Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FEFFA7BAFD2911EEABF26A3F017001B1.roa
File: FEFFA7BAFD2911EEABF26A3F017001B1.roa (raw, json)
Hash identifier: uabhmApbETc3ltBrmSu/KEGm6pO0AbMRLd+yJvxsQsI=
Subject key identifier: FF:4E:E9:00:C7:01:83:56:DF:91:23:A6:76:06:C5:08:C4:68:5D:1B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ADED
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FEFFA7BAFD2911EEABF26A3F017001B1.roa
Signing time: Thu 18 Apr 2024 02:18:51 +0000
ROA not before: Thu 18 Apr 2024 02:18:47 +0000
ROA not after: Fri 24 May 2024 02:18:47 +0000
asID: 18779
IP address blocks: 154.203.56.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44525 (0xaded)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 18 02:18:47 2024 GMT
Not After : May 24 02:18:47 2024 GMT
Subject: CN=6620830b-8547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c6:bc:d8:5d:69:19:e4:a8:46:d9:0a:8d:21:
c9:c4:03:02:b3:3c:d9:f5:c6:00:e7:1e:2a:b0:77:
4c:47:da:ec:9a:f7:5e:1a:d4:f5:b8:95:5c:1e:90:
3c:f6:0d:4f:9c:f9:a6:92:d9:50:c6:93:36:22:cf:
17:1b:a0:18:c7:16:21:60:cb:f9:f5:d6:9b:98:36:
d3:cb:7b:88:54:75:c0:7e:f6:22:b7:bd:06:4e:b1:
db:7e:7c:bb:6d:6b:1a:66:3f:56:46:d8:bb:5d:3c:
0e:34:71:ea:10:fb:f7:5c:58:5b:ca:f7:6d:e4:bd:
90:41:d5:8c:d9:d4:ca:e5:fd:09:83:fb:71:12:39:
65:b4:70:62:11:49:94:f1:da:af:ac:58:77:48:3e:
d8:1d:fa:1f:0c:15:79:5e:62:a3:42:21:95:b8:d1:
0f:f5:8a:de:eb:4a:92:ff:70:fc:87:72:69:9c:b1:
4f:41:6f:d9:98:39:e5:d7:39:88:b9:82:46:a9:a6:
bb:b7:54:e5:6c:8f:e6:d7:0a:d8:a2:3c:2c:85:a5:
ff:ea:14:75:a0:2e:83:11:90:dd:41:7d:90:db:50:
b8:6d:66:b9:50:04:81:45:2e:c2:49:3c:44:d4:aa:
8a:93:af:78:5d:7d:2f:62:0e:c3:cc:50:a3:78:64:
48:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:4E:E9:00:C7:01:83:56:DF:91:23:A6:76:06:C5:08:C4:68:5D:1B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FEFFA7BAFD2911EEABF26A3F017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.56.0/22
Signature Algorithm: sha256WithRSAEncryption
87:d9:63:a0:97:e2:7f:dc:2c:f1:70:d8:04:2a:18:c9:6e:b1:
6e:e5:0c:e0:a6:0e:20:84:b3:7b:f1:c8:6a:6f:b0:c2:f0:4c:
20:bd:72:95:54:3d:23:61:43:0e:9c:48:ae:51:a7:c4:04:a2:
86:38:5f:16:d1:a7:3f:95:90:d1:a6:29:05:3d:72:a9:b6:24:
79:94:3e:fd:5f:d8:40:a5:91:20:31:0a:ff:12:e1:8f:4f:69:
29:1f:81:05:18:15:b2:79:96:ad:52:26:fa:01:4a:c0:47:e6:
f3:5d:4c:89:a8:a5:a0:1e:39:28:ff:8e:09:58:65:58:f8:0b:
44:21:7e:3f:c7:b0:3b:86:71:c7:fe:46:05:db:31:ca:6b:86:
67:88:7f:81:35:86:90:c0:5c:7f:ca:62:be:16:89:c5:db:da:
61:74:11:22:74:5f:7b:61:32:58:5d:90:bd:ad:f4:3e:ef:e4:
e3:ce:d5:8b:75:0b:e8:bd:24:14:b5:bc:3d:bd:ce:d8:1f:51:
4c:be:0d:20:b9:f8:89:4e:97:a1:6f:9e:09:eb:a9:b9:ac:54:
6b:a9:77:28:ed:0b:bf:50:f3:01:a2:3e:e7:e3:04:1a:eb:16:
db:25:62:1e:8f:18:09:e2:9b:c9:24:55:18:43:5c:bd:b3:2e:
ab:e7:e0:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:44 2024 by rpki-client on console-fra.rpki-client.org