Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B8D57824FEA011EDA1420C684AD9E6FC.roa
File: B8D57824FEA011EDA1420C684AD9E6FC.roa (raw, json)
Hash identifier: AgiRk+YuxUgZlvx6OBsInTeuvwk1J8Ynq3IcLp+99/k=
Subject key identifier: AA:9B:D4:DC:D6:5A:CB:34:6E:A4:10:41:BB:9F:D0:40:D5:38:53:22
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2856
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B8D57824FEA011EDA1420C684AD9E6FC.roa
Signing time: Tue 30 May 2023 04:16:17 +0000
ROA not before: Tue 30 May 2023 04:16:13 +0000
ROA not after: Wed 15 May 2024 04:16:13 +0000
asID: 63888
IP address blocks: 154.207.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10326 (0x2856)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 30 04:16:13 2023 GMT
Not After : May 15 04:16:13 2024 GMT
Subject: CN=64757891-1409
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ce:b7:e0:11:c9:bd:43:c6:9e:37:35:f3:46:
8e:ea:e9:39:e9:96:8b:3e:4b:49:79:5a:e2:19:03:
3d:4b:32:2e:7a:f4:34:7d:5f:22:8d:7e:0d:a1:1e:
7e:96:6d:a7:0d:55:3b:26:0b:41:39:69:82:d4:4f:
39:5c:12:ec:0d:6d:60:57:2d:29:b5:46:b9:d7:a9:
f3:fb:89:ad:09:6b:8c:bb:36:71:b1:38:82:0f:f2:
1d:f4:ad:46:f3:73:41:fe:b4:89:9a:c5:74:23:cb:
8b:10:d7:27:b5:c0:56:68:e7:b6:e4:b7:e2:d0:4a:
89:ac:f9:51:da:86:d3:e0:5f:a6:ea:cb:14:4a:63:
53:c0:80:26:4d:e1:72:15:cd:37:45:80:87:2e:72:
ba:02:90:1d:69:4a:63:df:70:b7:a3:7f:c7:08:f7:
0f:ab:29:ac:e1:ee:c6:1b:2f:d6:04:c3:93:6c:3c:
4e:3d:43:5f:9e:54:f8:76:14:dd:64:8a:d1:18:f8:
54:05:ee:ea:33:4e:0e:47:cf:ad:3d:1e:45:df:d8:
6c:a6:ed:91:ac:5e:1d:2f:1a:5b:80:c2:e1:11:0b:
ec:bc:d4:6d:bb:cd:c2:ad:45:8c:29:21:92:92:e1:
67:7f:06:b2:08:6a:1b:ba:69:a1:41:9d:12:54:6b:
72:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:9B:D4:DC:D6:5A:CB:34:6E:A4:10:41:BB:9F:D0:40:D5:38:53:22
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B8D57824FEA011EDA1420C684AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.191.0/24
Signature Algorithm: sha256WithRSAEncryption
40:c1:1c:26:2e:04:48:3a:d1:a4:b1:2b:63:8e:77:e3:94:0e:
b2:51:12:a9:dd:f0:3f:f8:e1:c2:de:07:08:f9:64:86:39:19:
bd:fd:d8:ec:49:8e:84:99:87:3d:fe:b5:bf:60:2e:d2:b4:eb:
f3:8e:ea:c0:68:b9:2e:bd:cd:e6:d4:b1:74:01:9d:49:fb:4f:
61:0a:71:25:63:d3:6c:3d:27:50:25:d5:f9:f3:6b:9a:1b:27:
00:6a:5c:5d:fc:f9:d8:fd:58:bd:0c:eb:49:59:54:aa:02:db:
07:ce:03:99:30:0c:71:f7:9f:69:a8:e1:cb:ed:be:b0:c6:52:
5e:cc:db:11:45:b6:95:f6:37:69:f3:b0:93:69:90:0a:3b:da:
be:22:ec:1d:88:79:78:d6:5c:20:0c:f0:06:59:19:8c:eb:04:
cb:42:02:63:11:04:88:f3:14:40:a7:71:f4:bd:ff:ca:30:a5:
62:43:4f:1e:55:b8:99:0e:5a:ab:ea:77:8f:7e:c2:91:b3:d9:
40:0a:61:34:42:1a:52:59:3c:7c:ed:04:f7:a6:5b:7a:6e:83:
1c:c5:49:08:f8:f0:61:3b:34:7e:fa:37:c6:10:9f:3b:25:4a:
11:07:1d:16:70:88:1b:56:a0:9d:15:8b:89:9c:7f:6e:18:4e:
0d:18:c9:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:36 2024 by rpki-client on console-fra.rpki-client.org