Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3FFA3DD053A111EEB905A1634AD9E6FC.roa
File: 3FFA3DD053A111EEB905A1634AD9E6FC.roa (raw, json)
Hash identifier: jZjkwz+34FJ7ODK5DCn08B1wp0ynRISUaL7u59r3rE8=
Subject key identifier: AF:4D:EE:DE:04:7F:B7:6A:3C:B3:12:B2:7F:CB:69:2B:A5:F9:93:87
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3D8D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3FFA3DD053A111EEB905A1634AD9E6FC.roa
Signing time: Fri 15 Sep 2023 08:24:12 +0000
ROA not before: Fri 15 Sep 2023 08:24:09 +0000
ROA not after: Sat 08 Jun 2024 08:24:09 +0000
asID: 142403
IP address blocks: 154.221.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15757 (0x3d8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 08:24:09 2023 GMT
Not After : Jun 8 08:24:09 2024 GMT
Subject: CN=650414ac-768d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f8:79:f2:17:03:b1:e8:4f:e7:39:0d:50:f8:
da:bb:5e:61:72:17:03:45:f7:69:48:0e:ae:cc:58:
fd:74:4b:e0:db:57:b6:21:c0:bd:7b:52:9a:f9:bc:
1e:10:fc:40:de:be:36:d2:54:1c:b7:a7:09:0d:a9:
e0:d9:bc:30:4f:f7:23:fd:58:25:bd:0e:40:02:85:
79:32:14:a8:f8:e8:e4:98:9c:40:3e:78:1b:53:89:
ec:16:9d:66:26:09:66:b0:8a:86:c7:da:61:26:d9:
bc:07:3d:ae:85:b5:c2:e8:a3:ea:96:71:9e:fa:95:
b4:82:2a:2d:9d:a0:03:46:a9:32:cd:c5:6c:b6:d5:
05:2d:63:74:65:ed:cc:0f:cc:9f:40:5a:af:79:b5:
35:6a:71:ef:ef:5b:a4:7e:2b:61:77:65:94:1c:10:
5f:13:0f:e9:6e:d5:0c:63:6b:62:1f:07:0c:98:da:
66:58:37:c6:a4:3c:23:7c:79:27:3d:79:cc:d9:9f:
24:f6:b0:1f:c1:82:db:44:eb:49:28:44:6f:2d:04:
60:ae:2f:aa:fb:75:ad:be:57:4d:a1:6b:4e:93:2b:
06:f0:4f:f5:c9:f6:da:cc:48:23:4f:b9:f2:b3:25:
d4:7b:e0:c0:b2:29:f6:ed:bc:6f:75:c6:e6:94:6b:
05:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:4D:EE:DE:04:7F:B7:6A:3C:B3:12:B2:7F:CB:69:2B:A5:F9:93:87
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3FFA3DD053A111EEB905A1634AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.24.0/24
Signature Algorithm: sha256WithRSAEncryption
33:70:ae:af:82:8a:42:87:b3:58:14:2e:ed:c6:48:43:1a:8d:
55:9e:da:2b:a4:35:14:f4:6d:57:52:ea:7d:ca:64:65:88:03:
47:1a:60:0b:7a:c7:f8:4c:02:66:d2:dd:f0:71:93:09:e5:24:
02:66:d6:d1:dc:26:ac:0a:6e:e3:70:80:06:13:ea:28:29:2d:
ca:b4:09:85:19:39:36:8a:0c:74:8c:03:f5:ff:1a:c7:ca:a4:
73:a0:a5:61:7b:c1:be:18:26:28:01:ae:91:8f:42:23:65:35:
5b:07:89:f2:20:bc:bc:d7:6d:fc:da:ed:46:0d:0e:8d:ae:49:
80:81:9b:d9:64:5a:cc:bd:c9:13:82:19:af:cc:5a:0f:c7:6e:
8e:e4:35:2f:11:9d:46:d6:6e:b8:f7:d2:fb:90:ae:3b:21:cc:
68:be:e2:f7:15:0f:35:64:2c:8d:b8:77:93:12:5e:50:25:75:
cb:22:d2:53:61:2a:87:d5:3f:fc:81:56:1e:ea:d7:ee:76:f4:
aa:ad:32:04:a9:8c:9d:ba:55:83:df:09:54:e9:36:60:73:61:
c2:91:c1:93:2f:d2:22:d1:af:30:34:fb:06:6c:7d:9a:85:dc:
74:49:ff:13:3b:1c:10:38:a8:00:22:9b:54:7c:9c:87:58:b4:
6b:94:1b:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:07 2024 by rpki-client on console-ams.rpki-client.org