Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9792D49282BF11EE970CEF404AD9E6FC.roa
File: 9792D49282BF11EE970CEF404AD9E6FC.roa (raw, json)
Hash identifier: z4tQ7+VOc9SXRBfcaO+s4s806pJhA5G1Lsp+ZQRuQiw=
Subject key identifier: 48:B1:A5:1A:EB:0D:55:19:F3:A8:B1:2A:2F:0D:9A:A3:5A:B0:4E:3E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5010
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9792D49282BF11EE970CEF404AD9E6FC.roa
Signing time: Tue 14 Nov 2023 07:29:49 +0000
ROA not before: Tue 14 Nov 2023 07:29:45 +0000
ROA not after: Tue 12 Nov 2024 07:29:45 +0000
asID: 397630
IP address blocks: 154.202.104.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20496 (0x5010)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 07:29:45 2023 GMT
Not After : Nov 12 07:29:45 2024 GMT
Subject: CN=655321ed-b7ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:9d:3a:5e:10:96:81:d5:c7:55:26:f4:d0:02:
f0:e9:e3:36:b9:67:02:91:a4:eb:75:7e:50:0d:d6:
c5:bb:b7:99:25:84:84:c6:c0:d9:29:b5:5c:58:a5:
1d:24:bc:eb:d6:09:82:5f:80:6f:02:13:79:4b:30:
94:84:42:2d:02:82:5f:b0:d1:90:25:63:85:6e:26:
85:22:06:01:7f:e0:32:68:82:aa:f9:7b:4e:f5:c5:
96:f1:06:0c:57:85:93:7f:c4:ea:8b:86:5e:12:d4:
e0:72:68:74:9f:82:78:c7:99:25:5e:16:e0:ff:66:
85:68:6f:3a:aa:c2:1b:0f:8b:32:81:17:19:d4:cb:
b0:92:80:fe:c5:96:d8:0c:b5:cd:36:4e:3d:e0:e2:
96:f4:6b:69:2e:48:01:b4:52:41:fd:3e:14:96:87:
41:ae:b7:d1:0e:1f:3d:69:3c:24:0c:15:f3:e0:f0:
1b:cd:24:b8:f5:55:e1:51:a3:fc:df:57:bf:29:ef:
1d:4b:b3:72:73:b3:a3:51:90:e8:e9:4c:8a:e8:ce:
dc:aa:5c:a0:92:ee:a5:aa:aa:ce:bb:3c:4d:3c:56:
b7:30:c8:f2:46:78:ae:fa:fe:c6:e9:6d:8f:79:02:
77:12:c5:66:5b:f9:4c:01:ce:55:72:05:35:a8:86:
e3:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:B1:A5:1A:EB:0D:55:19:F3:A8:B1:2A:2F:0D:9A:A3:5A:B0:4E:3E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9792D49282BF11EE970CEF404AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.104.0/24
Signature Algorithm: sha256WithRSAEncryption
35:12:22:58:55:60:90:5f:c9:bb:e1:58:14:5e:bb:2f:72:76:
84:b1:bb:76:bc:f2:8e:ca:a7:c8:9a:01:96:fc:56:53:85:43:
13:36:f4:82:a0:aa:67:cc:27:d3:8d:31:4b:3c:f6:8a:56:86:
55:9f:39:69:4e:b6:f5:44:79:80:7e:0f:64:cf:eb:8b:20:b8:
35:23:87:b7:38:c4:46:6e:e4:8d:c9:bb:d7:e0:d6:26:2e:01:
63:6d:57:80:c4:3b:dd:31:15:73:39:b5:65:2a:1a:e6:2d:bb:
75:2c:b2:dc:56:08:af:1f:32:c1:ea:72:8d:0d:d5:4c:45:c9:
4f:4a:4d:1e:f7:e4:2c:fb:1e:e1:a0:7a:fc:a2:49:5f:3e:45:
3b:73:05:0e:5f:b2:47:57:d5:3e:95:b2:1d:07:65:b0:de:1b:
b3:69:83:27:2e:a1:bf:71:7c:e8:13:97:4b:02:a9:b8:48:38:
eb:a8:9a:ef:d0:55:79:dd:ee:70:a5:72:2d:aa:a5:a3:72:b3:
39:8b:ac:a7:8f:0e:1e:22:d6:c2:8a:67:c2:bd:b3:91:d2:44:
16:23:f0:c5:07:ba:a8:c7:e6:c0:85:6d:c0:1d:cf:69:41:3b:
8c:f4:f3:2b:2b:1f:75:17:10:72:f0:40:2a:e6:64:ba:65:b3:
7c:f9:61:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:32 2024 by rpki-client on console-fra.rpki-client.org