Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A839DF449D4911EEBB24E931D25BE465.roa
File: A839DF449D4911EEBB24E931D25BE465.roa (raw, json)
Hash identifier: EZiX74nfOUddfN6JomUGp4lBpYQreCH0BuDjNGsUMBE=
Subject key identifier: 53:7B:2F:EF:CD:54:9B:13:FE:D9:AC:7C:31:C9:DE:53:3A:BF:24:D4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 61DF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A839DF449D4911EEBB24E931D25BE465.roa
Signing time: Mon 18 Dec 2023 02:03:37 +0000
ROA not before: Mon 18 Dec 2023 02:03:34 +0000
ROA not after: Tue 18 Jun 2024 02:03:34 +0000
asID: 31863
IP address blocks: 154.197.101.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25055 (0x61df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 18 02:03:34 2023 GMT
Not After : Jun 18 02:03:34 2024 GMT
Subject: CN=657fa879-0572
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4c:e1:8f:ac:f3:34:90:e1:5f:46:d4:35:62:
ab:8f:69:15:b3:98:40:89:d7:59:6e:5b:75:a1:d6:
cd:27:74:03:20:2a:94:96:51:f6:85:84:f5:1b:2a:
f9:01:6e:31:fe:ff:d3:6a:e3:e8:ac:52:6a:e2:ce:
06:d8:91:c3:d0:bf:b3:4b:65:c9:83:4f:0d:4a:91:
87:af:5b:72:bd:33:d2:fa:01:d0:39:d1:09:35:98:
87:03:f4:86:9f:3a:bf:a4:c9:51:53:7d:a5:b1:33:
21:72:03:fb:44:9a:86:86:1e:60:e5:40:c6:c2:f5:
6d:ff:c0:40:cb:fc:53:26:c5:c6:db:c3:15:55:76:
05:12:05:5d:ff:a1:5d:49:33:de:5e:0d:f2:22:ca:
eb:c6:5e:7f:f5:b6:a8:87:84:19:ae:f2:ad:7a:35:
37:bc:ae:28:a7:b8:bf:a8:c8:05:ea:65:81:31:6a:
99:b8:4b:94:69:c9:97:b3:7b:99:ff:f0:ee:5d:ff:
17:79:ef:24:c8:ee:e2:15:d4:de:3e:fe:02:ee:3d:
ff:6d:b9:f9:7a:da:23:26:18:66:e9:64:13:75:79:
63:a6:0a:3e:6b:35:7f:12:f7:b3:6f:6b:6e:ac:cb:
02:a0:8d:7d:c0:b2:7d:73:7c:ae:fa:89:a5:a0:51:
2d:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:7B:2F:EF:CD:54:9B:13:FE:D9:AC:7C:31:C9:DE:53:3A:BF:24:D4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A839DF449D4911EEBB24E931D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.101.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:c6:d6:fc:a4:fe:93:16:b7:02:df:11:6e:15:52:51:43:45:
2c:38:db:62:13:b6:03:95:02:24:6a:99:8d:ba:7e:50:19:7c:
78:03:f5:63:0f:50:b0:37:b4:1d:80:ed:12:83:fd:29:7b:dd:
a8:d0:d0:77:1b:5a:fd:13:d6:d2:1e:ab:16:ae:cc:a5:5f:f9:
fb:51:1d:72:5d:0a:37:0b:04:a3:6d:d4:76:dd:2e:7a:60:1b:
57:6f:ec:1b:28:4a:d5:f6:bf:f9:fb:96:c4:b3:c6:9d:7d:4f:
7b:71:cc:a4:b9:9d:22:88:4f:3a:dd:90:36:23:b7:5e:46:aa:
db:db:8c:8a:44:b5:a8:8c:e1:77:d6:a4:5d:c5:0d:0a:0f:ea:
13:ff:49:ca:75:69:e1:bb:12:57:40:b4:d3:ef:a6:f5:72:91:
ee:69:75:35:dd:ab:c6:9b:e8:96:df:ea:0a:2a:a1:6f:0e:75:
af:2d:20:c8:f1:26:54:31:d2:83:3b:84:ac:ba:63:ac:d2:c6:
46:9f:eb:76:54:64:e4:75:ce:0e:25:6d:b3:32:28:00:6a:3c:
ac:9f:f3:e8:c9:07:8c:73:77:d9:e7:e0:87:b7:ed:4a:cc:2d:
31:d7:1f:c1:6b:c5:66:9b:c3:fc:f6:82:b0:fc:a7:52:a7:d6:
49:03:f2:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:34 2024 by rpki-client on console-fra.rpki-client.org