Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3ABC38DC155811EEA163F83A4AD9E6FC.roa
File: 3ABC38DC155811EEA163F83A4AD9E6FC.roa (raw, json)
Hash identifier: bb6DfvfxUN8jXmbI7Tw9DYOtcUStiX6No3Iu76Ylk8s=
Subject key identifier: 7B:28:9D:69:4A:27:75:E0:96:38:37:A7:CA:57:6E:E2:AC:4E:41:C4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2E2B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3ABC38DC155811EEA163F83A4AD9E6FC.roa
Signing time: Wed 28 Jun 2023 02:05:18 +0000
ROA not before: Wed 28 Jun 2023 02:05:14 +0000
ROA not after: Sun 04 Oct 2026 02:05:14 +0000
asID: 131267
IP address blocks: 154.222.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11819 (0x2e2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 28 02:05:14 2023 GMT
Not After : Oct 4 02:05:14 2026 GMT
Subject: CN=649b955e-1e24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5c:3d:4e:ef:e5:c8:b5:41:21:ed:c3:03:1e:
17:ea:e2:3b:08:65:50:dc:94:df:4c:f8:34:5a:64:
f7:48:a7:47:1e:ed:3f:54:b7:a5:22:26:05:ac:f5:
fe:15:64:7f:b2:b5:44:8e:6d:a5:ac:e4:c8:e9:d4:
4f:65:20:ed:ff:3b:83:c2:df:78:7d:28:d6:21:3e:
91:e8:2e:c6:28:65:ed:d2:a7:7e:92:2f:50:70:7b:
e7:20:98:44:2b:0b:04:62:0d:3e:c8:db:b7:7b:69:
d4:f5:db:a3:c1:9c:7e:eb:be:93:70:1c:62:28:fe:
a5:2d:08:e8:92:e4:4f:eb:55:01:48:39:5d:81:2d:
da:c9:ff:61:d1:76:f1:e8:9e:9b:33:a7:20:64:c7:
2a:d4:44:be:b1:7f:da:00:39:02:01:aa:ad:4c:2d:
40:87:8e:45:03:5b:42:07:e0:70:25:c8:a3:cd:74:
95:4d:ca:45:e4:2c:6e:4a:fa:34:87:c9:db:b9:ae:
25:9b:1b:11:c9:c5:13:2f:0b:c7:81:ca:f3:10:98:
3c:07:cf:c7:09:19:81:d1:1b:cf:1a:ff:bc:03:23:
37:d8:03:36:cf:f0:92:4b:38:ea:74:f1:21:10:09:
8d:62:3f:8e:9a:9b:52:ec:a4:d6:f8:11:bf:7a:b5:
a7:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:28:9D:69:4A:27:75:E0:96:38:37:A7:CA:57:6E:E2:AC:4E:41:C4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3ABC38DC155811EEA163F83A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.6.0/24
Signature Algorithm: sha256WithRSAEncryption
19:eb:05:27:af:47:b5:2b:f3:3c:1f:26:73:0e:ed:46:2c:22:
b7:74:e8:8e:12:74:95:2d:5c:03:50:6d:7a:c9:80:b8:f5:06:
3d:3c:9f:5e:26:e5:6c:08:ff:52:97:cb:79:51:b8:41:93:e0:
88:88:b5:cc:9a:65:ad:6e:ab:e9:d0:fa:0c:25:d2:20:dd:c3:
64:8d:c0:03:f8:a1:05:fa:c3:54:e0:49:0a:1b:23:a7:7c:c4:
82:04:52:41:45:28:85:1f:24:84:6d:51:69:16:91:56:5c:3a:
19:4d:94:61:e7:5c:f8:d4:c5:41:e3:48:85:e8:e6:62:e0:32:
05:c0:14:e7:70:1c:7f:bd:43:c9:9e:e6:80:cd:c3:47:e6:72:
36:8f:32:ba:ad:70:38:03:76:6d:9c:f1:eb:30:e5:78:da:ba:
c6:ac:97:7f:cb:cf:96:77:0b:96:30:c6:a2:cc:09:33:54:9e:
91:8b:aa:bd:0d:6c:61:43:71:e3:49:6a:90:b9:6c:bb:aa:97:
60:ec:d7:0c:49:2b:73:f1:90:90:6e:23:1a:6c:3d:05:8e:f9:
91:0c:c3:b8:da:bc:d4:5e:e4:14:a0:9e:31:ac:26:e7:18:ac:
43:b1:bd:2c:79:23:01:32:5e:1c:d9:da:35:95:66:bf:00:d2:
8f:aa:19:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:27 2024 by rpki-client on console-fra.rpki-client.org