Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9116F64C260E11EE82E920634AD9E6FC.roa
File: 9116F64C260E11EE82E920634AD9E6FC.roa (raw, json)
Hash identifier: Xn5Okr+sNi3xgnpeTRbBzdCcRD2fbf7+76g0iRYRTFM=
Subject key identifier: 9A:82:9C:89:C9:2B:C6:4A:B8:68:48:9C:D2:EE:08:42:36:71:9D:E6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 332F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9116F64C260E11EE82E920634AD9E6FC.roa
Signing time: Wed 19 Jul 2023 08:30:50 +0000
ROA not before: Wed 19 Jul 2023 08:30:46 +0000
ROA not after: Sun 21 Jul 2024 08:30:46 +0000
asID: 139056
IP address blocks: 154.214.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13103 (0x332f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 19 08:30:46 2023 GMT
Not After : Jul 21 08:30:46 2024 GMT
Subject: CN=64b79f3a-3bc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1d:9d:1f:ad:97:3f:08:ce:42:73:bb:c0:98:
da:4f:97:e2:ab:11:a3:28:08:26:5f:26:c7:14:7e:
4d:3d:c8:30:ae:3f:12:57:f7:6b:06:6e:dc:18:6a:
43:34:42:88:eb:11:61:01:cb:09:b5:15:85:ee:be:
33:ed:fc:d3:6b:d7:6e:77:db:f3:6f:de:c6:2a:f4:
15:a6:0c:17:c6:01:c9:6c:f4:42:ae:bd:6c:72:7c:
3f:07:13:14:0a:8f:72:02:34:31:22:eb:63:81:98:
4a:05:89:8c:a2:d2:f1:5f:fd:c0:ba:c6:bc:cd:ad:
da:79:62:73:1a:42:14:ea:d1:48:fe:6d:9a:d6:bb:
b4:15:05:9e:ec:f4:a0:f0:2a:7d:77:e2:44:30:63:
0f:db:3c:f1:e8:30:f3:26:fe:75:d5:c2:d6:7a:54:
2b:91:27:7d:d7:8e:5c:31:cd:b0:8f:49:43:f5:07:
df:b6:51:cb:01:0c:d7:af:e7:f2:93:ac:28:87:58:
cb:1c:12:b9:8e:99:f6:36:58:91:67:b9:b9:68:bc:
ec:71:8b:51:2a:c7:66:19:a5:54:ce:33:1b:1b:b7:
d3:d4:f9:1e:b3:09:37:d2:f3:47:24:e7:3a:56:a6:
95:25:aa:ee:b5:08:75:de:30:90:f5:2d:47:a4:54:
f8:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:82:9C:89:C9:2B:C6:4A:B8:68:48:9C:D2:EE:08:42:36:71:9D:E6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9116F64C260E11EE82E920634AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.2.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:cd:6b:3f:39:db:3f:ac:b6:eb:bc:56:21:18:f4:77:87:81:
2b:56:b1:22:d8:f0:db:9e:cf:f2:0c:c4:c8:25:0b:62:37:31:
13:aa:f8:5b:ae:18:5e:39:8c:ab:b0:7e:99:84:22:c3:9d:fe:
b5:ca:7d:e0:db:7c:51:b7:36:f5:9c:97:72:fc:7d:c4:3a:70:
fd:f7:21:57:bc:76:12:bb:4a:6c:07:db:67:fe:eb:43:f7:d8:
6c:32:34:86:78:61:71:e4:7e:86:7c:f7:9a:76:b6:12:0e:5a:
69:72:ec:06:fc:7a:dc:78:e3:55:20:f5:f5:fc:1a:af:9b:3e:
34:19:ac:80:71:e8:4a:54:37:82:0c:45:66:06:99:0f:3f:9c:
55:7d:1b:33:f1:11:30:6b:00:18:10:32:bf:3d:79:0f:65:b0:
3c:49:c9:0a:1b:27:c3:74:42:92:fd:8c:cb:0f:5f:7f:e1:17:
9b:4d:6d:a6:2a:0b:c8:56:cd:95:ba:fa:1a:61:92:32:f5:a0:
56:7c:69:f1:a5:7d:8e:9a:f4:32:cc:c6:98:0b:f5:77:d4:9b:
d4:6a:14:b5:48:3d:6a:65:d6:9b:f0:fd:c0:c2:97:b4:41:17:
3a:d9:2d:4a:09:17:44:cd:96:40:79:19:a5:c5:a3:47:ec:e6:
61:80:7f:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:31 2024 by rpki-client on console-fra.rpki-client.org