Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3CA97EA405ED11EE8738201D4AD9E6FC.roa
File: 3CA97EA405ED11EE8738201D4AD9E6FC.roa (raw, json)
Hash identifier: dRbzxIqnjPHI8uiNneHVBQDXpPLfmCqiGFpv9WWjPU0=
Subject key identifier: E6:58:BA:EF:76:56:51:1D:15:05:E8:14:08:C4:00:98:E0:6D:4E:41
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 29BC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3CA97EA405ED11EE8738201D4AD9E6FC.roa
Signing time: Thu 08 Jun 2023 11:11:38 +0000
ROA not before: Thu 08 Jun 2023 11:11:34 +0000
ROA not after: Tue 28 May 2024 11:11:34 +0000
asID: 141216
IP address blocks: 154.205.186.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10684 (0x29bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 8 11:11:34 2023 GMT
Not After : May 28 11:11:34 2024 GMT
Subject: CN=6481b76a-fee0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:41:c8:fd:d0:9c:68:c5:9a:da:0b:c7:5c:dd:
55:28:2f:49:7f:94:5e:d2:4b:b3:6f:20:92:0f:67:
82:8c:c6:0c:3d:0d:b2:58:fa:01:db:61:e6:da:18:
b3:15:21:b4:a1:5c:df:8e:ee:a2:03:c5:61:58:fe:
1b:95:4f:d3:fe:ec:28:66:57:6f:e1:72:0a:cc:5e:
80:5c:f2:4b:19:59:79:23:35:4b:57:1f:3d:c7:ce:
9b:21:6d:d4:3d:73:f6:4b:3f:4d:50:66:0c:37:30:
04:75:5b:49:2e:0a:f8:dd:74:55:83:2d:82:cb:c7:
0e:d8:22:ef:ef:f5:a7:eb:91:69:bd:6a:e7:77:f7:
61:13:1d:98:00:57:ba:1a:23:b4:8a:77:cc:be:69:
0b:b6:59:b4:63:db:39:5a:86:bb:dd:d7:b9:c8:8e:
42:c3:d0:e5:67:36:dc:bf:12:fc:aa:8b:61:99:7c:
84:8b:da:10:8b:08:38:75:a2:2c:c8:ee:8e:fa:4a:
5d:ce:a1:b4:83:e2:c5:d9:55:b6:b8:3c:1f:dc:f2:
3d:35:82:6b:a1:94:52:95:0a:49:b8:c8:f9:6d:3f:
54:16:1b:1d:73:26:a8:74:99:9e:d0:e6:e3:e4:47:
c7:92:bd:70:d3:d9:58:cb:8c:fa:bc:35:4e:16:49:
a7:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:58:BA:EF:76:56:51:1D:15:05:E8:14:08:C4:00:98:E0:6D:4E:41
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3CA97EA405ED11EE8738201D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.186.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:69:76:61:8c:18:f5:3d:91:7a:2e:a5:38:6c:fd:75:b4:f6:
51:bd:8c:54:26:0e:66:6b:9e:6a:9f:a8:20:f4:be:84:29:e1:
76:fa:98:5d:52:96:2f:43:c1:fa:cf:b5:d9:55:68:25:3a:9b:
b4:9e:cf:d4:29:7f:ff:7f:09:2d:90:9e:b8:b3:ed:87:f5:f4:
e5:06:61:10:a8:73:3b:a9:22:ad:6b:23:7a:03:f0:ca:5c:d1:
ff:b3:4d:8b:21:b0:7a:c3:01:47:93:d3:c2:5c:71:5e:ec:ff:
d7:c6:e0:31:4d:a6:35:18:81:72:2c:20:bf:61:07:cc:37:84:
6f:25:c9:e8:13:dc:44:78:ba:eb:46:62:93:50:32:cc:a5:26:
51:2f:7e:0b:bf:bf:7a:fa:4a:f9:c5:b2:0c:dc:65:6c:7b:bf:
80:a0:1c:d7:b4:b8:e8:b2:5a:36:c4:11:4a:9c:b8:b6:76:d5:
7e:12:2d:79:89:9d:99:13:0a:2a:ea:11:45:3b:1c:f0:4b:bf:
7d:06:f6:d3:5f:98:11:b8:11:98:8f:29:f4:fa:21:7d:c8:85:
59:14:8b:bb:bb:b0:a8:89:28:df:54:13:02:93:9d:55:11:9b:
ba:82:c1:e7:52:b8:d2:d4:f2:fd:dc:c6:b0:40:d0:bf:47:46:
77:f2:87:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:06 2024 by rpki-client on console-ams.rpki-client.org