Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/358CAF4643E711EEA5B831484AD9E6FC.roa
File: 358CAF4643E711EEA5B831484AD9E6FC.roa (raw, json)
Hash identifier: 2I3TDEOTZPzDmxeSIFUCSWW8rU0NiB6LXQxGt6syxeg=
Subject key identifier: 36:F3:8E:92:65:68:EA:3F:ED:70:28:54:D4:CC:CD:D5:F5:D0:E3:B4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 39CC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/358CAF4643E711EEA5B831484AD9E6FC.roa
Signing time: Sat 26 Aug 2023 08:04:41 +0000
ROA not before: Sat 26 Aug 2023 08:04:38 +0000
ROA not after: Thu 11 Jul 2024 08:04:38 +0000
asID: 136933
IP address blocks: 154.91.192.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:58:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14796 (0x39cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 26 08:04:38 2023 GMT
Not After : Jul 11 08:04:38 2024 GMT
Subject: CN=64e9b219-d867
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:78:83:15:78:08:94:26:ce:1e:d2:f1:9a:8f:
0d:99:f7:75:13:10:ee:4c:61:b2:21:e7:43:4b:ec:
7b:8a:ca:c6:da:15:eb:cd:f0:72:00:92:a9:92:61:
95:b3:9e:a7:f9:61:f7:0a:82:ce:a4:15:97:72:63:
3b:68:85:eb:45:bd:01:92:2c:29:26:0d:13:09:cb:
18:1d:7d:a3:67:6a:c3:4f:e8:88:c1:ed:1f:9f:b4:
0b:90:93:fa:d9:2b:5a:56:01:96:4c:cb:5d:d5:9c:
dc:5f:15:09:75:51:6a:58:8d:3f:2e:fa:4d:67:88:
2d:78:33:8c:59:02:75:10:a9:80:ff:8a:17:e9:b9:
97:12:34:e5:c2:e7:03:e2:5e:1e:6d:95:f8:9c:d9:
87:e5:5c:ba:5b:52:17:50:2f:f5:50:e7:c3:34:da:
79:c6:97:4a:ba:5b:3f:88:68:5a:c9:da:c5:2d:8d:
0c:cb:45:42:d4:b3:08:52:82:0a:16:e5:46:9f:56:
47:3e:ad:56:95:73:ce:82:ad:46:f5:13:27:92:11:
1e:55:34:12:4f:2d:6f:0b:c6:b5:0d:97:41:5a:23:
99:f7:28:a4:73:25:58:76:d6:02:f4:71:6a:13:ed:
0c:77:ae:ba:48:bc:da:fc:7b:af:1c:2f:52:9b:aa:
00:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:F3:8E:92:65:68:EA:3F:ED:70:28:54:D4:CC:CD:D5:F5:D0:E3:B4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/358CAF4643E711EEA5B831484AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.192.0/24
Signature Algorithm: sha256WithRSAEncryption
87:fb:79:2d:84:91:6d:b6:81:da:d0:6b:f7:4b:a7:4a:03:40:
26:8d:c5:08:04:76:1f:7f:c1:f4:21:53:48:8a:98:c7:df:24:
69:c8:08:ef:06:f3:f4:f6:72:fb:e7:d0:4f:a9:5a:bf:3f:f2:
5f:73:cd:fb:57:6e:6d:17:b2:d9:fb:1f:12:c5:5e:6d:45:5f:
ef:f9:c6:2c:75:40:7a:89:be:e5:f5:0e:e1:2a:58:31:94:9e:
36:7a:d7:c2:9e:ca:c3:5d:04:10:b4:53:0e:de:96:41:c5:f2:
ce:15:14:20:4a:b4:d5:e6:f8:72:c7:a5:75:19:75:3e:5d:a7:
2d:03:29:63:eb:56:a0:15:38:52:0d:04:36:96:20:9b:36:91:
4b:36:33:a2:bd:d3:a3:9e:31:8f:f2:97:29:46:7b:bd:30:74:
2b:59:e2:97:97:4d:cd:f8:41:10:b6:a9:a0:6f:5a:23:7e:79:
ec:b2:23:0e:2c:fc:a6:54:a2:fc:10:f4:bd:bb:50:9c:89:fb:
41:d1:f0:ec:c6:85:7c:49:8f:70:91:f9:0b:81:74:09:7a:5c:
f5:94:7b:35:f1:8d:9e:25:24:3e:e2:db:db:97:b8:bb:86:76:
4a:75:62:6b:df:e3:58:d5:d6:b2:a6:22:89:9c:8f:f0:cb:3e:
96:d9:ff:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 17:18:01 2024 by rpki-client on console-ams.rpki-client.org