Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7F8E3B06D5E11EEBFD8BD684AD9E6FC.roa
File: A7F8E3B06D5E11EEBFD8BD684AD9E6FC.roa (raw, json)
Hash identifier: Ek9zpw0eNGKXuDP6qVkLMGivQ/ZxyWkHurzuUchbm9A=
Subject key identifier: 19:87:20:3F:D2:B5:AC:3B:CC:DF:6E:1C:BA:55:FA:BF:75:6B:5C:6A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4675
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7F8E3B06D5E11EEBFD8BD684AD9E6FC.roa
Signing time: Wed 18 Oct 2023 02:33:01 +0000
ROA not before: Wed 18 Oct 2023 02:32:58 +0000
ROA not after: Wed 18 Sep 2024 02:32:58 +0000
asID: 142012
IP address blocks: 154.84.154.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18037 (0x4675)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 18 02:32:58 2023 GMT
Not After : Sep 18 02:32:58 2024 GMT
Subject: CN=652f43dd-2913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ca:d2:73:cb:08:ac:99:52:af:ab:b4:3f:db:
df:9d:3e:d7:ed:f3:63:5b:00:e7:24:fb:a1:f9:36:
89:86:fa:e0:45:31:48:04:67:1f:d6:9e:9f:ee:b3:
fb:5c:d9:f0:38:78:f8:82:cb:4c:a3:0f:26:85:7e:
6e:3e:eb:1f:19:18:ef:b9:48:60:72:ec:be:c4:05:
6c:4a:9f:e5:ba:e4:3a:13:15:bc:0c:83:f9:31:fe:
27:15:58:ca:cc:d8:68:92:a4:70:fc:dd:a0:6a:ce:
d4:76:ce:5f:5a:cc:29:93:de:67:85:82:41:83:5b:
20:ac:bc:cf:97:64:b1:60:2a:b2:ff:51:62:55:4a:
a5:93:75:cb:db:3e:af:38:73:71:f1:0a:d7:55:dc:
7e:9b:b1:2d:28:15:b4:c1:2f:be:34:07:25:7c:7b:
6c:56:f9:d0:07:b8:68:b9:77:26:e0:7f:1e:13:f1:
f8:4a:60:cd:ea:04:23:e5:d6:1b:b6:34:56:1c:b2:
ca:7c:35:a5:56:a1:0e:a0:a6:56:c6:df:f4:3e:69:
8f:ca:fa:39:98:06:eb:77:4a:1e:15:51:0a:ba:f1:
68:0a:ea:ff:66:73:5b:f6:b7:98:c3:ec:b2:f5:91:
40:aa:60:8d:10:03:b4:9b:44:76:40:1a:64:0f:99:
21:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:87:20:3F:D2:B5:AC:3B:CC:DF:6E:1C:BA:55:FA:BF:75:6B:5C:6A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7F8E3B06D5E11EEBFD8BD684AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.154.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:99:4f:3e:d7:e7:67:1f:78:df:93:00:12:ba:18:8b:cd:1a:
22:7e:37:94:34:3b:f6:7d:4e:15:62:d6:c6:a1:02:4d:c8:96:
84:9e:46:1a:d5:58:bb:9f:c0:ed:c9:75:55:33:45:1b:22:63:
be:52:d9:05:03:25:9a:7a:ea:78:95:c9:6e:4e:28:f2:e9:49:
07:ca:6a:d9:ac:59:04:a8:55:7a:ef:11:bf:86:26:d4:93:eb:
c7:d5:66:dc:f9:fb:3a:3d:9b:90:f5:09:e3:e0:d7:89:d8:80:
ac:46:2c:55:f3:8d:70:01:c5:23:35:e7:a6:66:ba:6d:18:0d:
e1:7e:65:c8:8f:9e:fa:5b:18:b5:54:6f:4f:8f:c6:16:38:0d:
fc:4d:fc:b2:02:ff:38:d1:c5:90:8d:4e:2e:81:8f:0d:08:d6:
47:6b:18:74:15:ff:96:df:f8:5c:45:a4:b6:6d:b5:70:a5:cc:
28:5a:0d:2c:9f:cc:f0:14:18:38:8d:50:f9:d2:72:a4:4b:d9:
91:b5:07:2c:d2:38:45:8d:f6:8b:8e:19:4c:4d:13:97:ca:26:
df:c2:5c:4e:62:9e:d9:bd:bf:53:75:2b:83:2f:03:c7:ec:fb:
57:6c:90:38:13:22:a6:97:02:c7:b1:64:5d:05:03:12:6c:b7:
6d:3d:b6:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:34 2024 by rpki-client on console-fra.rpki-client.org