Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C1C53AF4C50711EE8C38CBB7775412E6.roa
File: C1C53AF4C50711EE8C38CBB7775412E6.roa (raw, json)
Hash identifier: 1cspA/hctEeQ9APXlV8N0pnBx9PRMzhOZT6urfSn8Fs=
Subject key identifier: B8:FD:9D:35:BA:5C:E5:37:28:39:1F:5B:89:91:F8:DB:32:7C:8F:3B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8647
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C1C53AF4C50711EE8C38CBB7775412E6.roa
Signing time: Tue 06 Feb 2024 15:52:40 +0000
ROA not before: Tue 06 Feb 2024 15:52:37 +0000
ROA not after: Wed 26 Jun 2024 15:52:37 +0000
asID: 38638
IP address blocks: 154.83.20.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34375 (0x8647)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 6 15:52:37 2024 GMT
Not After : Jun 26 15:52:37 2024 GMT
Subject: CN=65c255c8-47f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:57:1d:8f:ee:e1:4f:6f:95:35:c1:27:d7:8a:
a5:61:f3:0e:fb:b1:af:b6:5e:af:e4:cf:1c:12:cb:
1e:8f:20:a6:9a:d1:b3:df:fe:23:ad:d0:79:3c:49:
61:2d:90:3d:6b:51:24:9c:ef:3d:40:d7:ee:1d:15:
2b:77:09:8f:4d:09:26:78:74:9a:24:52:a7:78:20:
36:50:dc:27:49:f3:5f:76:9a:72:f9:da:44:dc:23:
93:be:4a:4c:0e:de:9a:9e:df:d3:f5:d9:ba:ad:57:
6a:eb:ed:9e:cc:d6:ce:2c:dc:41:4d:7f:40:61:69:
10:da:95:5c:fb:60:ae:44:d1:b9:3a:d8:68:86:af:
28:e5:88:f2:d8:99:40:82:a3:84:ab:ca:5b:f7:e0:
a9:67:c3:71:8f:ac:c9:d0:8a:14:61:60:4f:a9:1a:
78:bf:3c:3d:2c:3e:41:05:a4:cd:15:1b:4b:f5:d1:
b9:50:42:78:c5:10:74:b7:42:67:e9:35:21:42:9c:
67:4e:54:bc:12:ec:4b:ac:69:4d:9f:dd:b9:c2:6f:
4b:06:c4:29:65:f6:98:2c:0c:a3:ee:5b:32:ba:1d:
82:ad:30:d6:68:87:1b:08:54:d0:bb:46:53:3d:b9:
51:21:e0:bd:c9:c6:8a:f0:dc:e9:7b:7d:a7:fa:57:
5e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:FD:9D:35:BA:5C:E5:37:28:39:1F:5B:89:91:F8:DB:32:7C:8F:3B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C1C53AF4C50711EE8C38CBB7775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.20.0/23
Signature Algorithm: sha256WithRSAEncryption
10:5a:44:5a:ab:b6:79:96:1d:f9:6c:1b:c5:88:71:06:4f:fa:
f7:bf:b0:e2:89:76:50:c4:9e:53:14:95:9c:0b:fb:d1:57:75:
9d:53:e0:b2:77:93:b0:ed:8e:92:13:a3:1f:73:70:7a:70:31:
3c:1b:00:b6:f3:06:ae:04:27:ed:47:64:c0:b1:91:08:d5:92:
ae:2f:68:28:bc:81:35:09:63:2d:05:77:78:a2:30:62:4e:2f:
bc:84:a3:7a:fe:0b:f4:86:64:a6:25:82:ad:ef:fb:e3:6f:76:
6e:67:dc:20:9b:aa:68:58:c4:73:95:bf:f8:2c:3f:9f:e7:78:
e0:90:88:9d:c5:fe:2e:c8:ed:79:ae:7a:cc:89:ac:0f:58:24:
49:52:da:96:92:59:b4:0e:76:98:d0:bf:6a:8d:3b:7e:e8:8a:
ca:3a:33:1c:87:62:58:d9:d7:9d:5e:bd:59:44:9f:fe:a4:68:
6f:3b:96:ea:66:06:3c:73:53:cb:22:38:ca:49:47:b4:11:f9:
70:55:6d:b7:31:3e:7c:0e:b2:0f:84:cd:26:e1:4e:5a:45:33:
bd:81:b0:f2:c2:8f:a7:c3:39:01:bb:8f:4b:41:ba:f5:84:3c:
b7:23:88:14:ac:91:44:6f:98:c2:5e:4d:e9:de:97:c7:48:63:
ed:a4:40:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:37 2024 by rpki-client on console-fra.rpki-client.org