Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/61917FBC53A111EEB90C01644AD9E6FC.roa
File: 61917FBC53A111EEB90C01644AD9E6FC.roa (raw, json)
Hash identifier: brH40CG7MRFD4vqCL5r2tXe5+EQUYX/bAi37w71Hs24=
Subject key identifier: 09:D2:CD:25:C4:97:80:9F:CD:1F:3D:95:F3:9C:38:AF:3A:B4:A3:41
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3D8F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/61917FBC53A111EEB90C01644AD9E6FC.roa
Signing time: Fri 15 Sep 2023 08:25:09 +0000
ROA not before: Fri 15 Sep 2023 08:25:05 +0000
ROA not after: Sat 08 Jun 2024 08:25:05 +0000
asID: 142403
IP address blocks: 154.221.23.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15759 (0x3d8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 08:25:05 2023 GMT
Not After : Jun 8 08:25:05 2024 GMT
Subject: CN=650414e5-ee15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ac:d3:d2:ec:b1:cd:f1:10:d5:c5:b7:44:55:
70:e7:90:73:b4:23:f2:4c:ca:ca:a9:b1:2f:d1:8f:
db:77:e5:ce:47:5a:fd:29:09:47:a7:b5:0a:ab:52:
cd:4d:96:05:89:5b:57:18:f1:42:b3:61:bb:a2:08:
71:c6:cc:2d:91:fb:12:8a:e5:74:94:12:50:a6:5b:
99:1a:49:d9:db:3a:19:f8:ac:2f:f1:9d:ab:93:66:
ab:35:f6:a5:28:fc:0d:b6:3d:7d:89:67:6c:5a:fa:
1d:7d:a3:ed:6b:b1:a5:ef:03:42:b6:ee:68:87:16:
93:5e:17:c0:fd:e5:bc:e7:22:f5:cc:fb:ec:54:38:
33:17:64:72:fd:e6:13:23:53:b3:ca:a5:bb:e7:11:
70:ef:90:9f:74:c6:8f:26:7d:f6:c0:0b:bc:cc:e9:
a1:5e:92:c8:12:44:8b:11:7f:cf:ba:31:77:2f:3a:
64:5f:8d:3d:51:a0:d9:4a:bb:5f:ce:ea:9c:47:51:
19:e1:c0:15:f7:2b:4a:fc:38:69:10:0c:ea:d2:c9:
bc:2c:53:0d:95:2a:37:e8:6e:e2:23:ff:25:4c:b9:
69:16:e4:35:6b:1b:fa:b1:ef:32:ad:2a:69:dd:dc:
8d:80:49:2c:a3:91:fd:cf:c9:e3:cf:81:9a:89:26:
7e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:D2:CD:25:C4:97:80:9F:CD:1F:3D:95:F3:9C:38:AF:3A:B4:A3:41
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/61917FBC53A111EEB90C01644AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.23.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:d5:9c:ba:78:d4:6e:98:a0:85:ed:e4:19:03:ad:6e:94:a3:
8e:61:06:ae:e8:f9:a7:4b:f5:ed:2f:70:55:8d:7c:ba:6c:9b:
8d:05:67:36:82:93:a3:5f:a7:1d:0e:88:ee:06:02:c8:39:3e:
22:f2:a6:3a:a3:74:3b:c5:6a:ac:5a:b5:19:3e:dd:c2:60:ef:
86:37:be:6f:06:2d:26:04:3e:f3:33:54:fb:55:1a:13:81:6a:
c0:5f:d4:0d:0a:da:df:4f:66:9d:97:7f:5f:00:42:d9:59:44:
56:50:4a:47:3e:50:18:cc:c7:ee:95:32:f5:98:ee:91:d5:12:
66:3b:aa:6a:af:b2:7d:98:14:42:a7:97:be:b7:b5:6a:d4:f0:
40:ee:54:f1:4f:09:65:0c:62:df:e6:9f:3c:06:4a:2c:7b:04:
1a:00:b0:02:c7:1f:0c:d5:79:f7:90:09:70:c6:38:d5:63:1c:
5c:1f:05:71:af:b4:72:d4:40:4a:50:10:7a:10:c8:e1:62:1f:
10:cb:30:07:1e:70:09:10:73:f2:cf:1c:ad:c8:1f:1c:b3:0d:
61:e9:8d:49:2f:b7:91:6a:96:2d:62:13:f9:50:24:5c:b1:d5:
8a:e8:b8:1c:6f:33:4f:0d:05:61:4e:0c:25:17:67:d7:73:87:
fc:a7:41:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:26 2024 by rpki-client on console-fra.rpki-client.org