Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/60A4F3A043E711EEB5A79D484AD9E6FC.roa
File: 60A4F3A043E711EEB5A79D484AD9E6FC.roa (raw, json)
Hash identifier: uwNY+z+IC8DAULlNnhqNFD7gKqnYvKV+MK1g2I0aC1s=
Subject key identifier: 1B:58:C7:C1:4E:7C:B4:06:B6:C8:32:66:04:9E:2C:CD:C5:AC:BF:B7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 39CE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/60A4F3A043E711EEB5A79D484AD9E6FC.roa
Signing time: Sat 26 Aug 2023 08:05:53 +0000
ROA not before: Sat 26 Aug 2023 08:05:50 +0000
ROA not after: Thu 11 Jul 2024 08:05:50 +0000
asID: 136950
IP address blocks: 154.91.193.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14798 (0x39ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 26 08:05:50 2023 GMT
Not After : Jul 11 08:05:50 2024 GMT
Subject: CN=64e9b261-e7b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:08:9c:bf:51:84:f9:d0:69:9a:fa:be:94:1a:
91:57:d0:38:0f:d2:84:ca:88:6d:fe:c7:bd:8d:92:
38:60:7d:2a:3c:5c:86:ae:03:4e:68:6d:49:8e:b9:
55:5e:3e:76:1e:12:f7:7c:b6:84:00:e3:b3:74:38:
be:45:db:a7:dc:1a:6c:80:d4:7f:57:c3:4b:28:86:
f4:04:c6:be:a4:67:76:bf:3c:1b:eb:46:d8:c9:34:
40:cb:d8:5e:c3:97:e9:78:cc:3b:68:0e:b6:41:41:
b5:e1:f7:df:41:3f:26:7f:fd:5f:2d:54:08:7b:cc:
08:5f:b5:1f:36:39:d1:c2:7a:0c:08:46:65:99:0d:
dd:95:23:03:0d:43:cf:8f:6d:a7:50:6c:2b:01:97:
4e:26:9c:e6:d2:12:18:9b:db:43:b8:2a:12:d6:dd:
ce:15:2f:4b:a2:98:f9:66:57:b1:f0:b5:cb:b8:77:
9f:ac:4d:f3:d0:7d:03:0a:b2:3f:f8:11:65:fe:69:
c5:2d:d8:26:78:62:ea:18:1b:e2:79:db:5e:78:ee:
be:d6:5e:50:40:e6:a9:9b:4e:65:04:77:c4:a8:f0:
23:2a:dd:fe:c6:fc:6a:80:0e:ca:b4:90:8a:aa:94:
dd:95:e1:34:80:a5:66:34:3f:85:d3:ef:cb:99:ff:
0e:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:58:C7:C1:4E:7C:B4:06:B6:C8:32:66:04:9E:2C:CD:C5:AC:BF:B7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/60A4F3A043E711EEB5A79D484AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.193.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:f0:66:fd:72:6e:89:82:27:2a:33:39:72:7b:18:b7:40:11:
3d:d4:75:be:53:13:c7:75:a9:b7:d7:f1:fb:48:fc:eb:0b:bd:
b1:80:a2:90:42:7b:2c:2e:bf:ac:2e:bd:90:c6:5b:c8:c8:48:
13:92:b1:9d:3d:db:96:4a:91:ec:94:fd:6f:7c:83:5d:08:cd:
06:62:69:67:ac:a1:52:c9:97:16:7f:6e:0c:78:a6:0f:91:84:
1a:4a:29:b2:bc:46:eb:09:ae:1a:be:e4:e3:a2:bc:94:c2:88:
3a:d8:a5:99:23:b6:57:cc:81:21:a5:91:67:f2:da:5c:5c:8b:
04:0a:35:52:41:24:37:2f:b8:ca:0f:7b:f4:30:1a:47:b4:2b:
68:63:af:8d:3a:8b:8b:bf:08:8a:9f:30:f4:ac:03:d9:db:e9:
17:ff:09:c6:1a:a0:80:cb:ad:43:ff:28:d5:7a:12:0d:23:11:
12:af:ab:71:81:c4:05:d2:27:cd:04:ab:0c:82:65:d4:11:4b:
cd:11:b8:51:4b:78:eb:66:39:53:b5:b8:38:e9:14:9f:d5:b7:
64:a7:6e:a7:5c:55:f5:93:2e:56:4f:b5:b4:ca:92:91:7d:65:
0d:0a:3c:e2:ee:c1:b0:8f:a5:55:7e:da:36:5a:8d:c6:c8:55:
8c:1b:bd:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:26 2024 by rpki-client on console-fra.rpki-client.org