be:74:a2:8d:a3:ee:74:0f:be:
e3:a2:5d:3b:0b:fc:40:24:a0:a1:cd:3e:45:56:8d:
a2:87:a4:46:3f:89:81:c8:c6:aa:5e:a6:51:a8:ca:
f2:ce:fc:40:66:df:18:cd:3c:79:e9:ba:1a:5c:69:
46:e0:86:9b:51:11:b8:f5:d8:95:da:ff:98:2a:9b:
f4:76:4c:14:e2:59:85:f5:67:51:38:8e:27:f9:36:
98:4a:95:82:fd:4f:46:7a:8f:a1:27:bc:44:ac:7d:
93:fa:08:31:4f:da:3b:28:cf:7f:fa:e5:5a:e5:8f:
fe:82:c5:da:18:b5:b0:67:e7:2d:62:96:dd:1c:49:
e9:c8:39:2d:b8:6c:6b:9a:58:c2:80:66:97:ff:ba:
fe:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:5D:C0:24:36:8C:5C:BE:FC:4D:09:51:1A:26:EB:B0:A3:8A:BC:86
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D225AE5EF7C211EE8CB4DC3E017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.36.0/23
Signature Algorithm: sha256WithRSAEncryption
53:26:d2:a4:48:bd:ea:74:15:0d:bf:02:9c:69:97:51:25:a9:
35:a7:50:b0:08:10:12:76:ee:f6:cc:85:31:f5:4c:c0:82:2a:
fd:81:7b:b2:7f:03:90:b9:81:31:cf:cd:60:a7:40:a2:ed:19:
98:18:52:66:f0:04:2a:0d:e2:77:5e:79:d1:04:bc:39:e9:d8:
e6:10:7e:73:6c:28:19:45:49:73:b4:82:8e:28:1f:37:67:ca:
87:8b:9d:3e:6c:c4:c2:79:97:11:e9:5b:e9:d7:0f:40:ee:33:
5c:f4:99:d8:52:0a:dd:1d:74:76:09:13:5e:3e:e1:16:83:b5:
89:e4:a9:8f:bb:9b:f2:de:a0:a0:d2:b4:55:de:71:fd:34:ee:
2d:45:0d:87:9a:c4:fa:21:16:55:6b:3e:8b:f3:ad:f9:66:d1:
13:49:a7:24:6b:87:0e:14:03:98:54:b8:ae:3d:b5:dd:f0:23:
f3:ab:f8:43:73:bd:fc:09:fb:db:ba:77:c4:10:0e:13:ba:56:
cc:2d:28:f1:8d:0d:61:cd:5b:0e:2a:44:a8:cc:2d:58:5d:5b:
c9:fc:05:c6:34:40:b8:31:c5:34:4a:6f:16:a6:c1:93:3f:9a:
69:9b:8e:5a:53:b9:a0:71:31:b0:f5:13:38:02:a4:de:cb:c0:
b7:52:8b:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:21 2024 by rpki-client on console-ams.rpki-client.org