Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AA7309EA82B711EE92FE2F284AD9E6FC.roa
File: AA7309EA82B711EE92FE2F284AD9E6FC.roa (raw, json)
Hash identifier: rkaSeGb5rF5ux7oU08Sd2pgC/AYR0y/QZsoJCSsFbv0=
Subject key identifier: FA:35:5B:C7:86:BE:7A:FE:18:ED:12:E7:65:3D:5E:9E:3A:89:5F:99
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4FC0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AA7309EA82B711EE92FE2F284AD9E6FC.roa
Signing time: Tue 14 Nov 2023 06:33:05 +0000
ROA not before: Tue 14 Nov 2023 06:33:01 +0000
ROA not after: Tue 12 Nov 2024 06:33:01 +0000
asID: 397630
IP address blocks: 154.202.102.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20416 (0x4fc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 06:33:01 2023 GMT
Not After : Nov 12 06:33:01 2024 GMT
Subject: CN=655314a1-c6a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:2d:ad:44:aa:ad:7b:54:f7:3a:bd:d6:e5:7c:
c4:f4:96:9b:1e:e8:97:51:e3:a9:0d:3c:67:e1:10:
fd:0e:d5:88:77:c0:44:47:8e:93:d4:5b:6d:55:9a:
8b:d5:11:84:ee:d6:1d:9e:36:fb:c3:7e:83:3c:7e:
91:df:1d:21:33:08:96:b8:71:47:15:49:d8:ba:5a:
0f:b9:8a:d6:11:fd:06:7f:43:8e:0e:33:2f:59:2d:
da:ab:94:d6:e4:67:29:e5:0f:06:92:74:0a:3e:70:
ee:5c:13:c2:ab:2d:e5:64:e7:ea:20:d7:e6:c4:78:
f0:f8:55:e3:9f:79:f5:fe:ba:9a:32:ac:f5:dd:fb:
f4:51:5a:d4:23:8a:d6:54:d5:15:e0:51:48:9e:9f:
0c:f0:f7:45:23:10:29:03:8b:1e:37:46:c1:6a:cc:
87:09:1e:cc:e4:59:93:b9:4a:1e:28:9b:dc:35:46:
9f:b8:db:29:71:e6:79:91:20:2b:ad:2f:ea:00:36:
55:dd:21:85:93:82:ec:dd:7d:cc:80:34:0b:34:86:
82:4b:d8:15:de:f3:d3:d1:c8:c2:75:2d:83:ea:71:
69:88:d7:e1:9e:f4:00:5d:c5:d6:1f:c1:7e:c1:3f:
91:b4:04:c9:b3:39:a2:c1:b2:fa:92:c7:21:28:5b:
b5:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:35:5B:C7:86:BE:7A:FE:18:ED:12:E7:65:3D:5E:9E:3A:89:5F:99
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AA7309EA82B711EE92FE2F284AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.102.0/24
Signature Algorithm: sha256WithRSAEncryption
33:bf:3c:54:73:48:17:ef:dc:6b:33:59:8c:85:23:f6:51:98:
30:75:01:dd:3b:ed:f6:cb:f0:68:6b:7f:62:fa:8c:9f:c8:2d:
72:21:4e:be:ee:a3:d3:3d:82:bf:f0:66:4a:d6:73:76:3c:7d:
16:f7:d0:ac:cf:68:4a:bc:c3:3d:a2:53:51:6b:43:a1:02:ed:
b7:fc:9f:cb:a9:ef:b9:fc:bf:1f:2a:20:9d:9e:b7:5d:d5:34:
1a:c3:02:02:5e:bf:24:b5:b1:ad:00:ac:e1:25:48:0c:9c:d0:
31:6c:77:e5:c9:d3:89:c9:7f:5c:e9:83:25:d9:ff:e6:44:84:
b8:5f:31:1a:0d:25:b6:0f:5c:ac:a8:21:5c:2d:a9:6f:1e:80:
ad:7a:65:59:94:33:a2:e5:a8:88:b5:41:b6:b6:95:c2:fe:0d:
9a:3f:67:a5:f0:d4:83:58:f2:9e:9f:e1:0d:e1:19:0d:72:3a:
38:25:c7:b2:a2:b4:2b:f8:4f:8e:e3:2b:8c:60:91:9a:d6:96:
49:fd:d0:1e:a9:6f:f6:e2:0e:0b:07:aa:89:ef:e3:da:e3:a3:
2e:fe:27:81:0e:a3:9d:69:3b:b3:bf:1d:aa:d5:48:cb:21:58:
56:d6:ad:37:25:b5:fd:f6:d6:9c:6f:06:5a:6d:a4:9e:00:09:
b7:83:af:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:34 2024 by rpki-client on console-fra.rpki-client.org