Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D5A88554FD4611EE84D3AA33017001B1.roa
File: D5A88554FD4611EE84D3AA33017001B1.roa (raw, json)
Hash identifier: 47SjXQzu3MUWirR7gfGkhJck4tjWOFH99rcGyyiFvWY=
Subject key identifier: 85:2C:1A:B9:60:F5:3F:6A:8A:DA:63:C5:53:DB:6D:1C:6F:06:D3:66
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AE29
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D5A88554FD4611EE84D3AA33017001B1.roa
Signing time: Thu 18 Apr 2024 05:45:17 +0000
ROA not before: Thu 18 Apr 2024 05:45:13 +0000
ROA not after: Fri 26 Apr 2024 05:45:13 +0000
asID: 39600
IP address blocks: 154.205.160.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 05:45:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44585 (0xae29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 18 05:45:13 2024 GMT
Not After : Apr 26 05:45:13 2024 GMT
Subject: CN=6620b36d-858f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:7a:47:98:f8:0a:f0:aa:cc:ab:1f:07:76:bd:
05:50:13:f0:a2:11:e6:8b:f0:4e:cd:d0:4f:9c:c2:
bd:61:6f:db:4c:e6:da:33:ac:75:85:cd:32:cd:74:
e9:d2:0a:08:2d:0a:78:45:ae:a7:37:8f:9a:9b:aa:
ba:57:13:9e:83:6f:e9:07:6c:61:3e:5d:8d:76:6d:
c6:d5:79:77:c2:92:44:e2:ca:b5:92:5d:24:ff:f3:
cb:f1:f3:3c:15:7d:9b:c8:40:00:61:63:02:aa:49:
4c:c2:90:45:da:f1:65:a1:dd:62:db:89:f9:42:7c:
8c:17:9d:43:a2:8d:20:f2:6a:d9:d5:bb:d0:71:f8:
9d:76:d5:ae:a5:a8:f9:6d:14:97:ed:d2:96:a8:25:
44:b9:2a:ea:05:7d:5c:93:09:5a:37:75:f7:c7:b2:
a1:b4:a3:6a:f5:ee:86:24:00:62:d7:23:b4:11:a3:
cf:72:9d:05:4b:e0:cc:6e:b1:61:1a:b4:2d:a1:fe:
d7:33:60:7d:6e:8f:ef:91:fc:20:28:c9:27:38:f2:
cc:f2:75:e8:65:70:c6:33:8a:45:09:64:a8:f8:d3:
60:76:b3:10:fe:b1:c1:47:3b:c6:aa:98:12:0a:72:
4c:ec:0a:6a:e9:25:d5:5c:58:80:a5:cd:b2:f6:f7:
07:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:2C:1A:B9:60:F5:3F:6A:8A:DA:63:C5:53:DB:6D:1C:6F:06:D3:66
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D5A88554FD4611EE84D3AA33017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.160.0/21
Signature Algorithm: sha256WithRSAEncryption
82:ff:7c:e9:6c:ef:fa:9b:9f:70:7f:ba:8d:cb:5a:73:92:ae:
58:33:32:84:61:45:ba:ed:3c:44:e2:12:04:69:c4:78:e9:9a:
d5:76:25:49:3e:92:8c:1c:0a:b6:e5:58:b1:0e:bd:88:17:6a:
ec:66:de:8a:a7:d9:e8:12:26:6e:9d:6a:e7:02:ec:15:dc:a3:
68:77:79:01:20:e8:fa:a4:ac:09:89:77:5c:40:10:a7:f0:1b:
24:1c:8f:c8:5a:ca:12:cb:5b:73:71:2b:f8:85:af:c8:88:4c:
93:d4:37:3a:a7:97:78:f4:9a:33:f3:c8:a5:6a:1d:e5:98:71:
d7:8b:00:44:d6:0f:75:4e:9d:79:04:2f:be:84:67:fe:30:79:
12:65:c9:5c:91:fc:aa:60:52:8a:42:3e:7c:f0:b9:83:54:e2:
b3:e9:bf:1a:86:02:98:ba:d8:5c:9d:ff:43:1e:34:fb:5b:54:
3d:d9:f1:29:2f:2e:ce:8f:ca:b4:e4:9c:7e:25:1f:1d:b9:f7:
02:3d:e6:59:0a:77:24:83:75:af:85:f4:e7:d0:42:3b:5e:98:
34:0d:5b:fe:52:7f:2d:40:0c:ce:5d:77:36:69:95:f3:39:a4:
27:94:2f:1a:ee:ba:04:8a:bd:6c:53:59:12:bb:3d:13:dd:a4:
91:09:65:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:33:39 2024 by rpki-client on console-fra.rpki-client.org