Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FA43197CFAEB11EEBE351500017001B1.roa
File: FA43197CFAEB11EEBE351500017001B1.roa (raw, json)
Hash identifier: lzYys3as3hmoLQBsNs4+zY48VXu5A7VtELNIxwDYJgw=
Subject key identifier: 59:CB:C1:89:93:95:99:2F:EE:22:C0:4E:F3:05:45:10:0E:B7:29:A5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ACB0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FA43197CFAEB11EEBE351500017001B1.roa
Signing time: Mon 15 Apr 2024 05:49:52 +0000
ROA not before: Mon 15 Apr 2024 05:49:49 +0000
ROA not after: Thu 30 May 2024 05:49:49 +0000
asID: 63139
IP address blocks: 154.93.66.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44208 (0xacb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 05:49:49 2024 GMT
Not After : May 30 05:49:49 2024 GMT
Subject: CN=661cc000-26dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c7:84:7d:54:03:08:7b:f6:03:99:9f:ff:5f:
49:f9:71:94:82:57:f4:44:b4:8f:ae:69:b6:3e:50:
b3:6c:61:6f:2e:7f:e5:b7:a6:5a:2c:4c:40:fa:b6:
4b:e6:1a:39:2d:97:d7:ff:bb:0e:8e:4d:13:bb:38:
fe:84:b8:86:90:18:1b:3a:89:61:1c:a5:d6:2e:7f:
65:86:2d:6f:be:74:de:fd:35:3a:43:92:3b:88:a2:
f5:1c:c2:31:e6:9a:00:34:4a:4d:68:ac:6e:2b:f0:
bf:87:4e:3d:61:b9:76:1f:a1:b0:ef:40:3b:83:13:
cb:fe:74:66:31:14:f4:ba:3f:47:ae:b5:d8:5d:03:
ac:78:7f:30:35:19:47:ce:15:a8:84:9c:31:e3:fa:
8c:88:4f:6e:13:f2:64:19:00:1e:5b:a4:ee:89:93:
b9:7d:50:f2:df:bc:a2:72:48:a3:8c:89:61:26:08:
37:90:f3:e5:64:40:06:c4:5b:c4:1e:93:e9:6d:2a:
4a:76:14:09:1f:21:ed:5c:c6:6d:1f:e5:c2:34:9a:
a5:bb:a2:d9:cc:d3:2e:2b:46:fe:45:1d:eb:88:02:
5f:0e:2b:62:d4:c3:78:ba:6a:9e:b5:1b:02:9b:70:
29:d4:7b:5e:b3:f3:db:e0:5a:27:fd:fd:b5:c1:a6:
2d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:CB:C1:89:93:95:99:2F:EE:22:C0:4E:F3:05:45:10:0E:B7:29:A5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FA43197CFAEB11EEBE351500017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.66.0/24
Signature Algorithm: sha256WithRSAEncryption
02:a3:e0:1c:99:d6:bf:0c:a4:29:b6:a9:c7:82:a1:d8:31:7f:
cf:87:fe:0d:30:32:74:83:de:75:53:d4:0d:27:e8:e5:20:3c:
0b:3e:14:ee:6d:41:fe:62:39:ec:66:3a:33:4d:49:d5:cf:e1:
69:16:d0:75:96:06:77:2b:6b:86:bc:ae:28:47:ee:d5:c4:8b:
c5:b0:75:9f:65:0e:88:fa:40:80:9b:6e:3a:0b:85:96:06:e9:
c0:17:7e:51:b4:94:57:70:22:a1:ba:7b:23:80:21:15:35:98:
9c:67:4a:88:0d:a9:3d:d7:f1:d9:79:57:5f:1e:2a:52:f3:a4:
c7:db:19:ed:fc:b5:01:10:32:6d:39:d9:60:a2:ba:18:2a:3b:
94:f3:44:2e:3d:e5:62:0a:db:6d:c6:f7:da:f9:de:11:ff:08:
13:9f:8a:b2:33:76:9f:36:58:66:92:12:66:97:a0:17:f5:8a:
ef:14:b1:b9:fc:5d:30:60:a2:3d:79:6a:d0:32:4f:80:a3:5e:
47:5c:6a:bb:ca:cc:57:c5:44:02:14:bb:ad:20:80:4a:66:09:
04:ea:2b:84:f8:ab:24:62:96:82:38:d6:9b:11:41:17:d8:aa:
28:35:6f:9b:49:92:7e:da:f5:57:36:6f:81:7b:a4:11:8c:1f:
7a:25:dd:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:24 2024 by rpki-client on console-ams.rpki-client.org