Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7238344539B11EE8BF633524AD9E6FC.roa
File: C7238344539B11EE8BF633524AD9E6FC.roa (raw, json)
Hash identifier: Q52TVS1vyt2G0MumpWnZXuz1YpLTqSL0hGXTy/wkHz4=
Subject key identifier: D7:CD:2B:39:24:F1:CE:0B:92:25:37:D5:68:9D:78:AE:97:A1:1D:49
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3D63
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7238344539B11EE8BF633524AD9E6FC.roa
Signing time: Fri 15 Sep 2023 07:45:02 +0000
ROA not before: Fri 15 Sep 2023 07:44:59 +0000
ROA not after: Sat 08 Jun 2024 07:44:59 +0000
asID: 138152
IP address blocks: 154.94.4.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15715 (0x3d63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 07:44:59 2023 GMT
Not After : Jun 8 07:44:59 2024 GMT
Subject: CN=65040b7e-215d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:97:ba:ec:40:84:2d:d3:80:bb:2c:21:d3:99:
d7:f0:19:3b:d2:68:81:f3:7d:2c:87:3b:27:76:d2:
de:50:67:fe:e9:b6:50:cf:e5:4f:0f:6e:04:bb:5d:
0e:90:8b:1a:7e:2e:1d:c5:9f:aa:86:bd:5b:b4:fe:
20:50:39:25:78:d6:be:91:90:a8:ee:ca:d1:31:07:
34:37:b8:13:3a:0c:5e:9f:a2:54:a1:29:5f:12:6c:
13:64:92:07:46:e7:cc:35:dd:b8:44:ce:61:5f:b2:
4c:99:3c:df:d4:8e:d7:5d:7e:7d:bf:27:74:f0:1c:
5a:95:65:ad:78:30:30:9a:74:e5:c2:db:e1:fb:30:
cb:24:99:74:70:41:d6:36:39:cd:41:b1:f9:9f:f3:
6f:74:3e:30:2b:5d:71:6e:72:6d:11:1a:83:0e:af:
37:d2:01:50:21:0a:2f:93:24:37:ff:a1:15:39:b2:
2a:e3:84:1a:42:9b:06:3c:ff:46:aa:ba:b5:dc:3a:
e9:05:78:9c:b6:7f:12:2d:8a:f7:d9:6f:8d:76:39:
7c:2e:22:b1:3c:05:f7:0c:ec:d7:7c:e1:9b:b0:77:
ee:f2:27:31:fb:39:ba:97:80:24:a0:9b:81:4d:a3:
3c:61:69:2b:c6:fb:89:28:10:a7:8f:88:83:e7:a9:
95:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:CD:2B:39:24:F1:CE:0B:92:25:37:D5:68:9D:78:AE:97:A1:1D:49
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7238344539B11EE8BF633524AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.4.0/24
Signature Algorithm: sha256WithRSAEncryption
85:0a:d1:92:39:e1:81:1d:80:66:47:b9:ee:2e:65:bf:b8:0c:
a3:13:38:54:ef:5b:e2:e1:91:76:e7:a9:d8:f8:e7:dc:51:af:
30:6d:d3:b7:a5:2e:9c:15:ec:f8:cc:5a:a6:9c:d6:66:ef:29:
6e:60:e9:ca:78:a8:3e:12:8c:bc:dc:a9:07:32:89:a2:74:6b:
7d:7e:48:c3:5e:fc:c2:77:5c:a9:13:f5:7c:19:30:33:8a:41:
81:91:c2:19:15:36:f8:72:6f:1a:d4:c2:32:80:39:25:42:c1:
30:b7:55:51:73:0f:2d:a9:b7:6b:ba:bf:21:70:65:51:38:59:
5f:75:dc:ee:d9:0d:b9:70:06:f3:13:6b:39:c3:4a:82:f7:dc:
d1:65:73:f0:8d:de:ed:f3:e3:3e:94:e1:3b:fd:e9:c1:9b:e7:
a7:c1:55:8b:82:69:9e:5e:41:25:ac:ab:6a:d5:30:06:91:87:
f0:8a:08:f9:98:10:e4:37:89:f3:3d:89:18:ea:07:4e:e7:97:
05:ca:45:41:22:5e:cf:5c:97:79:aa:3a:81:33:a1:fa:3c:12:
ad:bc:14:27:e7:83:f4:e8:4c:c0:60:ce:39:2d:75:78:0e:9d:
26:ca:cc:f6:32:57:2f:d0:9e:d2:cb:3f:e2:fc:12:a4:04:0e:
77:e9:71:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:20 2024 by rpki-client on console-ams.rpki-client.org