Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/06E8292C460D11EEBCF8851A4AD9E6FC.roa
File: 06E8292C460D11EEBCF8851A4AD9E6FC.roa (raw, json)
Hash identifier: 6l9fC5zdmzRGNfYxTCZJQWMbJOBrCAlX698adwfMhq8=
Subject key identifier: 8A:E2:62:E9:AB:B6:EB:61:12:C0:3D:D8:EF:D8:79:B4:08:64:CF:95
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3A04
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/06E8292C460D11EEBCF8851A4AD9E6FC.roa
Signing time: Tue 29 Aug 2023 01:40:26 +0000
ROA not before: Tue 29 Aug 2023 01:40:23 +0000
ROA not after: Sat 31 Aug 2024 01:40:23 +0000
asID: 132513
IP address blocks: 154.210.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14852 (0x3a04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 29 01:40:23 2023 GMT
Not After : Aug 31 01:40:23 2024 GMT
Subject: CN=64ed4c8a-162c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ca:bf:d1:c0:d2:f3:c7:6e:52:00:9f:30:27:
2b:4a:fc:9b:52:5e:d7:04:2c:9c:7b:c6:8c:37:76:
44:e4:d0:3a:06:c9:2f:9e:89:4c:ec:0e:63:9c:c7:
45:4d:dd:d8:1d:5f:86:ba:fa:0d:cf:e4:87:32:fa:
fb:f3:2b:6e:64:c6:c7:51:0c:06:99:7f:c5:92:4a:
ec:5e:2e:31:24:db:4d:a5:d7:7f:75:74:de:52:48:
23:a4:58:ac:a0:76:05:16:bc:b8:b3:65:34:59:ee:
b1:f7:f9:b1:e9:d7:a2:f9:dc:3c:4c:ea:a7:63:4b:
86:c7:7e:f5:0b:ba:05:07:be:15:db:5c:ee:2b:b7:
e1:e2:72:87:73:d8:ee:e5:a6:37:b5:45:dc:42:73:
ba:f8:f5:a6:87:6d:fa:78:a0:6b:ce:c4:b7:04:70:
dd:6e:f3:64:7f:2b:e9:c1:eb:7e:f1:e8:80:67:04:
50:4a:07:57:1b:58:9f:c8:82:f3:d4:09:6b:39:7b:
76:91:fa:6a:b6:5c:47:ee:1d:3f:82:24:bc:1f:f2:
79:fc:15:07:0e:5c:cc:cd:cc:a2:b8:a9:1a:24:73:
ce:57:35:53:55:84:2e:57:62:47:ba:f8:de:bf:de:
78:4a:50:fc:0d:62:c4:21:ad:d1:be:61:33:bf:67:
14:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:E2:62:E9:AB:B6:EB:61:12:C0:3D:D8:EF:D8:79:B4:08:64:CF:95
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/06E8292C460D11EEBCF8851A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.3.0/24
Signature Algorithm: sha256WithRSAEncryption
88:00:bf:b3:f5:47:e0:80:9b:7c:54:21:bc:ea:bc:d5:ed:16:
a6:bb:76:70:24:c3:a2:ea:13:cb:c4:5e:be:45:d2:89:d3:35:
30:10:19:fe:b6:ee:16:87:56:5e:a4:d1:36:18:c2:b9:30:78:
08:03:1a:57:47:d0:37:1e:c9:a1:b8:28:a9:ca:2e:81:2d:57:
16:b6:28:9f:dc:b1:49:f5:3e:59:bd:7a:87:b1:cc:df:1d:18:
2a:1a:b5:e9:56:a6:8b:b3:48:b3:a3:c9:1e:62:0b:02:75:52:
ec:7c:bd:06:65:f9:42:39:f3:cb:ea:e3:30:22:db:38:b2:8e:
56:d1:fd:5b:9c:24:fb:d2:3b:76:f3:f4:fe:84:48:55:fe:ef:
0f:53:4e:9e:9a:aa:d5:6d:48:30:ed:99:09:44:ff:72:b6:74:
b5:5c:7a:44:2a:86:02:dc:ce:46:ce:27:b0:18:76:88:0a:9c:
20:8b:8c:29:91:d1:a0:68:c3:09:44:e5:3f:d2:4d:ba:50:a1:
e7:bb:7e:3d:e6:60:1f:a8:a6:d3:1d:69:61:a4:83:57:92:a6:
3c:3c:0e:cf:10:27:d6:0e:c6:e5:7f:21:64:77:ac:c1:31:19:
8e:b2:a3:a5:ba:9f:33:d0:21:af:e5:0d:b2:4d:2b:88:63:0c:
a8:b6:5b:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:02 2024 by rpki-client on console-ams.rpki-client.org