Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7BD53B56A91F11EE8E67358A775412E6.roa
File: 7BD53B56A91F11EE8E67358A775412E6.roa (raw, json)
Hash identifier: efC1djWNMIIYBROqYwOqlBTzwX56W/kC98viEQH0hf8=
Subject key identifier: 9C:FA:82:C0:8D:EA:43:32:60:6C:4D:9F:73:B6:DB:AF:8B:CE:08:F4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 6CDE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7BD53B56A91F11EE8E67358A775412E6.roa
Signing time: Tue 02 Jan 2024 03:31:58 +0000
ROA not before: Tue 02 Jan 2024 03:31:55 +0000
ROA not after: Mon 30 Dec 2024 03:31:55 +0000
asID: 328608
IP address blocks: 154.197.68.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27870 (0x6cde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 2 03:31:55 2024 GMT
Not After : Dec 30 03:31:55 2024 GMT
Subject: CN=659383ae-a5be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:db:0b:ae:08:5c:e8:9e:8f:1e:e9:03:8d:98:
04:0c:af:a8:5c:94:19:62:12:fb:c2:d8:db:51:13:
c4:54:97:b3:22:d4:d8:eb:38:e9:37:05:72:35:d7:
db:e3:3c:9d:92:f3:c7:f5:81:87:f5:af:6d:f9:b5:
83:0c:37:e0:d5:0b:8f:b2:1d:da:5a:1b:6c:3c:4b:
f3:62:a0:70:00:00:65:d5:83:dd:5b:42:d1:2f:3d:
37:33:e3:d4:8c:ec:fb:7b:2e:fa:91:03:24:96:89:
06:a4:cb:b4:30:75:5c:56:48:34:b0:b7:d9:ef:a8:
f1:27:39:46:0a:29:5d:7a:43:c5:1d:77:f8:9f:c4:
0e:cd:d1:0c:da:e6:fb:05:ed:57:87:ef:50:d7:a9:
9b:5e:30:ba:93:da:0a:15:28:51:bc:4f:ef:e3:9f:
4d:cf:10:47:26:10:f0:11:d3:5c:8b:f2:af:70:21:
61:18:89:95:d9:84:a7:42:c3:c3:1e:bc:05:50:0b:
31:33:89:f9:ba:eb:a7:29:f4:90:53:10:15:24:09:
8e:a6:b7:e6:7d:39:d0:65:2b:b1:08:4c:0b:09:04:
10:9c:20:59:73:5a:84:4d:73:4f:71:1c:5f:02:f1:
3a:4c:41:e1:1b:a1:13:a0:73:a4:b9:f2:40:1a:c6:
ed:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:FA:82:C0:8D:EA:43:32:60:6C:4D:9F:73:B6:DB:AF:8B:CE:08:F4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7BD53B56A91F11EE8E67358A775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.68.0/23
Signature Algorithm: sha256WithRSAEncryption
cd:42:42:44:0e:97:cd:80:22:32:94:d7:f8:fc:06:03:d8:9b:
09:2f:47:0b:15:40:e3:96:9d:64:d6:e4:03:15:a3:6e:40:02:
32:c8:be:1b:75:68:33:8e:89:5e:bf:92:aa:25:09:4c:f8:fd:
bb:bc:b8:28:b0:c1:95:8a:f3:cc:17:6e:3b:bc:a4:19:93:94:
1d:e8:ed:d8:12:ff:29:91:5e:29:da:23:ee:f6:28:f0:b5:c3:
93:61:d2:08:3c:e5:6f:0b:dd:cb:1c:0e:2f:61:27:c9:d2:e9:
43:9f:e3:ee:ca:f8:c8:c5:ce:6c:1b:11:49:87:4d:fd:e1:f6:
87:7e:0d:54:4c:d9:f4:2b:63:47:39:93:68:9c:28:78:68:03:
ee:8c:4e:4c:5c:be:95:09:f3:dc:ea:00:46:8d:03:97:f3:3c:
50:4a:33:4c:0f:0d:29:84:b5:7e:39:b6:56:f9:8a:da:31:69:
5f:59:03:9c:71:a0:c5:0b:6f:40:fb:8b:a4:d0:c2:81:47:eb:
9b:79:8b:15:9d:e6:40:1a:d1:cd:d7:6e:ec:d6:72:bb:82:6e:
41:3d:1a:c7:a3:15:9b:f1:5b:a3:06:c8:da:6c:f0:26:a0:7e:
07:45:4d:cf:cd:43:21:19:fa:54:63:0c:00:14:8f:b0:e0:9f:
1e:ac:68:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:10 2024 by rpki-client on console-ams.rpki-client.org