Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/969171DE53A311EE9605F96B4AD9E6FC.roa
File: 969171DE53A311EE9605F96B4AD9E6FC.roa (raw, json)
Hash identifier: 1Ij23MNucv7C3FnvOjHiaLUF3vw52LeNtSjr+iQgClk=
Subject key identifier: 3C:D0:5C:56:D2:1E:9E:6F:70:BA:6F:59:EA:DF:B4:72:A0:A9:D7:6B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3DAF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/969171DE53A311EE9605F96B4AD9E6FC.roa
Signing time: Fri 15 Sep 2023 08:40:57 +0000
ROA not before: Fri 15 Sep 2023 08:40:53 +0000
ROA not after: Sat 08 Jun 2024 08:40:53 +0000
asID: 136970
IP address blocks: 154.197.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15791 (0x3daf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 08:40:53 2023 GMT
Not After : Jun 8 08:40:53 2024 GMT
Subject: CN=65041898-ff2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:21:4c:e6:28:5f:ae:4c:13:5a:aa:80:2a:7c:
76:29:eb:b2:bf:57:aa:2f:7b:dc:b0:4d:87:1b:40:
28:8e:a8:45:d1:a6:b7:22:27:72:c8:f6:a6:51:c9:
25:71:65:21:3e:a0:4c:ea:8d:3e:26:52:0a:b1:a3:
e6:15:93:bc:5b:2d:b4:ad:6c:9e:4c:1a:0c:75:3d:
08:90:b3:14:ee:33:b6:61:22:3e:b4:bd:bc:69:2d:
3b:e2:a1:69:ca:b8:bb:2d:83:6a:23:64:c3:27:9c:
80:e7:7d:ec:4a:0c:5d:cd:e2:6d:76:da:72:bf:b0:
11:0a:f7:4b:85:78:15:9c:e7:0d:fc:ad:69:c0:dc:
43:41:9e:ee:b7:ea:a5:98:84:59:55:37:a8:07:b8:
ec:ac:26:7b:75:6d:8e:1b:fd:93:8b:e3:44:4c:cb:
d5:e7:dc:cb:28:21:46:81:0c:ec:aa:53:8d:a8:9a:
86:65:b7:25:72:fd:54:35:48:f2:f5:b8:8c:ac:f5:
ad:09:8d:55:9a:03:86:18:49:36:95:93:98:02:45:
91:87:94:6b:a3:c7:32:a9:ee:58:b4:04:86:48:69:
0b:4d:5a:05:c5:56:49:2d:8b:1e:e7:8c:2b:f9:a7:
f5:d8:83:e9:89:37:fd:36:b7:16:ec:aa:aa:8a:5d:
98:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:D0:5C:56:D2:1E:9E:6F:70:BA:6F:59:EA:DF:B4:72:A0:A9:D7:6B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/969171DE53A311EE9605F96B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.7.0/24
Signature Algorithm: sha256WithRSAEncryption
70:47:81:2b:b7:52:bd:d8:cb:bc:c7:06:f5:4c:63:17:73:be:
0f:8e:93:fc:53:eb:c6:15:50:8c:a4:ca:e2:54:09:00:9f:03:
26:44:46:0b:15:32:85:4e:67:93:22:bc:69:98:a1:91:89:a7:
24:6f:ed:3d:79:f7:59:d5:2d:00:cf:39:c0:ef:96:51:55:26:
78:73:da:aa:8c:3c:06:25:91:58:84:36:cd:73:c3:7e:2d:fe:
2f:54:41:a6:14:21:20:d3:97:58:10:65:ba:90:e4:ed:d4:8d:
58:fe:be:53:8d:e2:cf:13:fb:12:dc:ab:18:a5:81:88:0b:ad:
d7:50:d8:82:38:1d:ce:d6:af:4c:b6:c0:81:66:1c:b0:7d:10:
a6:fc:00:b3:22:3a:37:70:95:dc:7e:f6:66:b6:99:af:70:62:
74:91:62:b3:83:e4:c0:a9:40:94:3a:e0:ce:07:89:68:7a:4c:
bf:d4:c1:ec:7f:44:8c:8c:e9:2c:11:bc:6a:38:5e:7f:0b:fb:
47:1a:4c:94:fd:be:5e:f1:e4:8e:9b:55:3d:da:70:d8:44:c5:
ac:87:6c:e3:ea:61:f5:67:3f:f8:47:15:ea:25:8f:a5:a9:e8:
7f:31:05:5e:90:ca:65:b1:8d:cf:c7:d7:8e:9e:f2:20:c0:dc:
b1:db:83:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:32 2024 by rpki-client on console-fra.rpki-client.org