Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/305A2F76277C11EEB2CDAF8A4AD9E6FC.roa
File: 305A2F76277C11EEB2CDAF8A4AD9E6FC.roa (raw, json)
Hash identifier: yXzWewiHfVPz/826o7+0AXSwSXX+cbdetYeGJqR1oe8=
Subject key identifier: 76:EE:33:0C:4A:93:C6:AD:D8:6C:EB:91:3A:33:B8:63:85:A9:78:C1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3351
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/305A2F76277C11EEB2CDAF8A4AD9E6FC.roa
Signing time: Fri 21 Jul 2023 04:08:04 +0000
ROA not before: Fri 21 Jul 2023 04:08:00 +0000
ROA not after: Thu 13 Jun 2024 04:08:00 +0000
asID: 22773
IP address blocks: 154.93.16.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13137 (0x3351)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 21 04:08:00 2023 GMT
Not After : Jun 13 04:08:00 2024 GMT
Subject: CN=64ba04a3-820d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:38:26:ca:e1:bd:4e:69:10:49:48:5f:9a:37:
b9:50:93:34:80:58:50:4b:ab:0e:f2:66:88:95:10:
18:8d:01:e5:cf:18:46:f0:3f:4c:da:4d:cf:c2:5f:
f9:16:8b:53:bf:4b:d6:45:1e:1d:4e:7e:bf:0d:23:
5e:9f:cc:19:d3:74:09:8e:05:07:f0:9f:5c:2e:ec:
60:fb:62:f2:01:e8:bd:43:07:76:07:00:2a:2f:89:
e4:36:e8:1f:7d:30:d8:1b:f4:bc:4c:fb:e2:3a:73:
fd:22:9b:95:05:f9:4d:9a:b3:44:63:f3:98:bc:dd:
21:ad:ee:a4:16:92:70:7e:73:ec:c4:4f:ac:89:1f:
13:48:72:b0:16:53:ac:b6:e4:af:2d:10:fe:98:25:
40:57:52:df:b3:97:ba:8b:35:80:f8:8b:bb:c1:45:
83:97:c3:8f:e7:51:0f:e1:4e:68:ba:0e:de:3e:f4:
b7:4b:de:ef:7d:fe:39:a9:c5:94:5e:1c:ad:eb:e1:
dd:c0:5b:bd:cf:26:80:84:3a:9e:ab:e2:e4:04:07:
d3:be:3d:e6:19:57:ca:be:bc:44:fc:57:fe:7f:0a:
48:1e:9f:f4:1e:87:2e:66:9e:e9:35:20:bd:55:ea:
94:ee:3e:dd:35:b9:33:a8:da:8e:28:68:25:2c:e0:
a8:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:EE:33:0C:4A:93:C6:AD:D8:6C:EB:91:3A:33:B8:63:85:A9:78:C1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/305A2F76277C11EEB2CDAF8A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.16.0/22
Signature Algorithm: sha256WithRSAEncryption
45:a3:6d:fb:ad:9a:7b:4e:36:65:b9:04:57:94:59:ca:fe:b4:
17:22:88:fe:11:32:2f:a1:78:1f:f0:35:b4:d1:45:a2:5a:51:
ab:1f:c7:3b:10:aa:54:61:07:db:bb:ce:cb:8e:c0:c0:c0:b6:
9b:03:2d:f7:14:e3:f8:93:68:c6:be:f8:83:b9:96:d8:c1:e9:
c8:9a:b8:43:12:af:50:dd:f2:11:5b:49:85:53:d9:b4:42:69:
8d:da:a9:64:3d:10:3c:7a:b2:99:62:52:fb:7e:c0:e7:3b:db:
3b:47:09:c2:45:26:2a:39:7c:2d:9f:cc:a0:4f:7e:a6:90:3b:
9c:23:2d:42:ef:8e:15:e1:af:b1:9a:5e:15:0a:f8:97:ce:1a:
1c:9d:bb:ed:f9:94:83:f9:cf:e4:1e:70:3a:bc:b9:7b:0b:ef:
8d:6b:e8:84:93:14:b6:fc:c4:e6:8f:f7:1e:5f:c4:4d:1b:04:
62:90:2c:97:c3:67:37:90:e5:3c:3f:d4:c0:4e:9a:89:a3:45:
1a:01:8e:f2:0b:a2:97:3d:dd:87:ff:88:22:a7:f8:d3:53:ec:
92:1e:17:68:20:97:de:d1:d8:0c:fc:ca:1b:2f:98:30:d3:25:
7c:5f:c6:a6:7f:8e:e5:58:25:23:26:f5:6b:75:1a:08:34:ae:
ce:17:55:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:19 2024 by rpki-client on console-fra.rpki-client.org