Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/21123D8E53A411EEAEC1B26D4AD9E6FC.roa
File: 21123D8E53A411EEAEC1B26D4AD9E6FC.roa (raw, json)
Hash identifier: KXadw87JcjEpT8QOAWwhOVeorbC0wdjZiq3dx570ddw=
Subject key identifier: A5:70:BC:E7:F4:7B:0B:96:2A:81:0E:7D:8B:19:EC:10:2D:FD:93:81
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3DB7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/21123D8E53A411EEAEC1B26D4AD9E6FC.roa
Signing time: Fri 15 Sep 2023 08:44:49 +0000
ROA not before: Fri 15 Sep 2023 08:44:46 +0000
ROA not after: Sat 08 Jun 2024 08:44:46 +0000
asID: 136970
IP address blocks: 154.197.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15799 (0x3db7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 08:44:46 2023 GMT
Not After : Jun 8 08:44:46 2024 GMT
Subject: CN=65041981-07c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:33:ab:33:02:f7:56:3e:5b:60:a2:15:f0:44:
1d:3e:da:f8:91:77:2f:d6:08:6b:06:f8:2f:b4:16:
4e:85:35:6e:89:f6:2f:8b:36:3c:95:4c:b8:db:52:
8b:42:2a:d9:d4:17:4d:4c:e9:88:f4:a3:cb:64:19:
56:10:63:6d:13:ea:49:34:8e:24:a4:8b:7e:b3:bd:
9a:ec:e6:cf:09:d9:eb:64:86:b0:1f:db:29:49:f4:
1b:aa:0e:f7:9a:9d:b2:25:3b:06:9b:a1:4d:c5:f4:
27:b1:3d:1a:54:df:56:99:3f:4a:3e:2e:ec:e4:75:
ca:aa:bb:72:f7:92:56:f1:9a:c1:81:be:db:dc:f2:
b3:6c:49:89:99:1c:74:69:3d:4f:13:d6:ba:1c:63:
06:46:50:7b:36:d7:9b:b2:40:81:b3:5d:75:96:0e:
93:09:4a:dd:aa:f9:02:cc:bd:1d:1f:97:5c:78:b1:
e3:87:80:48:b3:ee:23:07:31:09:87:7e:e5:cd:60:
52:ec:f6:1e:c3:00:bd:b9:2b:04:dd:f9:61:80:8c:
15:63:f3:d7:81:f2:2a:58:15:99:9b:63:e6:e4:11:
4d:2c:63:bd:5a:3c:e1:cd:ab:ae:fe:61:c8:d8:3c:
08:f9:d9:56:0f:44:45:ef:6b:d5:07:41:77:e9:83:
37:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:70:BC:E7:F4:7B:0B:96:2A:81:0E:7D:8B:19:EC:10:2D:FD:93:81
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/21123D8E53A411EEAEC1B26D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.3.0/24
Signature Algorithm: sha256WithRSAEncryption
23:46:f0:4e:00:49:db:23:86:5f:76:10:58:ff:5e:fd:5f:35:
d7:b5:91:6b:f3:e8:09:9c:82:b6:79:b2:85:21:1d:52:30:a0:
6c:ea:cb:01:a3:78:e5:ec:59:59:ab:1b:5c:7d:14:6a:65:51:
1c:29:b8:e9:10:ca:32:34:a6:e1:c4:21:d2:1f:5f:ef:0b:75:
91:61:9d:44:1f:7e:a2:dc:de:64:2b:c8:98:16:3b:5d:39:f0:
3b:bd:ec:60:84:8a:0b:8e:8b:6b:d7:bd:54:0f:57:b5:64:67:
57:1c:91:16:e5:9d:5f:3a:c5:4b:18:37:a4:db:a5:c1:cd:ce:
3c:9b:79:f6:02:ca:76:8b:b3:ed:00:cc:95:81:92:be:51:f6:
9a:fd:74:85:98:38:2a:a8:2d:cf:9a:7a:8f:99:62:e4:eb:0d:
97:c8:a6:20:6d:46:ca:07:62:b5:49:47:e2:74:53:1b:92:87:
bb:90:3b:44:25:4b:38:f6:38:67:6c:0b:58:4c:e6:ea:3f:08:
0f:6c:8f:ea:ad:bc:e3:dc:01:55:ba:2c:19:58:4c:12:df:86:
58:7e:27:49:c3:f6:ce:27:3c:3f:86:63:44:55:c6:33:b9:f5:
ef:6f:ce:60:1e:20:3c:82:28:45:44:62:40:49:12:93:7d:bb:
f2:49:e2:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:17 2024 by rpki-client on console-fra.rpki-client.org