Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A98311786CBF11EE8B77DC6C4AD9E6FC.roa
File: A98311786CBF11EE8B77DC6C4AD9E6FC.roa (raw, json)
Hash identifier: z/1fV2+U8Zd5705BD0uR+mJaxkM9Ip5B5O5/O46SxSo=
Subject key identifier: 54:90:A0:24:FD:C5:A6:43:EF:CD:EA:E5:DF:F6:C3:D2:EC:D9:F1:A2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4642
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A98311786CBF11EE8B77DC6C4AD9E6FC.roa
Signing time: Tue 17 Oct 2023 07:34:53 +0000
ROA not before: Tue 17 Oct 2023 07:34:50 +0000
ROA not after: Thu 30 Oct 2025 07:34:50 +0000
asID: 55020
IP address blocks: 154.211.6.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17986 (0x4642)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 17 07:34:50 2023 GMT
Not After : Oct 30 07:34:50 2025 GMT
Subject: CN=652e391d-c432
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:83:3b:e1:63:37:cb:53:fe:37:5a:a9:e7:3e:
f7:a2:31:be:9c:25:c2:18:37:60:4f:3a:0a:6a:a4:
12:92:fc:55:0b:ca:4b:a3:ea:c6:af:5d:70:21:65:
86:f3:8a:b2:2f:fc:4e:d0:86:d3:27:b5:f6:e9:c5:
d4:0c:8b:f8:2e:c6:b4:1a:ce:a3:19:55:fe:fb:9e:
d7:f5:e5:df:2a:00:c1:dd:1a:bb:d7:be:02:78:85:
c4:37:15:3a:73:0c:a0:d1:53:be:87:99:b7:f9:b2:
7c:cf:88:0a:26:38:8c:ba:a4:a5:64:60:d9:7b:db:
a6:cb:1b:c1:2d:65:fd:2e:a6:f6:cb:1f:df:71:d2:
f3:3e:c4:60:69:12:aa:f9:ae:56:f9:91:e4:cc:c5:
aa:c1:6e:79:a3:4d:75:e9:12:51:97:a0:b4:31:e1:
75:56:80:fd:7f:77:b5:f5:5d:fd:b4:88:06:b0:61:
12:0e:66:8d:c6:d7:cc:af:c0:c3:3f:7b:38:9b:24:
03:29:d2:5b:0e:f9:8d:b2:0e:36:a5:7d:7e:79:d3:
fd:43:6c:11:1b:f9:8a:4b:f9:9a:82:59:4e:f9:80:
62:58:f4:68:c9:ae:31:22:b2:93:93:db:2d:14:fe:
aa:8c:e7:7e:7f:d9:eb:f9:c1:e9:a0:34:b8:98:c7:
c8:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:90:A0:24:FD:C5:A6:43:EF:CD:EA:E5:DF:F6:C3:D2:EC:D9:F1:A2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A98311786CBF11EE8B77DC6C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.6.0/23
Signature Algorithm: sha256WithRSAEncryption
37:87:fa:0c:a8:77:73:b0:b5:a4:c0:5e:ce:2e:26:44:12:b5:
28:2e:e4:19:72:8e:78:42:0c:65:2b:e5:a8:21:7a:ba:ad:48:
26:7b:be:79:4b:fb:36:6a:b2:5e:15:70:06:c0:fe:2f:f8:0a:
18:c5:a8:98:e8:22:1c:84:4e:8c:98:c3:e9:ee:e4:1d:c9:c3:
6e:f3:20:69:0c:c5:a1:ba:14:63:54:4c:61:7f:6d:99:b5:17:
97:4e:a5:f8:81:fe:a3:e8:2c:fb:2c:68:b6:23:c5:ec:87:c6:
5f:d6:0f:cb:7d:bb:6f:38:b0:3e:0f:9b:01:52:45:c0:da:71:
e8:3f:f7:26:ff:aa:da:61:19:cd:49:88:66:3b:23:df:15:5a:
31:2e:2e:61:ad:26:a4:f8:0a:6a:5f:0b:3b:c8:66:11:06:b8:
40:1e:ca:e1:f9:03:3c:86:23:4a:ea:ac:c7:7c:82:cc:67:97:
d2:61:9d:be:5a:3f:69:a9:0a:e8:c4:67:af:d9:50:54:e5:07:
b0:81:6f:94:7f:79:87:06:53:c4:9d:9d:ed:75:ea:4f:84:df:
b7:5a:aa:cb:79:ac:13:ff:c4:0f:f8:2f:03:78:1b:c3:bc:45:
58:7e:06:a8:1c:f7:10:64:8d:91:82:a8:6e:a3:2b:2f:17:bb:
d3:0c:42:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:34 2024 by rpki-client on console-fra.rpki-client.org