Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/43B3ED1C156D11EE87889C7D4AD9E6FC.roa
File: 43B3ED1C156D11EE87889C7D4AD9E6FC.roa (raw, json)
Hash identifier: r2EX/WObgOc76UvfWPFDLc5drMpFoniwmbd3Ni8tNPI=
Subject key identifier: D4:2B:B5:E0:C8:B0:9B:86:AD:39:A2:60:2B:55:E7:72:85:7A:DC:05
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2EB7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/43B3ED1C156D11EE87889C7D4AD9E6FC.roa
Signing time: Wed 28 Jun 2023 04:35:53 +0000
ROA not before: Wed 28 Jun 2023 04:35:49 +0000
ROA not after: Wed 26 Jun 2024 04:35:49 +0000
asID: 38638
IP address blocks: 154.83.20.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11959 (0x2eb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 28 04:35:49 2023 GMT
Not After : Jun 26 04:35:49 2024 GMT
Subject: CN=649bb8a9-2247
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:23:df:62:7e:ff:2e:f5:59:c0:4d:b6:eb:d0:
49:bc:44:34:a7:03:df:d0:0b:d3:0a:dd:00:01:e5:
70:c2:83:70:ab:2e:27:3b:ff:6d:bb:88:70:4d:f1:
e1:3b:22:23:4e:a1:ea:22:36:e9:39:95:f2:5c:04:
e9:2b:ff:2f:85:bb:ec:41:e4:1d:57:db:3a:2c:8f:
f5:e8:72:1a:c8:3b:aa:0e:ff:ff:2a:a3:ec:56:98:
f6:7d:a8:95:89:0e:5b:56:c0:61:cc:63:6f:4b:b1:
8c:cd:82:f1:a7:72:00:6e:37:2e:1d:86:5c:99:d9:
9f:20:41:8d:4f:cb:90:6c:7b:7b:45:3d:68:1e:67:
be:66:33:0d:24:b6:49:96:de:c3:fe:9c:3a:1a:58:
16:86:4c:85:21:41:13:6c:92:4f:00:87:78:d0:78:
66:31:fc:0e:d3:0d:eb:51:42:28:46:96:d6:da:70:
d7:c1:9b:b0:a6:91:ba:da:5e:3a:3e:f8:32:7f:cd:
f1:a7:a2:81:c7:62:cc:67:47:4a:db:b7:cd:65:98:
a8:48:b1:cb:cf:34:41:cd:0d:ea:b3:d5:25:5f:67:
f6:e5:24:ac:1a:6d:de:1d:d2:87:33:d6:c4:2e:8c:
85:71:e6:4b:27:8e:26:02:61:df:77:da:2b:7f:73:
ff:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:2B:B5:E0:C8:B0:9B:86:AD:39:A2:60:2B:55:E7:72:85:7A:DC:05
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/43B3ED1C156D11EE87889C7D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.20.0/24
Signature Algorithm: sha256WithRSAEncryption
11:90:b4:1b:cc:55:1f:57:00:85:fa:13:20:59:4f:69:0e:80:
6b:88:3a:ff:3d:25:53:81:70:c8:be:bc:42:f0:34:30:93:75:
94:05:7e:81:ec:99:1f:97:e7:05:01:59:31:a8:d0:47:a8:18:
d3:77:84:25:63:0e:54:fe:74:2d:44:39:dc:ae:ac:fe:12:e4:
b5:e8:99:8b:52:a0:2f:f2:ab:a2:bb:62:4f:63:7e:51:35:c2:
ad:50:5f:ef:ac:c1:0c:41:c3:13:44:da:31:18:03:f9:5b:7d:
55:01:9e:68:a8:8a:5f:ac:0c:cb:d1:1f:de:67:4d:d7:0b:f7:
63:aa:ed:0e:d1:dd:5a:d7:aa:41:13:16:f6:d3:11:bf:78:1f:
65:7d:f3:b9:83:35:02:ae:c8:7d:15:51:1e:64:4e:99:5a:f0:
f7:10:83:55:69:31:ae:58:37:cb:1b:b7:8f:58:88:b6:fe:fb:
30:2a:aa:76:83:81:5e:6f:b4:62:2d:f2:d5:e3:de:51:90:1e:
5d:5f:db:74:fc:39:55:aa:aa:47:57:e1:33:5a:d7:52:5a:b1:
7f:b2:a4:55:91:2c:fa:e8:ed:04:33:04:f7:3c:4e:a5:0f:42:
14:52:58:f2:1d:76:df:f4:73:ee:fe:11:20:e3:40:d9:3f:cc:
05:db:f9:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:22 2024 by rpki-client on console-fra.rpki-client.org