Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7951D18FEA111ED9801816B4AD9E6FC.roa
File: D7951D18FEA111ED9801816B4AD9E6FC.roa (raw, json)
Hash identifier: tTcab8M1SBCj9qVxifySsprGFwOEXXpU4KgFMoPJrTk=
Subject key identifier: 84:74:42:ED:00:36:A9:70:AB:0F:3F:5E:A5:C5:A6:AB:02:55:22:83
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2866
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7951D18FEA111ED9801816B4AD9E6FC.roa
Signing time: Tue 30 May 2023 04:24:18 +0000
ROA not before: Tue 30 May 2023 04:24:14 +0000
ROA not after: Wed 15 May 2024 04:24:14 +0000
asID: 63888
IP address blocks: 154.207.143.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10342 (0x2866)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 30 04:24:14 2023 GMT
Not After : May 15 04:24:14 2024 GMT
Subject: CN=64757a72-670f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:6c:9a:04:e0:0d:dd:ed:e0:ae:e2:9b:a7:bb:
57:51:d5:68:2f:3d:82:40:38:96:f7:32:a6:01:f9:
6b:55:78:4c:d6:e6:54:e8:26:71:32:dc:68:27:70:
c4:04:ab:9a:8e:ea:d5:f3:a8:47:4f:ee:1b:d2:b5:
a9:c9:27:2c:6a:f3:00:ca:bd:67:11:70:f9:3f:85:
45:46:04:2a:57:71:fc:31:c0:50:7a:19:57:86:60:
e1:44:ab:21:aa:fb:2c:e3:52:4f:ea:5c:ae:12:e7:
48:7e:14:89:6a:58:57:4a:54:17:d7:a0:c4:0c:96:
4d:ab:04:4c:27:f9:83:9b:e6:57:34:6e:7f:2c:a8:
e5:8f:ac:42:ae:35:26:6b:23:70:77:eb:57:8a:27:
4a:70:75:b7:38:cf:18:5f:8c:42:94:dd:ad:64:9d:
98:95:d8:29:e2:55:a2:e7:71:e2:bd:0b:2d:80:f4:
f2:0b:04:8f:5b:03:28:4b:87:a4:3b:66:b2:2f:ec:
3d:44:7e:96:48:59:e9:f7:d2:74:6c:e8:11:e3:17:
6d:29:f9:cc:69:b1:f8:d2:e7:da:8b:ab:ef:b8:69:
aa:7a:d7:0f:75:65:d4:ea:6c:60:f1:2c:10:11:8d:
ab:86:35:95:d5:c9:62:f0:84:5b:5c:8b:5c:4d:de:
2a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:74:42:ED:00:36:A9:70:AB:0F:3F:5E:A5:C5:A6:AB:02:55:22:83
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7951D18FEA111ED9801816B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.143.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:10:e4:8c:0d:22:9d:b3:4e:64:9d:75:86:b8:b8:99:11:93:
80:52:b6:a4:2a:c3:d9:41:7b:a5:68:ca:2a:64:72:30:05:56:
d3:df:93:62:b0:ad:eb:f3:4b:78:56:74:28:3b:b3:1b:a0:57:
3d:1e:bd:4c:37:49:25:71:c2:5f:57:8f:ad:27:0d:6f:05:27:
29:90:80:fc:26:03:6d:c3:8d:9d:e3:04:64:99:e8:91:c9:c1:
a5:8b:eb:81:8c:e9:35:99:2e:f4:0a:ee:f6:22:ed:75:00:e1:
60:af:b2:d0:05:20:9e:14:78:5c:7f:09:27:a1:97:b4:4f:b0:
22:04:16:1d:4d:3a:a5:ff:9e:84:ad:9c:f9:24:8a:b1:b4:62:
ab:45:06:78:0f:fe:51:b7:2d:95:b9:f7:34:4d:49:0b:71:28:
52:95:bf:bb:12:cf:19:6a:64:ba:c8:a1:19:b3:ef:42:11:2c:
ea:99:80:e7:e7:8e:99:ef:24:9f:22:da:85:be:14:b5:4e:c4:
ca:b0:e8:90:8d:4b:8f:91:1b:17:55:2c:c0:9f:63:b9:11:00:
82:9b:f2:a2:2c:e2:f1:03:cd:65:79:3a:a9:50:e2:4d:9a:19:
2b:9f:90:ed:27:a8:b3:ce:b0:98:bc:e9:87:fa:c0:8b:5f:20:
49:a1:2a:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:40 2024 by rpki-client on console-fra.rpki-client.org