Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/02E6704443E811EE96D0B84A4AD9E6FC.roa
File: 02E6704443E811EE96D0B84A4AD9E6FC.roa (raw, json)
Hash identifier: VyOwHVTbSg4wYUOSqY4qyP9Uw3blL3HJ9dWiuDLxEx0=
Subject key identifier: 74:BF:86:AD:96:89:31:61:66:AE:DE:46:E9:B3:A4:45:FE:51:E7:DF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 39D6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/02E6704443E811EE96D0B84A4AD9E6FC.roa
Signing time: Sat 26 Aug 2023 08:10:25 +0000
ROA not before: Sat 26 Aug 2023 08:10:22 +0000
ROA not after: Thu 11 Jul 2024 08:10:22 +0000
asID: 136933
IP address blocks: 154.91.198.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:58:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14806 (0x39d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 26 08:10:22 2023 GMT
Not After : Jul 11 08:10:22 2024 GMT
Subject: CN=64e9b371-959c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:51:27:4b:48:7f:6f:a2:07:8f:2f:1c:93:cc:
69:cf:e4:43:f3:70:a6:c7:11:38:ca:f3:e1:1b:8d:
1a:dd:61:3f:f6:c3:95:40:44:8c:2c:38:09:55:b8:
50:c9:6c:ac:a0:f8:e6:ef:84:9d:2e:3e:75:47:64:
01:04:b7:99:82:a8:56:2b:6e:29:ec:f6:5a:71:50:
6e:f8:4e:11:f8:10:9d:1d:72:6d:70:8e:16:fa:48:
18:26:e9:8d:c8:3a:df:b6:ec:6c:af:84:db:58:d5:
1e:c6:51:b9:38:cb:9f:64:5f:a3:f8:8a:5e:1f:f2:
87:aa:42:1e:b2:53:63:11:c5:da:62:51:72:7f:38:
ae:76:cc:2a:93:ac:5b:95:c8:d1:fe:da:0a:eb:a8:
ea:b0:6c:aa:be:79:e4:cd:33:60:18:35:c2:e2:40:
52:81:01:9c:37:0c:a0:3c:54:e4:9f:52:52:28:b2:
90:76:48:f8:cd:32:08:20:54:7f:94:14:bd:ae:20:
f3:d4:d7:82:4f:e4:60:fe:6a:04:73:46:46:29:28:
ff:8b:b5:6e:ad:b5:f3:c7:d0:e9:0e:10:40:6d:04:
1d:56:2c:2a:9d:a7:c2:82:f1:92:55:71:61:9d:6e:
f5:25:c3:77:70:56:dd:70:9d:65:23:45:88:f0:70:
b7:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:BF:86:AD:96:89:31:61:66:AE:DE:46:E9:B3:A4:45:FE:51:E7:DF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/02E6704443E811EE96D0B84A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.198.0/24
Signature Algorithm: sha256WithRSAEncryption
77:2d:f9:02:86:95:dd:4a:8b:3b:62:fe:d2:f5:a3:b6:1d:7a:
ea:ef:08:eb:f1:02:16:9f:5f:70:36:ae:ae:76:f3:f0:67:e3:
61:38:82:52:58:e4:5d:74:5a:83:1d:c7:3a:1a:a6:22:10:7b:
41:3f:01:a9:4f:7f:8b:9f:32:1b:3c:84:85:49:3f:e2:6b:cb:
12:c9:28:6d:e2:93:ab:7a:68:4e:ef:51:a5:bf:7d:34:74:79:
4e:86:bc:6c:7e:2e:7d:53:18:06:a4:8f:e0:a8:a7:21:cb:c4:
16:7a:a7:21:d4:e4:b7:fe:80:ac:1f:d6:85:2f:6f:a3:f6:aa:
5a:43:f8:43:b5:ad:16:57:f4:84:7d:1e:f5:29:ba:bc:d3:a0:
e4:99:55:09:b9:1e:44:7b:4d:14:34:5d:98:80:dd:78:e6:d6:
15:77:9a:0b:e3:e6:47:36:12:2a:ca:5f:0c:ad:1b:49:3e:68:
aa:6f:50:1f:4d:a1:7b:84:3f:d3:de:e3:b9:52:51:86:a9:96:
e2:63:2d:64:aa:c8:16:c6:76:0a:55:e8:94:a8:8c:41:d6:29:
12:b8:0d:23:f4:dc:4b:36:5a:9e:27:03:51:72:a0:4e:54:b5:
f1:6d:f6:fc:d4:72:17:21:76:ad:17:3e:0b:9a:61:33:1c:f3:
98:25:ca:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 14:33:45 2024 by rpki-client on console-fra.rpki-client.org