Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E770DF6E75E11ED95113B714AD9E6FC.roa
File: 5E770DF6E75E11ED95113B714AD9E6FC.roa (raw, json)
Hash identifier: llb2Op5YaOzDg0HLOxNNs5PmcCjPOmplaU0Kwc4zQVk=
Subject key identifier: 34:CC:6E:EC:33:66:64:DA:BB:2F:F1:15:E6:B0:7F:D7:FE:FC:D2:5F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 202F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E770DF6E75E11ED95113B714AD9E6FC.roa
Signing time: Sun 30 Apr 2023 13:53:22 +0000
ROA not before: Sun 30 Apr 2023 13:53:17 +0000
ROA not after: Wed 05 Jun 2024 13:53:17 +0000
asID: 135357
IP address blocks: 154.201.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8239 (0x202f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 13:53:17 2023 GMT
Not After : Jun 5 13:53:17 2024 GMT
Subject: CN=644e72d2-58e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:4e:41:34:86:1e:73:4c:e2:c8:75:05:a8:0e:
6f:52:39:6d:ae:21:d4:d1:40:7d:b4:92:2d:ea:35:
fa:87:74:59:6d:67:b4:c1:4c:00:eb:8c:9e:aa:0b:
c5:40:bd:68:bb:cb:23:85:83:6a:fa:67:67:15:c8:
e5:bc:a6:0b:88:0e:bc:9a:23:c5:17:71:18:b0:bd:
e8:41:de:c8:5b:69:ff:c5:ad:78:70:a9:f0:ac:7e:
58:8c:68:d0:4a:68:fb:32:50:3c:c1:f3:f4:27:a2:
ac:76:52:cc:17:e2:7d:2b:17:02:a2:b1:fc:ff:64:
c7:60:9e:4f:e1:a5:11:79:0c:53:7a:67:bd:2d:59:
b0:9e:1a:d6:32:d6:f6:f6:11:d1:fb:f1:76:77:1e:
67:85:4c:8e:b4:f5:0b:36:d0:fd:60:28:fc:f8:d2:
cc:65:e0:d3:93:bf:38:3a:12:76:fb:14:d6:c1:06:
91:9f:2d:73:ba:1c:63:53:c7:3c:53:56:4f:45:f4:
36:3d:5e:e5:b0:c4:b6:9c:72:82:70:0d:bf:e1:27:
b1:1e:07:23:cf:90:a1:da:04:f5:dd:be:70:8d:8f:
bd:eb:f5:2c:1f:d5:99:3c:17:06:be:b8:19:4e:25:
c7:25:5c:88:38:a3:be:e1:0c:69:fe:46:4b:45:95:
55:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:CC:6E:EC:33:66:64:DA:BB:2F:F1:15:E6:B0:7F:D7:FE:FC:D2:5F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E770DF6E75E11ED95113B714AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.16.0/20
Signature Algorithm: sha256WithRSAEncryption
ac:ba:79:06:87:b2:30:29:c2:59:5c:f0:62:61:7b:8a:3a:7d:
9d:c4:9d:7d:8c:4c:ef:e2:df:58:74:60:32:3b:e4:77:c1:95:
46:0e:26:80:56:c2:85:ae:71:f3:99:ad:02:e4:72:9b:bf:cc:
02:49:99:15:93:3d:b7:62:ae:5b:e7:79:e7:f4:03:2b:8a:f3:
ec:ba:2d:a5:1a:12:10:ac:36:fa:53:63:4e:14:86:53:d6:58:
d0:ad:d3:fc:50:c4:05:49:07:c7:16:08:37:e2:3f:a5:54:e6:
8b:76:47:a7:16:51:23:83:3e:12:62:72:7d:8d:de:41:af:b7:
13:7d:0b:44:14:76:f6:5c:22:82:fb:97:24:84:a5:10:ad:e7:
e9:b0:33:a1:10:39:83:b2:08:17:0d:1b:98:3e:a8:5d:f5:2d:
d5:70:ce:fe:fe:a9:1b:4f:fa:2e:4a:ba:1e:ec:4d:8f:f1:9c:
73:88:5d:6d:cf:c8:d7:1f:d7:3c:ca:60:b2:54:cf:53:e5:6b:
b0:7c:aa:52:e1:c1:68:27:9d:ed:f4:29:47:67:4e:27:4a:62:
99:9b:21:55:f4:74:17:c5:c9:83:22:96:1c:29:6b:82:9d:2a:
7d:d0:90:b9:87:73:09:7e:50:ce:99:06:f3:f5:a9:54:20:0b:
69:13:f8:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:25 2024 by rpki-client on console-fra.rpki-client.org