Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/284CCFD87EBA11EE928C6B5E4AD9E6FC.roa
File: 284CCFD87EBA11EE928C6B5E4AD9E6FC.roa (raw, json)
Hash identifier: tBGxbsspIstgNXLdLjtkUHVKKnMNqnNDp8ZO9H0D/6g=
Subject key identifier: DF:4C:A9:9F:BF:AB:80:E0:89:96:C3:35:92:0B:2F:76:BB:C8:D4:22
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4DC7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/284CCFD87EBA11EE928C6B5E4AD9E6FC.roa
Signing time: Thu 09 Nov 2023 04:40:50 +0000
ROA not before: Thu 09 Nov 2023 04:40:47 +0000
ROA not after: Thu 08 Aug 2024 04:40:47 +0000
asID: 133861
IP address blocks: 154.197.48.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19911 (0x4dc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 9 04:40:47 2023 GMT
Not After : Aug 8 04:40:47 2024 GMT
Subject: CN=654c62d2-997e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:3b:3f:9f:c2:0a:5b:9c:1d:e2:38:95:d8:5d:
93:24:a8:5d:5a:4d:93:b2:d0:cd:90:32:af:07:06:
6e:53:62:56:36:e5:64:c9:51:c5:8b:f1:df:9d:a8:
b2:9d:2f:30:cd:13:f2:9c:94:7e:a7:1f:f3:4a:50:
c4:ce:25:91:d5:4e:d9:87:14:db:11:12:cc:87:0b:
1c:33:c4:25:62:b7:d0:6b:04:63:d2:6b:e4:b7:03:
83:48:36:23:f3:d1:d7:1d:50:54:77:29:e9:f6:24:
3d:a2:e6:65:a0:10:9a:c0:a5:e2:c7:83:d6:73:45:
1d:01:4b:69:94:55:03:1b:3c:c5:64:14:a1:81:89:
ae:0d:1a:a3:b9:da:cb:54:80:d3:64:ad:85:a3:88:
4d:58:36:0c:69:91:fe:99:94:5e:e7:fc:d4:fd:a4:
b2:e2:80:ed:77:88:82:f0:fa:b9:a5:70:f0:9b:c4:
47:cb:d6:36:57:89:21:ba:d8:84:5d:41:df:9d:b5:
0c:3c:7d:92:1a:b8:a1:78:3f:36:ac:d6:61:02:8d:
6e:2f:a4:69:8f:c7:d6:92:4e:1d:29:25:db:3f:1a:
14:46:e9:23:01:c3:30:87:fe:2f:77:b1:d4:80:44:
5c:c1:58:7e:b2:aa:2d:9f:23:05:90:8c:c3:83:84:
49:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:4C:A9:9F:BF:AB:80:E0:89:96:C3:35:92:0B:2F:76:BB:C8:D4:22
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/284CCFD87EBA11EE928C6B5E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.48.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:bd:cf:b7:77:1c:b5:99:80:de:3a:9a:3a:e9:15:81:0a:6d:
1d:26:d0:b2:e6:4a:76:2d:16:7e:7f:b8:f4:de:2d:12:ab:4f:
ba:53:4a:60:8a:4b:0b:e8:b9:1e:3c:86:75:32:54:bb:57:5e:
d0:32:e9:4f:71:cb:c1:fc:d2:b7:51:ed:71:1f:70:9e:94:9e:
92:6e:26:ed:a0:cc:d5:a9:45:16:36:85:18:61:db:3a:a5:40:
e4:e7:3f:d4:90:f1:39:aa:a1:94:42:6b:a4:40:3a:f0:e9:4e:
cc:97:4e:a7:c2:03:b4:93:b9:49:01:7b:7f:26:d8:4a:62:ca:
c9:d9:f6:9f:2f:5d:8b:54:02:cf:62:6c:1b:35:5e:cb:02:d2:
cc:56:0e:b1:7c:12:8d:37:c7:36:19:17:5f:3f:ce:40:db:0a:
ab:85:a2:8c:d7:25:e9:7b:99:85:98:74:4c:ae:66:63:6e:2b:
f8:05:6a:af:b2:a6:8e:a7:54:94:94:b6:81:8a:96:94:51:5e:
28:07:2f:a9:04:23:fc:07:d9:c5:19:88:f0:ab:94:fc:93:62:
a2:d8:c5:ac:e0:83:96:98:7c:96:3c:50:0d:87:25:1f:8b:8c:
fc:0b:db:37:67:5c:a0:e7:ad:92:a8:36:7a:b5:8d:1c:e5:4b:
3f:65:34:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:29:50 2024 by rpki-client on console-fra.rpki-client.org