Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A957C3D05E1711EE947888474AD9E6FC.roa
File: A957C3D05E1711EE947888474AD9E6FC.roa (raw, json)
Hash identifier: zBbGWMzuhLyYeVnT1bkE45d9IociK4OO2rNB9TRSPD4=
Subject key identifier: E4:4B:EA:F4:12:4D:F9:BC:47:3B:6C:04:46:73:12:64:D3:31:92:FB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4375
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A957C3D05E1711EE947888474AD9E6FC.roa
Signing time: Thu 28 Sep 2023 15:57:01 +0000
ROA not before: Thu 28 Sep 2023 15:56:58 +0000
ROA not after: Wed 21 Aug 2024 15:56:58 +0000
asID: 211392
IP address blocks: 154.219.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17269 (0x4375)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 28 15:56:58 2023 GMT
Not After : Aug 21 15:56:58 2024 GMT
Subject: CN=6515a24d-508f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:49:e5:16:e0:03:22:48:52:2b:e1:fa:19:d8:
5f:5c:82:59:5c:1f:88:06:b0:66:0b:33:e6:ce:b5:
37:dc:fe:9c:8f:dc:c0:8b:13:42:7c:b5:e7:7a:6c:
99:99:c5:74:27:dc:5e:fd:bc:10:9f:f6:d0:6c:52:
96:87:23:fd:2e:ad:f0:0b:a8:55:7d:84:4e:ec:a0:
ce:18:d4:8e:d4:e5:c1:04:9b:7e:df:2e:17:5a:1d:
00:bf:63:b6:b0:08:c7:58:f8:94:c6:30:ae:1d:83:
02:68:4a:f4:63:0a:91:f8:1e:a3:37:42:1e:fa:b5:
30:e2:61:ce:3c:d4:21:44:7c:3f:9e:63:f6:e4:30:
61:0a:6d:fe:48:e2:2f:2b:1f:65:d1:f4:de:d4:9d:
87:ba:8e:2d:ea:a1:fd:fd:4b:bc:39:70:99:91:0f:
ca:e0:bd:30:0a:68:9d:b1:6c:8d:6a:ad:69:e4:75:
ac:6c:93:65:b8:9c:a3:7c:a8:a3:f9:a9:6b:6e:ad:
6a:fd:c4:06:03:ae:7b:3b:45:50:db:63:95:05:bd:
a5:a8:ee:93:ab:86:46:3c:ff:2d:d5:9f:e8:52:ad:
4f:a8:cf:17:f3:d5:45:64:79:4d:65:7d:d8:77:ad:
fe:be:de:af:66:cf:2e:4c:64:af:be:a0:b9:a9:f9:
71:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:4B:EA:F4:12:4D:F9:BC:47:3B:6C:04:46:73:12:64:D3:31:92:FB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A957C3D05E1711EE947888474AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.3.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:07:1c:6d:56:3a:df:6e:7f:81:ed:67:38:6f:be:66:c1:e3:
f7:4d:f5:2c:c9:18:ca:8d:46:86:b5:a6:ea:a7:8e:e1:af:7a:
f9:a0:38:5c:ba:b3:c7:f4:58:33:5c:9b:84:61:19:41:89:36:
6d:15:36:d8:1f:2d:05:d0:36:7d:0a:4f:19:af:9c:d9:1d:ee:
6d:89:65:7f:7e:a2:9c:22:ca:25:ff:5d:ea:d1:e9:fd:da:32:
53:f2:20:94:0e:72:f4:a9:89:f6:1b:23:d0:42:a4:8b:5d:3e:
dd:0e:1f:22:a7:b6:51:43:4e:cd:b7:d5:1e:c3:2e:7c:d4:74:
f8:26:1e:02:3d:40:ea:66:a5:fa:a6:8e:97:2c:e7:e5:62:6e:
e7:8a:f9:24:98:c1:c6:1f:d9:86:4a:42:25:fe:6e:24:c8:cc:
64:91:56:f8:33:4f:ef:e0:18:bc:9e:b4:92:7c:18:4e:7a:92:
2f:a1:ef:89:81:34:7f:d6:65:03:cb:8a:6b:2a:31:2e:1a:98:
b5:ba:29:51:f9:0f:72:b3:f7:8e:8e:ce:98:d3:1d:c7:00:b5:
88:44:84:40:bb:44:92:8c:1a:c8:b5:8a:d9:f8:bb:f1:2b:8f:
9c:2a:bc:70:4a:22:06:29:c4:d8:be:c1:65:24:01:81:34:93:
43:96:df:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:17 2024 by rpki-client on console-ams.rpki-client.org