Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/38A182AC278011EE91EF75184AD9E6FC.roa
File: 38A182AC278011EE91EF75184AD9E6FC.roa (raw, json)
Hash identifier: 1ZAGmvxxpD8d21uhj0txgmTUPBh6mdJmbnS6N8N3NJ8=
Subject key identifier: 96:D6:3C:A2:DC:3D:72:00:22:04:35:26:F8:A7:04:A1:29:B1:FA:4A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 338D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/38A182AC278011EE91EF75184AD9E6FC.roa
Signing time: Fri 21 Jul 2023 04:36:55 +0000
ROA not before: Fri 21 Jul 2023 04:36:52 +0000
ROA not after: Thu 13 Jun 2024 04:36:52 +0000
asID: 22773
IP address blocks: 154.212.24.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13197 (0x338d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 21 04:36:52 2023 GMT
Not After : Jun 13 04:36:52 2024 GMT
Subject: CN=64ba0b67-d865
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:76:5a:fa:f8:ab:4a:f1:cb:5d:e0:b5:e3:34:
c4:7d:c4:f7:ea:95:b5:6d:17:bc:42:ad:89:ac:50:
85:2c:11:a3:e0:09:d4:72:40:35:3d:21:e4:e9:14:
9f:0c:fd:19:a1:87:f7:83:51:25:c3:7a:51:63:b8:
33:fe:3b:1f:8f:ca:0c:91:8a:83:7b:80:26:84:d9:
eb:a1:96:93:0e:79:6a:85:c2:e4:96:33:5d:ea:6e:
76:d2:fb:64:f2:db:62:e0:25:e5:7f:61:db:c2:2b:
1e:f2:e9:11:81:9e:ef:db:47:7a:c4:a4:06:aa:3a:
67:16:1f:28:02:f8:a1:10:c3:82:1c:56:48:90:e5:
df:f6:d4:b4:62:3b:1a:ef:39:6a:5b:ef:17:27:d7:
32:fe:2b:04:76:0d:d4:27:6a:8b:8c:36:ca:42:ee:
3e:f2:2a:48:58:cc:e9:82:c4:81:b8:f0:d2:af:56:
6c:23:1f:0b:9f:55:11:29:42:3a:e9:32:c3:27:bd:
ea:51:1e:62:a0:20:a6:57:62:1c:a3:87:4a:28:dc:
9d:a5:fb:0b:c9:a0:c1:35:66:09:8a:dd:35:0d:3c:
1b:b7:19:13:ff:12:6c:bf:40:3a:0e:61:a7:23:ce:
9e:a9:cd:5a:75:53:49:bc:ab:1a:2c:1e:5f:24:5b:
1b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:D6:3C:A2:DC:3D:72:00:22:04:35:26:F8:A7:04:A1:29:B1:FA:4A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/38A182AC278011EE91EF75184AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.24.0/23
Signature Algorithm: sha256WithRSAEncryption
90:b6:b1:65:35:62:7d:1c:c3:78:75:65:df:15:57:1e:a4:b4:
bd:94:de:5e:5b:e7:60:31:7f:e0:4f:b1:0e:87:c2:ab:06:a8:
5c:ff:3f:5b:75:1f:4e:4e:33:cd:34:a5:70:02:7d:f7:b5:f5:
13:3d:f6:10:fb:23:12:09:ff:eb:f9:18:8f:72:0c:f5:d4:1d:
49:c3:5b:9e:0d:9a:b6:5a:da:4d:41:01:84:bd:1c:3e:d5:38:
c4:bc:d4:3e:90:03:f5:4e:32:d2:02:b9:8b:63:d2:22:1c:fb:
e2:0e:c0:c1:ba:f2:78:53:45:7a:e5:69:b6:e4:fa:86:ae:1b:
8a:75:0f:71:8c:2d:ce:cb:b2:35:eb:11:5d:56:08:8e:dd:36:
3f:70:97:d3:ce:22:2a:4d:80:72:ac:bc:40:8d:64:6d:16:3d:
e6:3c:de:95:e9:4d:b5:88:07:de:3c:5f:a5:42:c0:1f:9f:3b:
52:f5:eb:59:e1:07:14:08:42:91:bd:b4:8a:dc:9d:b2:51:1e:
19:0b:6e:95:f4:f0:51:9b:0c:94:28:d3:c1:4e:14:5d:c4:9e:
5f:3d:f9:90:bd:a6:b8:c5:36:8c:41:f0:8f:b3:b7:ad:81:7a:
c9:1b:3e:b4:c3:ca:6e:f7:69:60:8c:f3:34:3b:05:f5:c6:c7:
dd:bd:fc:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:20 2024 by rpki-client on console-fra.rpki-client.org