Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE3486569D4B11EE8F1DC138D25BE465.roa
File: DE3486569D4B11EE8F1DC138D25BE465.roa (raw, json)
Hash identifier: EV10Yzx24JdEPk6HNGgirLNJdYVuQe3La5FU6NYG0qk=
Subject key identifier: CD:09:38:EE:99:0D:EC:48:62:1A:42:01:53:BE:11:B0:8E:25:14:68
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 61F3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE3486569D4B11EE8F1DC138D25BE465.roa
Signing time: Mon 18 Dec 2023 02:19:27 +0000
ROA not before: Mon 18 Dec 2023 02:19:23 +0000
ROA not after: Thu 20 Jun 2024 02:19:23 +0000
asID: 4755
IP address blocks: 154.81.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25075 (0x61f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 18 02:19:23 2023 GMT
Not After : Jun 20 02:19:23 2024 GMT
Subject: CN=657fac2f-39e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:18:43:1e:7f:0e:99:f0:99:6b:c0:a3:1b:82:
a9:61:cc:23:89:43:af:2a:01:33:73:0b:7d:27:98:
b2:62:6b:f2:6e:f6:18:3a:68:c7:08:1e:a1:b3:00:
ec:e8:7f:d5:e7:f8:93:aa:81:49:19:02:75:21:93:
54:9b:a8:a3:7e:e6:26:df:91:bf:7b:c2:f0:0c:cc:
d6:82:e7:17:be:ce:d7:5c:71:ab:49:40:82:e7:29:
b7:92:b2:15:93:71:fa:8f:57:2a:32:40:40:9b:e2:
1e:c0:c4:71:69:f8:65:9f:a2:2f:c8:de:40:e2:4d:
96:98:a0:44:b9:68:0e:4b:6b:d4:af:49:bf:24:ca:
f8:c5:89:db:96:a9:d7:6d:5e:96:28:53:53:47:7f:
22:d8:7f:7d:3c:24:f5:13:14:40:a9:47:65:17:98:
1c:93:43:6e:4b:cb:ce:5e:ab:20:7a:5b:d0:7b:3c:
59:0b:b6:2c:4b:d2:c4:7e:1b:1c:28:77:8a:3c:c4:
d9:20:c2:36:ce:f3:38:83:3c:6f:ff:e4:38:b0:0c:
f3:d4:65:89:29:5d:fd:ef:f8:01:38:b6:1e:e5:7e:
83:42:de:46:64:30:ac:d9:6c:23:07:3b:77:f0:94:
66:e3:b8:ac:b6:cd:4d:ad:c8:d0:bb:24:c2:87:f2:
f6:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:09:38:EE:99:0D:EC:48:62:1A:42:01:53:BE:11:B0:8E:25:14:68
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE3486569D4B11EE8F1DC138D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.60.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:36:ed:f6:6a:58:0c:d9:37:1a:07:9f:06:c0:97:f6:32:92:
30:bf:bb:67:1c:19:e2:40:97:b9:d2:79:f0:db:b2:56:51:e6:
23:4b:89:b7:4b:19:8a:b2:49:5d:36:b5:0d:23:8d:fc:68:af:
f0:9d:03:9f:f7:a0:66:6f:4f:6e:a0:82:da:d0:2c:32:72:09:
c0:52:e9:94:64:8f:43:f3:6d:3e:82:d3:b7:30:8e:b5:77:8f:
26:a2:bb:fa:c3:e7:b5:64:91:f6:cd:f9:f4:06:eb:fa:3a:15:
78:88:04:66:16:c8:f9:e4:07:9d:a5:29:e2:dc:01:17:05:e1:
34:73:fe:c1:30:bc:c1:d0:fd:41:3c:87:37:15:20:ab:8a:1a:
64:90:e3:4a:a5:de:fe:0d:54:cb:ba:f0:5c:42:87:39:6e:50:
bd:2e:69:ab:f3:94:13:48:01:df:0d:35:10:2e:49:cf:e4:ed:
22:27:e8:d5:4e:4f:b3:82:bf:17:14:f1:20:4b:a2:f5:ba:e3:
28:53:12:b5:e7:47:00:4e:83:d4:d8:98:66:e2:5b:53:6c:c2:
be:3c:be:d1:b7:f0:10:69:1f:e0:a0:d2:59:00:22:b2:3a:e8:
4c:42:a1:9f:21:ef:7d:bc:ce:df:49:a2:12:a1:97:01:d1:15:
e6:3c:7e:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:41 2024 by rpki-client on console-fra.rpki-client.org