Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/834B03747FD611EE9C0E4D6C4AD9E6FC.roa
File: 834B03747FD611EE9C0E4D6C4AD9E6FC.roa (raw, json)
Hash identifier: DTQi8vuCjMGWrGlSwbiJYPHnPYLELXqyb5fLx5k1BLs=
Subject key identifier: 68:C0:5A:AC:C0:F9:02:48:4F:6F:38:F7:00:F4:BB:0B:D0:C2:C6:36
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4E58
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/834B03747FD611EE9C0E4D6C4AD9E6FC.roa
Signing time: Fri 10 Nov 2023 14:36:20 +0000
ROA not before: Fri 10 Nov 2023 14:36:16 +0000
ROA not after: Tue 12 Nov 2024 14:36:16 +0000
asID: 397630
IP address blocks: 154.84.136.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20056 (0x4e58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 10 14:36:16 2023 GMT
Not After : Nov 12 14:36:16 2024 GMT
Subject: CN=654e3fe4-bbc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:17:9e:54:88:cf:b8:77:39:7f:48:26:f0:ec:
b7:cc:d3:58:fc:36:06:2e:50:66:b7:cf:eb:f5:a6:
94:fa:d5:8e:aa:22:87:8a:61:e8:e7:df:61:54:f3:
5a:e3:ad:49:34:86:be:6f:24:d4:ee:38:02:1b:12:
5b:4e:47:fa:09:71:b1:cd:9d:cc:0d:b5:91:18:4d:
f2:8b:81:f6:67:e6:f8:13:75:c3:16:f1:19:ea:3b:
d8:f0:12:f0:25:d1:cf:fa:63:61:b8:95:4e:ac:24:
76:7b:2d:60:95:c4:ce:e9:00:00:a9:e8:62:9b:a1:
a0:c7:40:7b:92:c7:5f:dc:3d:6f:85:3e:f5:a5:ad:
64:e9:b2:29:4d:83:70:ca:2b:11:25:21:43:c4:3d:
0d:8c:83:94:a3:26:d2:8c:e5:1f:0a:b3:c3:a3:f1:
fc:2b:d3:31:bd:ab:f3:bb:50:b1:83:eb:63:5c:28:
98:ea:6d:ba:bb:2f:5a:47:18:cc:80:c0:82:6e:1c:
76:48:c3:f8:3b:fa:99:a6:0a:64:a5:7f:b9:ce:c7:
ed:bb:ca:07:58:3c:73:2a:e3:3a:38:58:d3:9c:b3:
5a:63:f9:28:68:5e:e0:6b:ef:00:44:3f:15:10:d7:
4b:3a:d6:36:96:d1:d8:70:d8:f4:e0:15:0f:3c:48:
de:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:C0:5A:AC:C0:F9:02:48:4F:6F:38:F7:00:F4:BB:0B:D0:C2:C6:36
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/834B03747FD611EE9C0E4D6C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.136.0/24
Signature Algorithm: sha256WithRSAEncryption
44:99:bc:70:e5:52:f3:e7:f0:e6:76:5e:ab:69:3d:54:f1:7f:
33:32:fd:75:66:ae:be:ef:e2:81:89:df:7c:5b:c8:67:c5:b8:
27:1d:04:e4:0f:72:fa:5c:39:d1:15:04:52:6e:7d:57:93:1d:
20:98:5a:c8:78:15:97:02:17:fa:b3:9b:0a:ac:06:aa:9b:0f:
05:c7:93:56:ef:ba:bc:09:31:0e:31:45:e0:f2:77:0f:75:1c:
a1:5f:e9:6f:7a:9c:28:ac:62:0d:78:2d:15:dd:fb:06:7a:fd:
1e:1a:45:ad:33:db:47:ef:27:7c:8b:4d:32:9c:59:0f:c3:8c:
9b:c9:d0:6d:e8:ac:8f:5a:81:06:6d:d7:8d:6e:0d:29:a5:55:
fd:ff:da:04:f5:53:7f:c4:2f:07:d9:18:47:39:1d:ae:19:73:
87:fe:d8:56:c9:a6:88:d9:b9:c6:aa:ed:0a:da:49:7b:7d:a0:
8e:88:12:cb:87:e0:52:39:42:65:a2:42:48:e0:1c:e1:da:5d:
5f:ef:da:9f:8a:07:41:70:d6:5a:93:e2:5a:d1:a7:d5:1c:de:
f2:08:f7:ba:c5:61:65:81:76:4b:93:2e:7c:a0:a6:e2:e9:92:
97:72:dc:85:57:8b:2e:3f:85:43:24:09:08:4e:47:76:42:d0:
87:43:b3:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:30 2024 by rpki-client on console-fra.rpki-client.org