Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/68E37BF4506711EE9DE9481E4AD9E6FC.roa
File: 68E37BF4506711EE9DE9481E4AD9E6FC.roa (raw, json)
Hash identifier: uHTkEa8I3zch1xPRsPB5u6vw9SAQWAkeJdAUVk7b2M4=
Subject key identifier: 46:12:5A:0A:9E:76:28:C2:B4:91:1A:7C:DD:09:AE:86:75:75:85:5D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3CD4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/68E37BF4506711EE9DE9481E4AD9E6FC.roa
Signing time: Mon 11 Sep 2023 05:52:37 +0000
ROA not before: Mon 11 Sep 2023 05:52:33 +0000
ROA not after: Mon 09 Sep 2024 05:52:33 +0000
asID: 24203
IP address blocks: 154.84.152.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15572 (0x3cd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 11 05:52:33 2023 GMT
Not After : Sep 9 05:52:33 2024 GMT
Subject: CN=64feab25-b587
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4c:95:df:64:e3:14:a2:af:ed:ac:a1:1a:29:
2b:94:09:f1:9e:9d:c3:d0:d9:3f:fc:9e:0b:60:29:
a2:2c:21:92:55:32:e7:c2:44:10:1c:31:d7:7e:44:
dd:2a:62:bf:bc:08:83:51:15:70:74:4b:d3:5f:66:
b1:c8:a7:1a:3f:4c:dc:92:df:28:13:bd:10:d3:0e:
99:52:c5:34:20:72:e2:c5:02:6a:d8:5d:1b:15:10:
69:63:d3:c4:6f:ba:83:6e:78:b8:23:d1:39:57:11:
4d:0c:7f:ac:41:ee:8c:8a:84:42:0e:21:7d:03:06:
9a:f3:6c:0d:d2:4b:77:96:61:67:de:27:a1:dd:08:
79:dd:fe:49:de:ae:43:1f:18:62:e3:71:8c:01:6f:
e1:e3:73:e8:97:74:00:54:87:2a:7e:bd:2d:1f:b6:
18:63:11:4a:75:3a:11:d0:be:b4:51:f3:bd:2a:74:
58:9d:bc:cc:8f:70:bc:4f:c2:4d:57:be:7b:0f:7e:
11:21:55:44:9a:09:60:80:96:3c:fd:17:02:97:80:
5b:ef:2c:23:6d:a0:9d:61:64:1c:ef:24:fb:43:1d:
37:11:84:01:fa:1d:f4:8f:61:04:1e:55:35:3c:c0:
3e:38:26:f9:9a:b3:e7:91:4f:95:bb:c5:f0:1c:b7:
52:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:12:5A:0A:9E:76:28:C2:B4:91:1A:7C:DD:09:AE:86:75:75:85:5D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/68E37BF4506711EE9DE9481E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.152.0/24
Signature Algorithm: sha256WithRSAEncryption
64:a3:c6:e9:a6:74:15:81:16:a3:b5:ee:fa:43:f7:75:92:12:
d6:48:92:fb:1f:61:80:70:cb:88:18:3f:01:01:c0:f0:66:32:
b6:e3:b1:60:c5:6c:0d:01:20:3b:c7:ca:d0:40:0e:b4:ed:13:
8a:df:f0:44:6b:f1:19:8a:5b:07:7d:f8:ed:16:2c:4b:59:e0:
17:bc:fb:e5:75:d7:0d:e4:42:68:d1:58:65:70:b2:75:83:be:
8b:78:89:86:b4:f3:ca:d9:2f:cc:75:f2:6b:3c:c0:de:0d:ae:
d0:3e:6e:99:f7:c9:a7:52:9f:ee:42:ec:98:64:d4:59:c4:2b:
db:7d:55:2b:4f:af:3d:ef:77:07:ab:95:7d:e6:67:05:40:2f:
d7:50:9b:a0:aa:57:42:3e:7e:52:99:ac:c1:31:8f:f8:6b:b7:
fa:ce:6b:8a:01:d8:a2:12:08:73:a8:b5:98:72:a5:57:2e:72:
bd:ff:b0:a9:dd:63:52:94:19:f8:7b:75:e7:30:0f:f6:1c:04:
c6:41:2a:35:3f:d9:b0:6c:08:9f:be:a7:4a:f2:6f:f4:ab:9c:
60:7a:cd:1a:a4:5e:9b:d5:b7:f5:04:5c:eb:02:01:f8:f6:5d:
f9:b9:2d:93:5a:0b:cd:8c:d0:47:7f:aa:b8:4b:94:89:66:6a:
45:d9:34:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:11 2024 by rpki-client on console-ams.rpki-client.org