Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A4DC7FCC7EB911EE90AEB55C4AD9E6FC.roa
File: A4DC7FCC7EB911EE90AEB55C4AD9E6FC.roa (raw, json)
Hash identifier: l0dkLK3EmumvAnilHZxS55UugWGIMvLRASZapWUgNJc=
Subject key identifier: 43:0F:3A:7B:37:30:15:A1:34:87:06:2A:31:64:1B:B9:87:B3:28:C4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4DC1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A4DC7FCC7EB911EE90AEB55C4AD9E6FC.roa
Signing time: Thu 09 Nov 2023 04:37:10 +0000
ROA not before: Thu 09 Nov 2023 04:37:06 +0000
ROA not after: Thu 08 Aug 2024 04:37:06 +0000
asID: 133861
IP address blocks: 154.204.32.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19905 (0x4dc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 9 04:37:06 2023 GMT
Not After : Aug 8 04:37:06 2024 GMT
Subject: CN=654c61f5-9441
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:5a:ce:70:6b:4e:f0:b8:64:27:15:3a:05:25:
22:ed:58:c9:c8:7a:82:bf:c2:b6:30:8e:f3:62:80:
52:28:48:63:a4:cc:54:3b:b8:40:61:2f:67:db:01:
18:ac:9d:b8:86:bb:df:ad:1d:6e:94:cd:c6:72:40:
b1:f6:b7:1c:f7:81:f6:fa:d1:e9:dd:e2:70:c1:0d:
17:14:09:aa:fe:0d:66:8a:8c:2b:b6:95:f3:3a:e4:
78:15:5b:c0:6a:ef:d1:e4:ff:80:85:3e:10:ff:52:
a4:72:ac:45:76:b0:d6:95:cd:d5:1c:ea:79:3d:e9:
a3:99:de:72:18:8f:31:6c:b0:22:cf:3e:d4:6e:47:
db:6b:31:9a:f9:a9:d6:fc:f8:67:ed:69:05:3c:c4:
3f:94:f9:7f:55:bd:5a:1a:37:52:d9:e8:08:d0:93:
4d:fa:7b:74:7b:f3:f2:db:f5:c6:82:0e:36:57:83:
c2:95:f4:8f:af:73:8d:a6:0d:ca:22:63:04:c3:d5:
39:be:b1:10:18:29:62:d0:32:d6:a4:4e:2d:8f:32:
fc:96:7c:4d:0f:da:29:f3:32:6d:08:5a:b1:23:ab:
b1:e5:73:e6:67:8a:2a:c9:5f:ae:31:33:1e:a9:6d:
95:54:4f:ee:1a:3c:07:f4:fa:06:ad:8f:3e:f5:ba:
8c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:0F:3A:7B:37:30:15:A1:34:87:06:2A:31:64:1B:B9:87:B3:28:C4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A4DC7FCC7EB911EE90AEB55C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.32.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:81:0c:b6:40:26:78:50:98:93:5a:d9:38:60:2d:02:d8:0b:
99:2c:73:b5:cc:a8:05:ac:c1:ca:0b:5b:0c:d1:5a:9b:7b:43:
2a:ca:d6:95:3e:e4:6c:5d:44:63:d9:c2:c6:e4:35:27:10:44:
9a:d8:30:d3:db:88:6b:d3:24:05:e5:f4:6e:0b:a8:11:8f:7e:
85:13:24:c8:13:58:1b:c5:5e:77:b2:02:5a:33:d3:f9:ae:3d:
3e:81:c6:e6:b6:4b:96:1d:7c:eb:21:6c:bc:df:f3:4d:80:19:
25:32:69:9f:05:5e:c0:cb:9d:e1:81:84:37:eb:45:5a:44:a7:
dc:3e:06:37:79:c7:63:10:93:d0:35:e0:49:3c:12:a1:61:64:
19:9c:0d:bd:c5:aa:9e:fb:74:7f:d1:9f:7a:5d:51:d5:69:71:
a7:a9:44:9a:fc:87:0f:8b:5f:10:77:91:b9:1a:2d:1b:cf:d6:
38:d2:a7:be:b3:0b:d0:ab:ca:ad:7b:37:99:27:ed:2f:f7:1a:
20:cd:5f:ff:76:dc:de:08:07:9f:68:dc:eb:f7:d1:5c:de:e3:
64:33:1e:5d:33:6b:72:73:62:69:08:5c:d4:1a:e9:b5:a3:2e:
19:66:48:cc:3f:03:49:fe:7a:24:6f:0e:6a:27:c2:e8:6b:c6:
2e:7e:0b:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:34 2024 by rpki-client on console-fra.rpki-client.org