Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CBD1FB8E416A11EE9F32005D4AD9E6FC.roa
File: CBD1FB8E416A11EE9F32005D4AD9E6FC.roa (raw, json)
Hash identifier: EU+sh3xUU0GKRdIopJHaAlKPe/YaF1S/jjZEPaGqwHk=
Subject key identifier: 9D:AF:36:1A:2E:D4:51:5A:D0:B2:60:E1:EF:67:45:5B:7C:FB:07:B8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 377D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CBD1FB8E416A11EE9F32005D4AD9E6FC.roa
Signing time: Wed 23 Aug 2023 04:09:04 +0000
ROA not before: Wed 23 Aug 2023 04:09:00 +0000
ROA not after: Sat 24 Aug 2024 04:09:00 +0000
asID: 5065
IP address blocks: 154.86.110.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14205 (0x377d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 23 04:09:00 2023 GMT
Not After : Aug 24 04:09:00 2024 GMT
Subject: CN=64e58660-2d3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:34:94:7c:0b:74:8d:01:9d:3c:33:6a:ba:26:
f7:15:43:ac:94:cf:fa:a1:db:eb:f8:23:78:d4:2d:
ab:b6:b2:ea:75:cc:94:75:5d:79:1d:69:ac:3c:aa:
59:17:14:34:81:b9:3e:86:c8:59:f0:d4:b0:36:94:
6d:a4:c8:0d:79:ea:32:96:e9:a1:41:ad:e8:60:81:
cf:19:bc:4b:86:40:fe:ad:89:73:9b:a0:6b:40:8e:
44:59:f9:38:6c:2a:63:3b:25:fd:5c:0e:50:fd:b4:
f5:eb:87:5d:bf:8b:cf:7f:c5:c7:9d:ac:f5:9e:fa:
7a:fd:5e:30:55:a2:27:ff:db:ac:4c:3b:ab:95:73:
1c:13:72:34:49:bd:80:b3:76:17:96:1d:92:47:7c:
fe:7b:24:15:86:a9:eb:72:af:12:92:06:d5:0d:bb:
dc:83:fb:2e:3e:4b:26:d2:b5:f8:02:95:96:77:01:
61:0e:c6:b2:5c:77:43:49:a6:67:58:71:97:7a:c6:
d8:ed:c7:12:93:56:66:a8:ce:fc:13:99:31:0d:68:
78:72:37:52:6a:99:47:b5:76:90:ad:88:08:18:e6:
06:f6:55:ff:1d:44:24:7e:24:65:81:02:e9:3b:30:
ef:f0:64:ea:d8:ae:31:e4:1c:b3:96:df:d3:44:45:
04:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:AF:36:1A:2E:D4:51:5A:D0:B2:60:E1:EF:67:45:5B:7C:FB:07:B8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CBD1FB8E416A11EE9F32005D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.110.0/24
Signature Algorithm: sha256WithRSAEncryption
42:0d:9b:92:c9:92:06:4f:65:6d:b3:45:32:89:a9:b3:92:da:
d3:2f:46:cd:49:fe:63:58:cb:ac:14:f8:7b:7f:c4:10:8f:84:
7b:df:3f:88:f4:a0:2f:1c:fa:f4:a1:7d:a1:7f:b5:f5:4e:fd:
25:6f:68:f8:e0:22:ed:c8:12:74:26:c7:28:8c:e6:70:d9:b4:
b6:f2:04:4e:95:f8:02:de:98:ed:4f:3a:16:96:6d:ce:03:98:
6d:e0:6e:24:02:66:b7:74:45:e6:7c:18:4c:18:5c:3d:e5:88:
58:9d:b3:6c:f8:1d:c5:97:22:5b:9b:04:88:9f:6a:84:ef:69:
a3:5e:8c:7d:98:35:5e:e8:00:97:30:a6:8a:7f:39:d6:ce:2f:
fc:88:27:14:1c:7e:56:d8:a1:f6:20:78:4e:4c:1b:dd:0b:fc:
59:fe:f7:ae:b6:ed:c0:d4:f6:05:f0:fe:58:5e:dc:b7:1f:ec:
d9:7a:f8:d7:03:c0:db:81:bf:5b:38:ec:21:1a:e6:28:17:8b:
2e:3f:6b:cd:14:a7:6d:80:1b:c1:16:63:14:66:2d:12:d4:5f:
97:5d:cd:22:dd:86:76:73:b7:ac:d3:ad:59:a3:ad:7e:57:f6:
f8:32:a3:c4:33:ff:e6:eb:c7:62:61:23:7d:39:bd:01:0c:27:
d7:73:f4:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:38 2024 by rpki-client on console-fra.rpki-client.org