Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01C987F4FDCB11EDBECB615E4AD9E6FC.roa
File: 01C987F4FDCB11EDBECB615E4AD9E6FC.roa (raw, json)
Hash identifier: U5b9dM6+HjjQCVFai/p/k9XRqkg+0fyv7Ka0DFCHZ3c=
Subject key identifier: BB:EC:22:11:18:68:8F:AA:09:2A:6F:86:BE:B5:6D:70:5B:7D:C2:0B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2830
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01C987F4FDCB11EDBECB615E4AD9E6FC.roa
Signing time: Mon 29 May 2023 02:46:27 +0000
ROA not before: Mon 29 May 2023 02:46:22 +0000
ROA not after: Wed 15 May 2024 02:46:22 +0000
asID: 63888
IP address blocks: 154.207.72.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10288 (0x2830)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 29 02:46:22 2023 GMT
Not After : May 15 02:46:22 2024 GMT
Subject: CN=64741203-db66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:38:48:d1:6d:2f:b2:83:5e:a1:35:2c:78:a5:
e1:8b:7d:4d:43:2f:90:32:5b:20:70:3b:75:d8:c7:
18:41:f3:f7:0c:df:eb:d3:b0:d6:8e:92:8d:de:0c:
ee:ef:cc:0d:15:3a:97:6f:7a:66:eb:ad:71:56:fc:
df:ef:1a:5a:8c:e7:12:66:c4:34:98:c5:7d:58:f7:
fa:6e:b9:ff:ce:dd:59:f9:ff:71:ab:5e:7e:52:63:
67:a4:1b:79:71:62:59:21:53:1b:91:9c:22:ce:12:
2b:23:42:16:7e:c9:16:0f:70:3c:6a:7e:2f:ac:7e:
7a:55:c1:b9:df:fd:28:2d:7f:8d:4c:c0:bc:98:2d:
17:32:6f:ec:eb:d0:32:49:64:75:63:e5:7f:59:9d:
d7:bc:5a:4a:7b:d4:e8:3a:79:48:99:09:01:3f:02:
94:51:51:c9:d9:6c:ed:14:85:64:ce:35:7a:b9:5b:
a4:71:a3:7a:15:7c:45:ba:06:98:62:de:80:ba:98:
9f:8f:d7:3b:73:b8:8b:47:37:5c:19:b2:2a:0e:b7:
ed:ab:dc:2b:51:ae:4b:76:2e:ec:77:89:e3:c5:13:
1a:c7:6f:4e:ac:e6:f6:81:04:ee:37:93:7f:26:46:
cb:f4:af:ad:4b:06:4d:8f:57:de:d2:47:7f:1c:84:
7c:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:EC:22:11:18:68:8F:AA:09:2A:6F:86:BE:B5:6D:70:5B:7D:C2:0B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01C987F4FDCB11EDBECB615E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.72.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:bf:8e:09:76:f9:e4:ae:d7:47:a9:7b:fd:8c:c7:8a:5c:93:
7c:c6:d6:0e:40:57:c3:ca:2f:3c:ba:0a:4e:8f:32:22:9e:52:
70:20:e1:32:8f:df:72:be:09:99:fc:38:fe:d8:76:b9:8c:dc:
3d:50:d4:1e:9c:d2:7a:90:85:7f:13:ff:e0:d0:54:58:61:79:
a4:99:39:63:e5:eb:28:ae:d3:88:c3:7d:39:07:51:01:3a:df:
c5:fe:8e:1a:81:19:45:93:a4:dd:58:28:02:31:ff:f6:cb:c6:
d4:ed:f2:9c:27:8c:95:3f:43:b0:ff:a0:54:38:7f:2d:b5:cf:
f1:f4:73:93:16:c3:d3:ae:56:ba:b4:a7:a6:e8:f0:7d:2e:4b:
53:fd:6b:bf:7d:c6:e6:3e:67:a7:a7:6e:6b:a4:c6:c9:bf:58:
56:31:26:4a:6c:b3:d0:a7:f7:6c:72:26:15:ec:3a:6b:4d:30:
3b:b9:27:2c:f9:f5:3d:b1:b3:a2:08:45:11:9e:27:83:76:98:
35:9a:37:7e:d3:b3:74:d9:8f:46:0b:7a:be:43:fe:93:fb:f5:
c3:d3:9f:69:1a:47:07:a3:e3:61:2f:44:b4:68:56:8b:c1:a8:
29:d1:c0:9e:19:93:27:37:8d:89:4e:05:c6:42:94:22:21:f6:
3f:80:e1:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:14 2024 by rpki-client on console-fra.rpki-client.org