Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E517176AF74911EE897FAB58017001B1.roa
File: E517176AF74911EE897FAB58017001B1.roa (raw, json)
Hash identifier: Li9AONxuxSq0ckC8zaghUhsJWLvkpuBPLfADvXcw2lo=
Subject key identifier: BD:16:AA:DF:BA:71:1A:C7:31:60:16:87:07:FD:78:12:CF:C7:0F:3D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AAF4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E517176AF74911EE897FAB58017001B1.roa
Signing time: Wed 10 Apr 2024 14:52:04 +0000
ROA not before: Wed 10 Apr 2024 14:52:01 +0000
ROA not after: Thu 17 Oct 2024 14:52:01 +0000
asID: 132813
IP address blocks: 154.205.6.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43764 (0xaaf4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 10 14:52:01 2024 GMT
Not After : Oct 17 14:52:01 2024 GMT
Subject: CN=6616a794-027d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:61:ee:81:93:9c:3e:b0:77:f7:a6:06:7d:0d:
23:fa:07:d0:b7:5c:f2:50:86:10:11:fa:57:1f:fc:
e5:f3:ee:84:97:be:66:a7:ca:d9:9e:71:15:d8:af:
0b:b9:fc:70:b5:79:a2:7b:69:6d:43:61:93:70:7d:
7d:b2:ae:a0:59:36:af:f3:3d:18:19:83:05:98:69:
d7:4c:a1:0e:f6:ad:dc:68:42:fd:06:59:21:bf:df:
35:3a:ce:a5:a3:25:03:ac:28:51:b6:53:60:3e:52:
fa:d9:cf:fc:0c:39:2b:9a:db:92:fa:8b:dc:ba:79:
9b:a6:d1:65:23:0b:6f:75:e5:4d:20:80:64:82:f4:
25:38:6b:32:38:22:01:cc:d0:0c:dd:89:d4:93:80:
30:a2:a8:35:05:89:59:1b:ad:52:58:05:a9:11:1e:
e5:bb:1f:21:cf:2a:4e:48:96:0c:90:ff:ab:aa:f3:
08:28:57:99:89:f6:35:75:4a:35:39:99:00:2a:40:
0b:0f:47:0d:cc:45:ea:b4:7d:3c:06:64:6b:f2:70:
ed:e3:09:45:36:b5:83:0a:84:76:f3:ed:d1:fa:82:
98:d0:1d:4b:82:60:05:19:6a:e2:37:d9:76:08:a9:
ed:a8:40:4d:2b:94:2f:11:7d:9b:75:4b:57:33:dd:
2b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:16:AA:DF:BA:71:1A:C7:31:60:16:87:07:FD:78:12:CF:C7:0F:3D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E517176AF74911EE897FAB58017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.6.0/23
Signature Algorithm: sha256WithRSAEncryption
10:47:cf:2f:86:74:24:c8:5e:f4:12:5f:08:7b:39:ae:d6:1d:
24:d7:3f:82:f2:81:1b:b6:9d:08:cc:f2:1d:ae:ab:69:21:29:
52:cc:66:57:d6:6e:f0:bd:45:b9:de:bf:29:44:1d:b3:ca:24:
f3:72:3d:02:87:87:f0:eb:a9:4e:48:ce:ae:76:c2:bb:a4:c5:
3a:ce:ca:a9:b8:35:97:73:f0:50:44:79:ad:4e:3d:c6:df:82:
90:dc:0a:83:37:1b:3d:91:40:14:24:b8:90:83:e3:14:0e:a2:
d8:d8:33:64:55:db:70:86:42:57:15:71:96:d8:63:39:b7:0b:
28:a0:b4:27:9c:48:1a:06:35:1e:07:95:ac:5a:fb:ed:42:97:
af:6b:6e:85:19:70:0e:d6:bd:75:7b:f6:65:4f:5f:59:54:ac:
a2:44:d8:fc:3b:c7:6c:ef:c5:e4:df:1a:4b:86:b4:60:fb:ce:
89:66:65:c4:f2:1f:a9:98:dc:1b:11:9c:3d:00:4e:15:a3:4b:
e0:db:ee:23:6b:6e:11:4c:2d:74:d3:50:c1:e9:92:59:0d:da:
0c:29:b1:10:ae:00:0d:88:ce:ef:a1:6e:f9:7d:7e:d1:d0:ac:
09:68:3d:da:99:08:a8:6d:5c:2f:5c:b1:f1:18:3c:4a:da:42:
24:91:4b:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:41 2024 by rpki-client on console-fra.rpki-client.org