Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B3FDDCE10DC11EE9B7EE1294AD9E6FC.roa
File: 9B3FDDCE10DC11EE9B7EE1294AD9E6FC.roa (raw, json)
Hash identifier: oteMsY4tAOYa95zH0Ocl8FHlJC1IqNkM3wiXEKvhrJ0=
Subject key identifier: 6C:20:51:1F:ED:95:1D:51:2E:3A:6A:7D:EC:BD:8E:8F:CB:64:B9:7D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2D66
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B3FDDCE10DC11EE9B7EE1294AD9E6FC.roa
Signing time: Thu 22 Jun 2023 09:10:18 +0000
ROA not before: Thu 22 Jun 2023 09:10:14 +0000
ROA not after: Fri 05 Jul 2024 09:10:14 +0000
asID: 210334
IP address blocks: 154.89.57.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11622 (0x2d66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 22 09:10:14 2023 GMT
Not After : Jul 5 09:10:14 2024 GMT
Subject: CN=64940ffa-59c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:34:86:37:0a:1c:b5:e5:ba:c9:35:e6:73:da:
1d:62:55:cd:01:5d:9c:87:dc:b3:aa:38:11:5e:86:
5a:f3:00:bb:9f:1c:94:16:40:14:30:c4:26:2d:e2:
1c:37:ed:ce:fc:c1:3e:ec:a8:5b:85:c0:40:80:0c:
06:eb:05:81:fb:ec:f2:02:94:50:ec:9b:8d:77:7f:
5d:c0:0d:a8:45:c6:8d:b1:19:72:f2:6b:c2:cb:28:
05:15:e2:30:27:44:05:f6:de:83:e0:8b:67:ac:bd:
35:41:03:c3:fd:0d:31:e5:e4:a6:ec:14:b9:8d:82:
0f:d9:aa:43:75:4f:b8:cb:df:e1:77:da:31:b3:f6:
8e:1e:60:eb:57:d3:61:bd:d8:87:06:93:d9:57:a2:
36:c9:e7:e6:4d:a6:22:27:67:10:62:35:74:dd:cc:
39:8b:ae:86:47:94:eb:c0:ab:b6:68:59:bd:01:55:
13:04:f9:3a:a0:ae:b3:9b:2b:de:ec:fe:9a:de:f5:
f6:f5:66:72:96:cd:61:a2:7a:00:f2:94:10:80:2e:
68:df:d0:65:3d:b0:87:4c:15:09:18:a8:b2:63:12:
f7:7e:8d:88:37:d7:fa:3e:e9:24:80:9f:1a:80:67:
2f:b7:ae:16:45:10:96:b3:57:88:1b:2d:4c:20:9b:
a5:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:20:51:1F:ED:95:1D:51:2E:3A:6A:7D:EC:BD:8E:8F:CB:64:B9:7D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B3FDDCE10DC11EE9B7EE1294AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.57.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:35:d7:d7:62:00:c4:3c:69:4a:02:a1:0b:2a:c0:2c:f7:37:
8e:79:8b:cc:c8:76:54:18:59:f6:7b:12:05:f6:a1:c2:40:6c:
6c:05:dc:6b:76:21:d0:ec:ce:df:f0:d3:a3:c0:bd:04:94:6a:
af:a5:16:09:f1:80:cc:9a:34:24:41:31:00:05:81:74:16:9a:
9a:6b:20:03:92:63:82:c9:53:dc:b2:4d:f6:67:64:55:26:cd:
cd:f0:fc:b9:38:5b:21:52:cd:30:98:2c:84:e1:06:4c:bc:ca:
83:1d:18:9a:8c:0f:d9:51:c6:d0:51:7e:68:88:c2:3c:90:2a:
87:b2:ce:9b:65:41:4c:85:6c:ed:3a:2c:f2:29:04:cf:db:94:
aa:64:ed:92:b3:1b:06:20:6b:d9:52:51:ac:b2:95:2c:81:84:
df:65:57:17:35:b1:2d:c4:f6:24:72:a9:09:f7:c4:38:a2:ae:
a5:c2:80:ca:c6:87:f7:59:81:e0:32:25:c9:25:38:ca:03:8d:
d1:32:24:fe:55:61:50:39:dc:c3:f9:9e:d3:ae:d8:5f:62:90:
e6:ec:a4:a0:2c:31:d9:0c:a0:96:81:83:1c:f1:ec:ee:cb:3b:
e3:29:d4:ce:45:e8:12:cd:a3:80:61:93:4d:ea:0d:60:a4:35:
f2:d8:c4:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:16 2024 by rpki-client on console-ams.rpki-client.org