Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3ACFDD78FDCB11ED80E6435F4AD9E6FC.roa
File: 3ACFDD78FDCB11ED80E6435F4AD9E6FC.roa (raw, json)
Hash identifier: nTfto0aPqt0Thzell/yUx6FjKhB/H6hjs7Ou/v94Ao4=
Subject key identifier: 75:39:7E:42:38:7E:3A:D3:0B:B9:95:73:F8:58:70:F7:10:05:EB:CD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2832
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3ACFDD78FDCB11ED80E6435F4AD9E6FC.roa
Signing time: Mon 29 May 2023 02:48:03 +0000
ROA not before: Mon 29 May 2023 02:47:59 +0000
ROA not after: Wed 15 May 2024 02:47:59 +0000
asID: 63888
IP address blocks: 154.207.221.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10290 (0x2832)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 29 02:47:59 2023 GMT
Not After : May 15 02:47:59 2024 GMT
Subject: CN=64741262-8b76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4a:bd:b5:6e:8a:9e:be:5d:0e:cc:0c:a8:6c:
ed:a3:15:96:d7:86:3e:b5:b0:e3:b0:0e:09:4b:3e:
bd:6f:c9:3e:fa:15:c6:f7:69:b6:c8:aa:7c:7c:7e:
da:47:b1:c5:72:9e:eb:37:34:6f:43:6f:df:68:f2:
d0:02:06:04:b3:0e:4c:eb:30:80:cb:af:ea:22:3f:
5c:5c:a9:02:dd:cd:bb:b4:d1:e1:3b:ca:6e:a1:e6:
e1:96:a5:b7:57:fa:de:f7:6a:23:ee:d1:1a:49:5a:
76:7c:73:a0:76:7c:86:e7:7b:64:81:83:09:2b:ea:
67:2b:db:3d:e0:25:3d:0e:f6:0e:98:fc:9f:f9:5f:
a4:c9:e8:74:84:63:5c:7a:1f:3f:82:9e:c8:7e:94:
0e:11:29:c4:9e:84:09:33:e0:62:57:38:88:72:4f:
c1:ad:59:47:f1:01:14:85:cf:cd:36:fb:0c:c7:cf:
8e:90:c4:7e:2e:01:94:f1:06:7d:41:bc:36:91:af:
e8:ea:f0:2b:a0:e4:9e:67:b8:da:f0:41:b6:58:38:
66:ad:84:66:d8:c0:d1:b3:a4:52:59:dd:aa:c6:c2:
87:ed:ad:80:b6:53:b4:84:96:94:00:6b:54:d2:80:
1d:b6:8e:e5:72:35:f0:8c:bf:f5:81:6d:0c:3e:a5:
87:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:39:7E:42:38:7E:3A:D3:0B:B9:95:73:F8:58:70:F7:10:05:EB:CD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3ACFDD78FDCB11ED80E6435F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.221.0/24
Signature Algorithm: sha256WithRSAEncryption
23:4f:8b:e3:09:07:b1:f7:26:c0:2a:0b:f2:5a:e1:cb:c6:45:
66:a9:5a:9c:d5:1c:d2:e6:1a:37:14:b3:25:e4:4f:f4:20:84:
12:44:fa:78:55:a6:55:36:82:a4:ba:b1:85:b8:df:0c:08:4b:
b3:d4:09:0b:7b:cd:56:a6:2c:70:11:20:4b:9b:dd:00:ea:db:
21:62:b9:8a:ae:c1:2a:2d:16:d5:c3:53:7b:79:2c:47:fa:e2:
1a:6f:ff:8e:94:c9:c1:c9:50:32:da:51:dd:b9:52:8a:54:05:
0b:de:e1:72:48:ae:bc:cc:a3:49:19:0e:7c:18:b8:44:8f:a5:
ae:74:29:6e:29:41:7b:f9:99:9c:9d:66:a5:3d:2a:42:07:12:
f1:f7:de:b7:0d:5b:01:5a:6c:1b:1e:18:aa:05:eb:79:28:22:
e9:85:75:cc:bc:20:09:e0:fb:e0:df:31:98:35:5c:63:cd:e0:
4c:25:86:22:c0:bf:46:33:da:68:8d:e7:2c:fd:49:af:aa:d1:
75:41:9a:e5:9d:a0:96:f4:2e:4e:b3:1b:9a:f1:cc:de:56:61:
f1:a6:72:89:97:c8:de:ad:15:7f:a0:03:41:78:62:74:33:20:
1a:47:c2:7f:b0:1f:67:8f:db:82:45:2c:cb:f5:a2:52:7d:2f:
8c:a8:8e:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:06 2024 by rpki-client on console-ams.rpki-client.org