Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE6604C0278611EE828B042B4AD9E6FC.roa
File: BE6604C0278611EE828B042B4AD9E6FC.roa (raw, json)
Hash identifier: 2+yBNEA5XWRND3spA1nigf5jiugrH9ogbaNgO1ziTss=
Subject key identifier: D7:20:1F:1D:6A:4B:97:FE:04:05:60:6E:9A:1E:36:D5:27:6F:58:1B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 33AF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE6604C0278611EE828B042B4AD9E6FC.roa
Signing time: Fri 21 Jul 2023 05:23:37 +0000
ROA not before: Fri 21 Jul 2023 05:23:33 +0000
ROA not after: Thu 13 Jun 2024 05:23:33 +0000
asID: 7018
IP address blocks: 154.202.12.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 02 Jun 2024 00:04:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13231 (0x33af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 21 05:23:33 2023 GMT
Not After : Jun 13 05:23:33 2024 GMT
Subject: CN=64ba1659-91f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:40:5b:25:9c:c5:62:ee:64:1a:e8:e4:a4:29:
5d:c8:b6:c9:55:b9:9d:26:e0:00:10:e5:d8:8f:2b:
27:5b:5a:3e:c3:df:0d:46:e9:a4:86:51:1d:ee:0b:
cc:ab:bf:76:13:bd:c2:03:5b:b6:f5:11:2a:81:73:
35:ae:23:f4:a4:08:75:3c:2a:c3:c4:d9:5a:d6:2e:
e3:2b:18:67:b6:b4:10:28:57:1d:e7:66:0b:37:81:
9c:8d:84:b2:31:f4:d8:f0:2f:e0:c4:a5:26:85:99:
fa:ec:f0:38:39:94:ac:cd:ac:4b:bd:10:eb:9b:4c:
b9:31:82:64:84:03:d8:bc:ef:75:88:39:73:b1:d6:
8f:41:34:c1:ac:35:b0:26:b5:a0:e5:47:db:a9:54:
8a:51:68:d7:86:b0:39:7a:df:35:34:01:89:c1:07:
02:42:f6:88:68:55:c0:92:79:50:d7:54:34:80:9d:
9c:e3:33:2e:b1:bd:c1:c8:5c:3a:2c:81:74:3c:b4:
2b:c5:63:61:7a:ce:a0:3a:0c:49:f5:f5:0a:07:13:
65:fe:4b:02:5c:ff:d9:83:8f:44:fe:41:44:5f:bd:
32:5b:04:83:96:a7:0c:98:7b:fa:98:e6:d9:cf:bd:
7e:12:70:1f:04:3f:b7:98:d1:25:b4:46:a0:b3:47:
27:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:20:1F:1D:6A:4B:97:FE:04:05:60:6E:9A:1E:36:D5:27:6F:58:1B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE6604C0278611EE828B042B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.12.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:44:45:e3:c4:67:ce:fc:16:1e:dd:f5:8e:8e:fd:5a:21:22:
7b:c4:dc:69:83:48:d3:bc:b2:4d:b3:79:8b:86:61:2e:68:58:
87:5e:2f:69:80:4f:fa:90:95:a4:fb:22:b4:91:a5:cf:b1:b7:
ea:b9:48:9d:97:d9:94:ff:30:dd:44:62:60:a9:65:0c:9c:70:
13:a6:ff:e7:07:01:b5:14:3e:36:f6:8c:c5:d8:57:ce:0b:01:
1a:48:d2:e5:2c:f6:34:ee:28:b9:33:52:d6:c2:66:25:7b:34:
49:07:d9:ff:37:4d:64:54:24:e2:ae:95:9f:05:80:5f:ad:74:
32:e1:4a:2c:27:3e:8b:37:62:a5:83:08:d1:11:39:d3:57:de:
13:85:9b:38:a6:fc:45:bc:09:7b:aa:f3:04:8a:68:34:f6:c4:
14:32:f9:fd:e3:cd:f3:fb:5c:8a:40:b2:8f:43:7d:05:50:69:
f0:30:96:47:d0:b0:c5:78:28:50:86:59:2b:e2:a7:fa:62:87:
80:da:04:b4:c2:19:9b:cc:df:97:e2:bf:71:cf:6e:5e:63:d7:
4a:67:fb:48:a0:9a:55:6f:8b:44:2c:6d:03:86:86:24:3f:e0:
46:0c:f1:14:44:fb:cb:49:13:21:9a:45:b2:d2:c7:59:fc:c8:
0f:f4:0a:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 13:05:05 2024 by rpki-client on console-fra.rpki-client.org