Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D5D77E58F86A11EE81A5D30B017001B1.roa
File: D5D77E58F86A11EE81A5D30B017001B1.roa (raw, json)
Hash identifier: /+fviAfCH3OG6Y+Il/oRm8tnlQEl3jKrtAwnCXBdyVk=
Subject key identifier: 70:53:D5:F0:46:6F:09:CD:68:45:E0:C3:E8:CF:E2:01:F7:E9:3B:F8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB74
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D5D77E58F86A11EE81A5D30B017001B1.roa
Signing time: Fri 12 Apr 2024 01:20:23 +0000
ROA not before: Fri 12 Apr 2024 01:20:20 +0000
ROA not after: Sun 19 May 2024 01:20:20 +0000
asID: 138915
IP address blocks: 154.93.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43892 (0xab74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 12 01:20:20 2024 GMT
Not After : May 19 01:20:20 2024 GMT
Subject: CN=66188c57-e454
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:79:70:1f:9e:60:4c:63:9b:07:4d:7b:17:58:
29:3a:ef:d5:4e:e0:d0:5c:31:6c:b6:fc:97:73:91:
c9:77:a7:e5:1a:c2:e0:35:38:8c:18:4f:bc:2b:83:
f5:93:c1:a3:31:56:8b:34:8d:8a:47:0c:73:47:77:
85:42:ab:cf:fe:52:04:57:b9:88:2b:ee:8b:4d:30:
ae:0e:5b:16:96:fe:4d:8a:f1:80:ab:5e:e2:50:fe:
94:da:46:52:21:fa:20:32:96:67:fe:be:91:8d:3e:
31:fc:08:41:de:f1:ef:eb:67:5a:95:0e:81:09:a1:
ae:de:88:35:56:84:f8:2b:d9:db:b8:9c:c6:16:fe:
85:22:f8:94:bd:5c:8b:08:f3:41:8d:b0:1a:d6:9a:
f2:2a:a1:7c:52:be:2d:80:01:75:d7:0c:49:3e:07:
43:6b:8d:8e:d8:03:50:40:32:c0:67:2d:7c:6e:ce:
d8:50:6b:e2:e0:34:a2:cd:47:e0:25:d6:a7:3b:3d:
b6:df:eb:1f:3b:ba:e1:93:3c:fd:f1:37:d0:61:78:
63:b3:92:9f:55:09:2c:9a:5b:f4:9c:c9:75:79:b1:
7f:25:f4:d1:61:3c:01:c3:48:67:d2:bd:3f:e5:cc:
ce:41:19:21:c4:ae:e2:0d:0f:68:5f:f3:ce:c1:65:
f5:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:53:D5:F0:46:6F:09:CD:68:45:E0:C3:E8:CF:E2:01:F7:E9:3B:F8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D5D77E58F86A11EE81A5D30B017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.51.0/24
Signature Algorithm: sha256WithRSAEncryption
17:d4:bb:93:c3:4a:a7:c2:60:c9:52:e1:b2:0b:e4:1d:84:51:
19:4e:a7:df:97:da:cc:09:12:bb:fb:40:c0:01:49:58:f5:61:
83:1b:06:38:cb:f8:b7:00:ab:14:ec:80:a5:f6:2b:59:90:cd:
e6:21:52:fe:ca:4a:48:a2:14:94:9b:77:64:94:1d:e0:fc:48:
5e:38:b9:34:4e:0f:9b:0c:0d:92:84:da:05:c0:b5:e3:e9:01:
5d:24:24:89:eb:2c:7e:02:bd:98:56:3c:87:f3:4b:11:99:11:
7b:c3:fc:8e:1b:8f:3b:e5:8e:97:e3:74:1e:63:c1:40:67:ba:
c2:ba:ff:f3:55:0a:80:23:fe:04:f2:7a:10:6c:c6:4a:22:8e:
26:99:48:b6:a9:6d:af:20:d9:de:bf:3f:20:80:92:cc:04:21:
3c:6a:8d:78:6f:69:37:66:0d:eb:6b:d7:43:92:ed:1f:85:e3:
67:a8:4c:cf:f1:12:25:b5:0f:ec:12:f3:a9:1e:2f:db:8e:31:
a0:22:d6:c0:9f:40:95:6b:66:f0:07:b8:75:7b:8a:ab:55:c4:
bf:98:f6:c6:c9:bf:9f:36:9c:88:71:45:8d:25:75:e9:b8:3f:
2d:05:c0:97:7f:2c:91:ac:a2:77:53:74:1b:d2:69:86:4c:96:
90:03:15:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:40 2024 by rpki-client on console-fra.rpki-client.org