Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9E1DE2E0278211EE97326D1F4AD9E6FC.roa
File: 9E1DE2E0278211EE97326D1F4AD9E6FC.roa (raw, json)
Hash identifier: fm5BCifNfiJqkbI5xxfiC9/SnIbpRERZsTS8BoxvRBw=
Subject key identifier: 0F:39:2C:1D:B7:08:B0:39:2D:7F:14:45:3F:DE:47:11:79:1C:E5:45
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 33A3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9E1DE2E0278211EE97326D1F4AD9E6FC.roa
Signing time: Fri 21 Jul 2023 04:54:05 +0000
ROA not before: Fri 21 Jul 2023 04:54:01 +0000
ROA not after: Thu 13 Jun 2024 04:54:01 +0000
asID: 5065
IP address blocks: 154.212.20.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13219 (0x33a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 21 04:54:01 2023 GMT
Not After : Jun 13 04:54:01 2024 GMT
Subject: CN=64ba0f6d-face
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:64:0b:30:d2:a3:8f:28:5c:ea:38:aa:f8:0c:
87:83:7d:de:10:c3:24:6f:e8:ab:53:54:ca:05:50:
6e:6e:f8:3a:f8:84:eb:19:29:ba:3f:49:c8:3b:7d:
45:01:ff:61:70:ba:3e:2e:40:4e:7c:7d:c6:ec:4a:
ef:49:4a:72:b8:64:b6:71:18:bd:60:ee:4a:02:5e:
db:e3:0b:c1:33:75:25:f3:d1:28:5f:6e:05:a4:9d:
7b:dd:09:28:a8:eb:01:5f:31:59:cf:9e:17:06:0b:
b9:fe:f9:62:60:65:46:00:a1:70:3e:24:35:c9:1e:
43:96:50:c8:9b:97:4b:9b:73:ba:1d:54:b5:18:d7:
4e:a7:06:47:97:76:b3:b1:14:cf:b8:9b:9e:28:0c:
8b:6c:9b:16:82:0c:f7:e9:d9:7c:fe:e3:5b:f9:e5:
f0:66:48:a0:ab:1d:72:67:83:36:08:c3:43:2e:23:
70:67:78:c7:6c:23:42:80:c9:22:9a:17:23:6c:05:
aa:57:6d:56:17:93:b1:a5:a0:d5:d8:a0:09:5a:b8:
66:10:9b:d9:b1:ef:44:b2:bd:5b:04:77:aa:92:c8:
be:96:73:6b:16:1c:ae:a8:da:07:ef:86:37:86:84:
27:99:9f:34:08:cb:32:27:56:54:bd:7b:c2:e3:f9:
fc:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:39:2C:1D:B7:08:B0:39:2D:7F:14:45:3F:DE:47:11:79:1C:E5:45
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9E1DE2E0278211EE97326D1F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.20.0/24
Signature Algorithm: sha256WithRSAEncryption
05:e3:0a:b6:10:90:8d:be:0f:ce:49:bd:31:dd:67:3a:62:1d:
c9:46:a1:69:58:cd:b0:63:53:1a:5c:d3:e7:c8:49:5d:79:14:
80:32:09:ce:e4:d4:3c:dd:d6:c2:8c:27:27:3f:38:a9:3f:b7:
ae:a7:cf:ea:49:40:65:ba:2b:9c:9c:91:01:2f:09:07:3f:6e:
7c:66:a4:0b:bb:d7:50:c2:bd:6f:19:ba:d3:91:06:84:3b:3b:
70:53:50:4d:7a:1b:9f:86:9b:6f:a5:ee:19:f7:15:41:6b:b9:
07:58:0b:a5:d7:ba:11:c7:77:82:f9:75:3e:bd:0c:31:01:f8:
e9:1c:79:12:16:2a:35:6e:57:49:69:2d:3c:5f:a4:69:fb:de:
33:a5:32:36:00:76:dd:bc:9d:3c:cf:30:ad:0c:52:c3:9d:53:
19:eb:1e:66:91:87:f6:39:b5:4c:17:58:d0:c5:f7:0e:21:2a:
0c:fa:ad:e0:22:20:26:a8:70:8b:e9:58:0c:00:30:cc:96:8d:
7f:48:57:51:42:c3:3d:25:07:1d:eb:fa:f4:37:38:b1:6b:37:
fd:ad:e0:e8:92:e4:23:ad:77:16:12:0e:7b:7b:00:c0:5f:f0:
8c:39:a5:7a:79:4a:28:0d:dc:14:69:e7:4f:90:6d:a5:f4:60:
3b:41:37:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:33 2024 by rpki-client on console-fra.rpki-client.org