Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E0857976473611EEBDB034524AD9E6FC.roa
File: E0857976473611EEBDB034524AD9E6FC.roa (raw, json)
Hash identifier: d4GYnsdyjaKiEENX0vtcp4k1UQaDTIk7YzLmLzEMtzc=
Subject key identifier: F0:B0:94:BB:27:68:6A:9F:2F:BB:DB:8A:4E:9F:5E:B4:0E:56:6A:E3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3ACF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E0857976473611EEBDB034524AD9E6FC.roa
Signing time: Wed 30 Aug 2023 13:12:32 +0000
ROA not before: Wed 30 Aug 2023 13:12:28 +0000
ROA not after: Thu 08 Aug 2024 13:12:28 +0000
asID: 133199
IP address blocks: 154.204.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15055 (0x3acf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 30 13:12:28 2023 GMT
Not After : Aug 8 13:12:28 2024 GMT
Subject: CN=64ef4040-2736
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:0e:07:a9:a5:b7:45:ec:04:ae:47:38:2b:14:
8c:74:7e:dc:6d:f4:5e:a0:dd:6e:65:55:50:70:92:
e1:c3:d8:9b:c6:6f:b0:ac:fc:2e:11:56:51:c0:89:
ba:7f:fb:44:2f:8a:34:10:b4:b5:60:92:c6:13:7b:
50:b8:84:b8:66:ae:ae:8b:14:a2:bc:a5:1b:42:45:
37:9e:6a:21:c8:6d:7a:1a:5e:45:01:a3:ab:b4:59:
b1:42:44:92:9e:64:c7:88:6a:cc:a9:25:7d:81:f7:
03:14:cc:4e:6c:a9:3b:36:31:73:86:62:fd:09:04:
ce:28:35:1c:b0:72:ee:19:cf:27:a4:f2:54:79:37:
bb:c3:df:aa:00:7b:e1:2a:57:0a:b0:11:18:9c:fa:
ec:33:74:6d:cb:05:8c:b2:d0:21:91:ff:9b:19:6e:
3e:79:4d:97:f3:af:8e:ad:5b:d0:0e:72:88:28:b0:
6f:1a:93:ee:fd:58:51:85:6b:4b:7c:09:e3:9f:f3:
24:c8:96:65:a7:7a:fa:1a:ab:6b:5f:a2:97:3c:3e:
fd:a8:18:74:46:41:3d:ff:99:08:29:52:90:ee:a7:
8f:c4:a5:09:4a:0d:1f:c1:c5:b4:82:0d:bf:b5:fd:
7d:29:ee:44:5b:5f:59:33:49:fc:f5:b7:75:ca:f3:
b8:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:B0:94:BB:27:68:6A:9F:2F:BB:DB:8A:4E:9F:5E:B4:0E:56:6A:E3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E0857976473611EEBDB034524AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.58.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:95:a7:3d:8d:92:39:10:18:17:25:e1:c3:bb:34:36:cc:32:
cf:03:f3:37:0e:ac:1f:fd:9e:78:fd:cf:84:51:b1:cd:35:36:
97:df:a5:8f:f7:7e:dc:15:2d:7d:d3:e2:a3:4e:ca:b6:f8:dc:
95:7e:84:a6:9d:9f:a5:ba:9a:3f:0e:4e:87:a4:d8:97:e5:63:
d8:b9:30:eb:56:6f:0b:7e:11:1e:a4:d8:c0:45:9a:9d:63:a0:
bd:84:04:bd:ca:02:0c:52:b0:c3:b1:09:a4:73:ab:4b:6b:4f:
25:65:c2:97:65:2b:00:bd:55:cc:9f:c7:fa:77:38:37:b4:cf:
69:49:01:38:c8:7d:68:8f:12:93:df:b4:c0:e9:f1:d9:02:8f:
cc:51:8a:33:1a:49:6a:a3:1e:ad:ef:14:fb:82:3c:d1:55:ef:
b7:26:f9:bc:7f:2b:16:29:dd:51:d8:33:d8:83:08:4a:33:40:
6c:12:bb:9a:41:fa:e9:00:f6:d5:3f:24:9d:02:27:a2:f0:02:
5d:c6:32:c8:fe:4a:35:7f:2a:81:87:0e:a3:86:bb:54:f0:f7:
78:e0:98:83:9f:09:07:c2:4a:bf:4d:22:4b:2f:34:36:b1:85:
8b:9c:6a:fe:f8:e5:9e:00:c4:fd:34:a0:76:1e:36:a2:d5:48:
77:12:9d:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:41 2024 by rpki-client on console-fra.rpki-client.org