Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF562B6A5F9611EEA751DD0E4AD9E6FC.roa
File: BF562B6A5F9611EEA751DD0E4AD9E6FC.roa (raw, json)
Hash identifier: NfT4GLg0wp9Zc0GaEhAo1o0/ge7G6CLQ5Vc3EWACuxw=
Subject key identifier: ED:35:6D:75:D2:E6:F5:24:DA:4A:C4:81:CD:B1:5D:DD:7D:42:13:C2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4423
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF562B6A5F9611EEA751DD0E4AD9E6FC.roa
Signing time: Sat 30 Sep 2023 13:39:15 +0000
ROA not before: Sat 30 Sep 2023 13:39:12 +0000
ROA not after: Mon 30 Sep 2024 13:39:12 +0000
asID: 211392
IP address blocks: 154.84.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17443 (0x4423)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 30 13:39:12 2023 GMT
Not After : Sep 30 13:39:12 2024 GMT
Subject: CN=65182503-eb59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:93:fa:b8:fb:22:9d:be:7d:d6:32:a6:ce:3c:
e9:5c:cf:4f:06:1f:47:70:61:85:c3:7c:80:fd:8f:
4c:68:d0:61:a0:ac:74:d5:7e:01:36:d4:f3:d3:f6:
73:f3:bc:29:5b:54:15:e0:26:b9:6e:f5:28:b5:ca:
75:55:9e:f2:97:8e:68:c9:d6:b0:14:1e:cc:35:9a:
e4:23:90:8e:a5:8e:3d:9b:55:80:74:c7:64:05:b7:
2c:52:b8:a1:49:4a:0a:ba:66:59:6e:63:eb:06:38:
75:a6:f8:13:25:99:67:58:3b:2e:2b:11:03:67:0b:
e0:be:c0:eb:00:ed:05:b2:71:7a:48:82:d7:e6:fb:
b1:36:75:a2:d9:e5:e9:20:6c:9a:6f:a3:25:6a:d0:
e8:06:30:c5:10:f7:f1:68:66:bb:4c:97:18:51:3f:
8f:fc:1d:b4:7a:46:14:1b:76:c0:c6:53:b6:af:a3:
bd:40:ea:fe:88:b9:a8:d3:f1:5f:fd:16:80:4a:27:
9f:cf:bc:cd:1a:a4:3b:60:48:80:b9:88:2c:b6:9b:
02:63:2c:97:00:b2:ab:c5:41:8a:ce:9e:27:95:53:
a0:1a:16:7b:bf:a2:18:ba:fe:32:3c:96:b1:f1:3f:
e6:09:23:13:b5:28:90:dd:25:3c:84:02:fb:79:bd:
1d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:35:6D:75:D2:E6:F5:24:DA:4A:C4:81:CD:B1:5D:DD:7D:42:13:C2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF562B6A5F9611EEA751DD0E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.25.0/24
Signature Algorithm: sha256WithRSAEncryption
71:23:1a:1d:69:64:38:25:4c:1c:95:5a:8c:3e:61:b0:2d:aa:
e4:82:dc:77:ee:b0:b8:bb:35:8a:8b:12:a4:2a:92:9c:9d:37:
df:c3:32:74:66:1f:4d:1f:94:d8:d2:99:fb:bb:70:cb:15:a8:
b3:bd:d2:89:e5:ae:19:d9:01:00:5e:6d:04:50:90:fb:3b:66:
97:62:4b:34:d1:71:fc:ee:ed:68:4d:ba:24:51:e2:94:74:a7:
62:0c:6d:af:91:6c:d5:e9:09:6f:1b:10:d2:c1:9d:34:6d:42:
42:de:f8:8e:7d:d3:b4:49:65:5b:20:b6:83:39:95:bb:31:ee:
78:15:a8:2b:70:28:a0:be:80:b1:2e:10:36:76:17:c5:96:3f:
46:e7:03:3c:36:e2:52:0a:6a:12:13:54:a1:05:a2:0e:5b:fe:
7c:ef:cf:3f:13:bb:34:68:43:8f:2a:e0:ac:bd:f9:2a:14:ea:
03:da:eb:c1:d1:c3:69:b3:4e:26:63:be:e2:18:8b:c2:5a:df:
c4:03:32:26:45:dc:77:8d:6f:3c:94:af:9f:64:e4:e9:aa:be:
bc:f9:91:3c:ee:96:e6:0b:c0:6c:4a:dc:2c:8d:b6:42:bb:9d:
67:78:d8:8b:8a:14:e0:12:92:8a:a9:2c:e8:7a:63:e3:6f:11:
f1:d8:5e:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:19 2024 by rpki-client on console-ams.rpki-client.org