Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/400D236E10DA11EEBF4371224AD9E6FC.roa
File: 400D236E10DA11EEBF4371224AD9E6FC.roa (raw, json)
Hash identifier: 1Yexlh2veiqwb+mq+MnAq4GTX2Y6yBWFFVC8E7obvx4=
Subject key identifier: 10:9D:D9:22:1A:10:9E:CA:82:0C:4F:D7:F4:8F:73:C2:CD:44:68:C2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2D40
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/400D236E10DA11EEBF4371224AD9E6FC.roa
Signing time: Thu 22 Jun 2023 08:53:26 +0000
ROA not before: Thu 22 Jun 2023 08:53:22 +0000
ROA not after: Fri 05 Jul 2024 08:53:22 +0000
asID: 210334
IP address blocks: 154.89.36.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11584 (0x2d40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 22 08:53:22 2023 GMT
Not After : Jul 5 08:53:22 2024 GMT
Subject: CN=64940c06-7c13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:02:41:bf:f2:fd:23:e8:c9:56:c3:61:6f:d8:
63:a9:1b:de:73:c6:ee:68:8a:25:6b:d6:5d:73:ec:
83:70:4b:b3:f3:0b:cb:b9:a3:fe:1a:72:91:63:b6:
28:ad:5a:8c:c2:6f:87:9d:7e:86:11:10:4f:5f:cc:
ee:65:79:95:92:7b:5b:92:9a:24:f8:05:7f:d9:6f:
26:ca:b2:39:e7:c6:20:05:bf:fb:ed:68:9a:18:2c:
0f:94:c6:49:d8:e2:e4:0a:4d:cc:ed:81:65:1b:09:
72:fb:c0:3a:42:ea:01:91:d6:15:c4:05:9c:3a:9d:
9e:1c:76:fb:41:0e:fd:0f:d2:c5:36:01:78:52:a6:
ed:de:2c:20:94:a0:19:b1:b2:e4:14:c8:2b:19:0b:
d2:af:08:58:1c:31:58:81:b2:db:15:3f:4d:c5:5e:
4b:51:3b:b4:47:ba:cd:5d:cc:40:b4:8d:b7:0b:af:
7c:8f:76:d9:a2:72:30:64:47:f2:f9:40:87:99:d0:
06:47:cd:6f:c6:c0:23:b2:1d:29:d8:6f:9f:50:bd:
9b:3f:07:e2:ae:b6:d4:fe:fb:4f:c3:31:5c:27:d9:
8b:49:70:57:4b:04:be:c3:8f:ea:74:7f:c8:ab:88:
db:b4:bf:5a:f5:23:f4:46:85:d1:bc:32:8c:e3:c4:
67:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:9D:D9:22:1A:10:9E:CA:82:0C:4F:D7:F4:8F:73:C2:CD:44:68:C2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/400D236E10DA11EEBF4371224AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.36.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:5a:42:08:91:80:44:db:85:30:bb:52:e0:a3:00:b5:a4:72:
bf:95:a0:1a:20:f4:c0:bf:4b:d2:a5:9a:7f:d6:42:f7:1c:59:
df:3e:d3:02:ff:a5:b7:e7:4e:e6:d3:23:0e:0c:d8:c8:71:1c:
8f:af:60:93:ae:5d:af:84:60:9f:2a:72:c5:99:4c:4a:db:90:
3f:92:93:9b:bb:2f:b3:64:e1:75:84:ac:0b:f3:fc:07:3d:ce:
cf:c0:d1:06:6b:0b:29:7f:53:ea:25:c3:36:da:20:56:5c:48:
bc:ce:52:cb:32:44:c9:2d:4e:3b:29:96:00:4c:f5:a5:67:4a:
f5:fb:bd:15:f0:e2:d5:f6:63:fe:a7:db:a0:90:09:c9:02:3e:
27:48:86:b7:e9:59:bd:7d:2d:48:d0:28:fc:d9:7d:d1:e2:69:
10:94:54:01:02:26:45:aa:07:6c:6a:ae:ac:cb:ad:26:b1:e0:
ad:33:a0:59:7c:e4:4b:8d:66:78:16:6f:5c:38:43:c8:80:06:
1c:9f:b7:e3:fc:5c:05:8b:12:7b:52:b4:ec:4a:08:e4:2b:30:
e1:8a:3c:a5:2e:a4:fd:75:95:f2:cb:77:99:a5:42:5d:e9:25:
fc:24:cb:02:af:68:e4:c2:84:e5:26:4a:04:42:3c:6e:10:48:
ef:10:6a:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:21 2024 by rpki-client on console-fra.rpki-client.org