Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3428285A061111EFBACCB95D017001B1.roa
File: 3428285A061111EFBACCB95D017001B1.roa (raw, json)
Hash identifier: ojz/Pl1757U6QjmY9Lrq88TQiCNSxIfF5vExurvKzIw=
Subject key identifier: A6:8E:FD:66:3F:77:A4:44:B5:A6:AA:C6:50:1E:AF:99:B5:97:84:27
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B234
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3428285A061111EFBACCB95D017001B1.roa
Signing time: Mon 29 Apr 2024 10:14:03 +0000
ROA not before: Mon 29 Apr 2024 10:14:00 +0000
ROA not after: Fri 07 Jun 2024 10:14:00 +0000
asID: 138915
IP address blocks: 154.223.56.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45620 (0xb234)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 10:14:00 2024 GMT
Not After : Jun 7 10:14:00 2024 GMT
Subject: CN=662f72eb-0de2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:bb:48:94:97:65:a7:f1:87:ae:0b:8f:4b:a0:
67:5c:b9:a4:38:d3:55:e7:58:6c:db:f8:6e:62:17:
f1:38:94:06:20:fd:c8:ee:bb:13:44:cc:55:51:80:
d4:cb:31:9d:8b:75:75:a3:3d:91:a4:e6:38:64:cc:
fd:e5:24:8e:2f:98:e0:14:c6:a9:90:dc:8d:eb:cb:
b3:34:03:6a:45:ab:60:61:1f:e8:30:10:1e:75:c4:
ab:4a:a6:57:48:17:28:56:d6:09:52:5b:ab:20:63:
dd:d4:31:6a:6e:5e:fe:27:2c:03:68:d6:0d:4a:cc:
35:cc:2c:95:ae:07:e0:09:73:3f:2a:54:81:e2:03:
12:47:fa:54:2b:b7:37:d8:ba:f7:92:de:1b:ab:3f:
8c:59:f4:d2:35:25:26:93:51:c8:c6:a1:e2:24:3e:
58:83:b3:a3:a6:f7:27:31:eb:2a:08:04:e2:c3:d7:
bf:ff:f0:a1:83:27:ce:b1:43:e5:58:59:ad:c4:b9:
bd:2d:16:a6:a2:f5:1d:05:8b:6e:7d:2a:69:b0:b2:
ce:60:5f:4e:a9:2d:b3:de:da:72:4b:bb:62:84:5d:
be:9c:47:07:2e:91:3d:71:d3:78:3a:b8:9f:3b:7f:
0d:08:7d:a9:9b:77:86:ef:64:95:4b:c6:6e:4e:07:
7e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:8E:FD:66:3F:77:A4:44:B5:A6:AA:C6:50:1E:AF:99:B5:97:84:27
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3428285A061111EFBACCB95D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.56.0/23
Signature Algorithm: sha256WithRSAEncryption
d0:c6:d4:f3:28:7a:72:d9:95:b6:3c:73:42:03:d6:16:9e:3e:
99:ec:c6:d4:0b:58:71:bf:a1:b4:e7:02:19:e9:a1:a0:30:8b:
93:b2:08:89:e8:2c:f1:d0:31:e5:45:91:98:d9:d5:96:20:29:
ab:59:bf:66:fc:a5:09:c4:b2:16:98:d3:21:ee:96:cb:aa:7e:
ce:fc:2e:27:bb:49:6d:57:ea:9e:8c:2d:b2:83:cc:f1:28:62:
e5:17:ba:e6:cf:38:97:41:3a:07:fa:05:d3:f4:f4:0c:9f:d1:
57:c1:34:bc:44:98:37:89:ad:2e:67:4b:e4:d2:ef:bb:36:c8:
2b:ff:7d:20:04:0f:c6:fe:90:54:3f:92:6b:0b:7e:cb:56:bf:
9d:f5:57:4b:5b:56:5f:4f:ff:86:c7:5d:ed:71:d8:88:a5:40:
9f:80:ab:7b:f3:3d:f8:13:84:89:ab:64:a8:0a:0b:d1:38:17:
bf:24:f0:7c:4f:3f:28:4d:a6:1d:61:8f:aa:03:e1:bf:41:bf:
7d:a7:59:71:c4:97:4e:1e:60:38:8b:14:51:d8:ec:83:ac:1e:
16:80:46:f8:99:bd:b4:36:f5:d0:66:fe:b4:aa:db:66:01:64:
aa:0f:6d:b5:46:a8:8c:ec:0e:dd:79:83:b2:89:80:ea:d9:ed:
6f:a0:dc:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:13 2024 by rpki-client on console-fra.rpki-client.org