Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4530E5147BA211EEB4FE9F774AD9E6FC.roa
File: 4530E5147BA211EEB4FE9F774AD9E6FC.roa (raw, json)
Hash identifier: m7XnW7Lc74GmviFb5HPbw5jXV7X06qefxl53kQnOPuo=
Subject key identifier: 87:1A:F0:4B:7B:75:0A:1D:A2:02:55:AF:E8:32:60:B8:3C:78:CB:2A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4B3C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4530E5147BA211EEB4FE9F774AD9E6FC.roa
Signing time: Sun 05 Nov 2023 06:12:17 +0000
ROA not before: Sun 05 Nov 2023 06:12:14 +0000
ROA not after: Tue 05 Nov 2024 06:12:14 +0000
asID: 133448
IP address blocks: 154.223.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19260 (0x4b3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 5 06:12:14 2023 GMT
Not After : Nov 5 06:12:14 2024 GMT
Subject: CN=65473241-0988
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b4:b8:f7:4d:ac:f9:df:14:38:4d:00:a0:5c:
e3:af:fd:1a:99:68:20:1e:eb:db:fa:8c:d0:d2:ea:
d6:1e:d2:1e:7c:4a:27:23:0c:6e:2d:89:24:02:74:
8d:fc:1a:af:22:cb:c1:68:c2:73:7d:c7:dc:d9:f0:
42:b9:93:f3:2e:ce:f3:fa:8a:64:ca:4a:ad:d3:26:
5a:b1:51:b0:f0:56:bf:60:17:83:c4:3a:39:fe:d5:
89:45:b4:45:ec:a4:de:38:dd:e5:80:e7:de:bf:38:
5b:e3:fa:90:bc:58:5a:b5:cf:11:76:32:2c:f7:02:
38:b2:e6:9d:dc:56:09:5b:51:8d:61:38:bf:4d:d0:
99:6a:e7:e9:26:3f:e3:72:ef:f2:2b:ba:66:32:54:
54:a0:be:48:cf:29:16:f6:8b:da:51:71:d0:2d:41:
aa:b4:a7:a3:34:c4:53:0e:17:7a:f7:3a:56:63:75:
3c:00:f8:3a:8c:1c:86:70:b4:4c:98:36:dd:01:f6:
38:29:6f:40:95:ff:2e:cc:35:d4:e7:1a:d0:57:ec:
b9:75:09:b9:ee:f7:a5:fc:1c:5a:64:f2:bb:08:9d:
6c:f9:a4:4b:2a:a7:bd:32:ed:85:f6:ed:db:d1:98:
9e:8a:c6:22:e3:44:6c:9d:46:88:29:52:24:7d:ed:
4a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:1A:F0:4B:7B:75:0A:1D:A2:02:55:AF:E8:32:60:B8:3C:78:CB:2A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4530E5147BA211EEB4FE9F774AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.3.0/24
Signature Algorithm: sha256WithRSAEncryption
94:76:00:84:09:33:43:23:8f:56:dc:1a:44:27:aa:e2:7e:c3:
68:4b:66:3a:9a:81:37:c1:64:96:bf:0b:42:f0:cd:32:e6:d9:
9b:1b:5f:6b:6f:cf:e9:54:45:99:66:8a:68:b7:57:94:f4:5e:
32:fa:ec:20:0a:f7:98:0b:ad:3f:c8:06:6e:45:65:dd:b6:7f:
70:7c:22:08:58:d2:7e:64:47:0b:82:2f:e9:c6:dd:af:75:04:
b9:b5:3b:8a:0f:14:73:e7:64:d0:eb:5e:c9:ae:08:40:d6:a5:
3f:e5:4f:2d:1e:14:27:41:65:63:98:31:b8:b8:96:65:d9:5a:
1b:fd:a3:2b:85:1d:a1:d8:9a:40:cb:45:47:0c:4e:39:c0:d9:
7a:21:fb:06:98:1c:11:ff:e6:de:e4:35:ab:9d:29:2a:87:a6:
50:68:36:7e:3d:7d:34:a7:84:dd:9f:df:34:74:af:4e:c2:26:
9e:9b:e3:f4:6e:fe:d8:f6:16:23:22:8a:cc:c3:36:0e:fe:38:
22:8e:9e:7c:34:af:6c:0f:28:84:28:31:8f:da:c2:a5:6b:a1:
b8:b0:e9:d5:a8:5f:b5:ef:74:2a:e9:a0:1d:d6:e7:04:4d:16:
22:be:05:26:1b:d3:ab:2c:b4:1b:62:23:3e:9e:71:b9:d8:d2:
b9:5d:ca:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:10:18 2024 by rpki-client on console-ams.rpki-client.org