Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6F7DA20061111EF90F53C63017001B1.roa
File: E6F7DA20061111EF90F53C63017001B1.roa (raw, json)
Hash identifier: WlUR0kQ7+prhyU4H7yYY02i6DPUIA/3KABdyl61Jbbw=
Subject key identifier: 49:E3:DD:78:46:1C:FA:C2:58:EE:61:42:72:E8:4D:62:FC:E2:94:AF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B23E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6F7DA20061111EF90F53C63017001B1.roa
Signing time: Mon 29 Apr 2024 10:19:03 +0000
ROA not before: Mon 29 Apr 2024 10:19:00 +0000
ROA not after: Fri 07 Jun 2024 10:19:00 +0000
asID: 138915
IP address blocks: 154.223.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:04:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45630 (0xb23e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 10:19:00 2024 GMT
Not After : Jun 7 10:19:00 2024 GMT
Subject: CN=662f7417-faa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:15:1e:b0:4c:9f:f1:e3:1f:96:2f:8b:0e:d5:
68:49:bc:f4:f4:97:4b:80:0c:0f:c3:f3:bb:93:71:
74:9c:bc:05:1d:39:d4:f8:6f:f8:72:46:40:76:33:
77:77:fc:75:be:18:0e:62:cd:1b:1d:52:46:3c:0f:
cb:06:58:5d:5b:5f:3d:e2:6f:b0:a4:d1:65:66:eb:
48:a2:79:41:a3:76:42:19:56:dd:56:d6:26:b7:2b:
96:b4:7a:bc:0c:dc:1f:88:44:d1:38:b2:3c:5f:55:
38:f0:3b:89:c3:ae:99:b9:9b:4c:4a:c4:13:08:c1:
ca:dd:d8:29:0b:90:84:2c:ff:fc:bb:16:2f:7e:59:
53:a8:7d:c6:59:b8:21:a8:22:be:af:5d:38:a2:e1:
50:99:81:d9:e7:6a:ca:55:b5:7b:12:b4:0c:34:fc:
24:26:9b:d4:01:ec:e4:e0:b6:55:13:b9:00:b0:e3:
f6:26:56:e0:e1:8b:b1:9d:c1:fb:12:32:e0:56:fc:
38:6c:3f:62:6a:f2:18:01:83:73:25:c0:dc:8c:31:
d5:21:f9:1b:1a:89:9e:bc:72:b9:02:ee:a0:67:8f:
a3:68:81:01:54:7b:a8:69:0d:f3:3b:3f:7f:03:f5:
43:aa:41:25:ea:da:73:58:8d:86:42:28:f6:91:71:
b0:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:E3:DD:78:46:1C:FA:C2:58:EE:61:42:72:E8:4D:62:FC:E2:94:AF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6F7DA20061111EF90F53C63017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.17.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:b3:55:cd:28:19:b2:57:d4:a2:d2:c5:b1:45:4c:4c:62:3b:
0a:b2:23:11:b3:ad:81:e9:32:d9:dc:25:a3:7f:44:96:02:cb:
63:2a:04:0c:7c:5f:90:9d:96:fe:09:77:7f:46:7f:c0:5f:4f:
72:84:e2:99:23:c9:15:bf:98:a7:f9:89:92:81:f9:a8:6f:55:
0b:6e:61:fb:fa:3a:b9:75:c6:5f:c1:2f:e7:c8:8f:f2:d5:2b:
39:38:9f:1c:cf:ae:fb:30:20:81:c6:c1:35:dc:1a:37:44:8b:
79:72:4f:4d:7f:a8:88:76:cf:bd:db:d1:16:d5:88:35:e9:30:
45:c5:56:0d:5c:b6:fe:90:d2:ee:ac:c0:c3:9e:f0:14:c8:50:
b3:6a:92:40:e9:c4:4e:d6:cc:bf:61:b0:23:69:ed:77:91:f7:
b3:26:47:82:94:04:19:ca:7d:2e:30:1e:b5:51:94:43:73:76:
c9:7a:2d:4f:10:c3:a2:50:d6:94:62:2f:a4:4c:c4:5d:9b:e0:
d7:4b:0c:22:51:ad:ff:cf:71:bf:59:cf:1a:fb:e3:26:0e:98:
aa:6b:79:be:a2:6a:71:89:dc:08:f3:f2:15:63:d1:c5:79:b7:
a2:c6:7f:c6:2f:45:ca:28:58:2d:65:b9:ca:cf:b6:de:5f:4a:
d8:b5:9c:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 03:49:10 2024 by rpki-client on console-fra.rpki-client.org