Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DEABF036F7C011EE88F68E2E017001B1.roa
File: DEABF036F7C011EE88F68E2E017001B1.roa (raw, json)
Hash identifier: rD7h2lMxrdzuV27MJgrBH5JdSw6ZACxk1eemAdt2v9g=
Subject key identifier: 87:9B:1E:4B:D7:E8:9C:F3:DB:90:D9:AF:53:7A:A1:F4:ED:9E:D8:36
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB2B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DEABF036F7C011EE88F68E2E017001B1.roa
Signing time: Thu 11 Apr 2024 05:03:44 +0000
ROA not before: Thu 11 Apr 2024 05:03:40 +0000
ROA not after: Sun 19 May 2024 05:03:40 +0000
asID: 138915
IP address blocks: 154.93.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43819 (0xab2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 11 05:03:40 2024 GMT
Not After : May 19 05:03:40 2024 GMT
Subject: CN=66176f30-8040
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:67:b9:30:17:b1:bf:99:53:44:2d:4d:62:20:
09:5f:5b:9c:9b:f4:13:ea:4d:d7:1e:42:49:c1:3b:
b6:da:6f:23:a5:a9:ac:ec:35:15:26:66:0d:2c:3b:
db:dc:7e:df:b4:59:3d:28:06:fd:82:7b:9d:bc:e2:
32:e3:0b:9d:30:d9:48:f9:54:7f:fa:70:d6:b9:0a:
59:1e:d2:39:7b:86:70:bc:7c:5f:7b:8f:6d:e7:37:
8a:7c:81:86:d7:ed:27:cd:bd:7d:14:d8:fe:96:17:
5d:0b:e3:84:83:a0:7f:f0:f3:39:fd:47:56:78:ba:
17:72:e7:ef:55:98:ae:ca:ab:c9:42:96:59:75:bf:
8b:c4:5c:27:03:96:77:4d:07:3e:1f:68:39:a6:e3:
d2:12:be:b5:d4:28:03:9d:9c:00:bd:71:85:79:9d:
00:59:e3:9e:b9:43:95:1e:e1:7c:aa:c2:ed:70:12:
1b:97:c5:87:f0:8a:8b:f7:47:fa:d2:64:69:3a:17:
7a:2d:d2:17:1f:38:d4:4b:b2:94:59:c7:2d:16:fa:
3a:e0:93:fa:56:02:c3:2c:34:27:0a:17:75:71:1c:
12:f3:8c:24:c4:0d:82:fd:0d:37:bc:0e:7c:29:f5:
2f:c5:69:94:80:50:c1:37:23:89:33:04:6b:a6:13:
29:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:9B:1E:4B:D7:E8:9C:F3:DB:90:D9:AF:53:7A:A1:F4:ED:9E:D8:36
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DEABF036F7C011EE88F68E2E017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.45.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:59:71:b3:16:c5:97:41:cd:cb:67:3e:5d:5c:00:1f:05:96:
1d:8c:e9:b0:3e:6e:eb:4f:a2:8f:71:c9:6c:dd:2d:ac:b4:e0:
f6:03:1f:e2:4c:0a:76:db:52:2a:f4:eb:1e:8a:bd:74:4d:82:
71:24:ac:35:ab:c7:cf:7b:14:6a:fc:0e:23:98:67:e5:d3:02:
13:a0:c1:20:2e:53:53:1f:53:99:6d:49:8c:73:02:ed:fd:de:
1b:59:f5:e6:c2:dd:4b:2b:37:69:63:f0:6f:e1:af:e0:9f:56:
e2:02:d3:64:ff:4c:2d:db:cf:ec:6b:8b:7e:3f:d3:3e:38:3d:
f8:64:d7:2e:a5:20:af:0a:14:0b:53:69:83:3c:ba:42:c1:35:
c1:2f:51:87:b0:f5:dd:05:4a:ce:58:7c:5a:24:3e:3d:9e:b3:
07:95:c9:6a:58:f0:c6:97:c2:f4:60:09:0e:5d:a6:d2:a4:9c:
33:e3:22:f8:a5:9f:01:92:e2:71:34:ad:c7:25:11:96:f6:d1:
1b:89:af:54:75:42:97:57:f7:b7:bd:81:9f:e0:b4:4e:df:71:
be:a4:18:b0:95:44:4f:3a:47:92:7a:8b:0a:f0:00:c1:b8:b6:
06:92:ec:11:01:89:20:6d:22:b2:e9:73:b8:20:c9:31:88:7e:
61:3c:c5:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:41 2024 by rpki-client on console-fra.rpki-client.org