Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E10573D0988D11EEB7038D26D25BE465.roa
File: E10573D0988D11EEB7038D26D25BE465.roa (raw, json)
Hash identifier: 7BiMjVB1bDXqDUGHP9OBfKIN05riBmNzEDmOfuCkWVs=
Subject key identifier: 9A:5A:FE:E1:11:C7:20:0E:13:E1:CD:8C:BA:4E:4C:40:F8:4E:9A:7B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 60D2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E10573D0988D11EEB7038D26D25BE465.roa
Signing time: Tue 12 Dec 2023 01:29:23 +0000
ROA not before: Tue 12 Dec 2023 01:29:20 +0000
ROA not after: Fri 14 Jun 2024 01:29:20 +0000
asID: 140659
IP address blocks: 154.197.86.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24786 (0x60d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 12 01:29:20 2023 GMT
Not After : Jun 14 01:29:20 2024 GMT
Subject: CN=6577b773-fb87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e9:c8:a5:73:d9:1e:ac:71:98:6e:6f:dc:be:
27:15:00:29:91:fe:2b:a5:2d:89:c6:7c:5e:a8:a0:
9a:c5:f8:a1:61:98:29:8d:f5:5a:c7:16:10:87:93:
af:b7:64:bf:03:6e:e4:d6:46:8a:55:73:0f:48:53:
7b:27:b2:41:89:31:17:ad:2d:04:ce:a3:fd:02:26:
8f:6a:74:84:9f:a0:40:dc:ac:2b:a8:46:e7:3a:c8:
45:a7:4f:bf:46:9c:51:ff:a6:53:fa:b2:b4:e7:b3:
57:73:ab:14:7d:b9:39:8d:da:e3:e9:61:a7:e0:e5:
a2:e8:c2:28:1d:44:d3:10:92:81:7a:45:4d:d5:52:
52:db:34:1a:58:0a:13:b3:5b:9c:62:e6:87:29:e6:
82:43:71:f7:54:d0:91:1e:32:ee:91:e5:41:32:46:
ba:bb:15:7e:84:24:49:00:cb:77:11:dc:85:70:21:
16:c2:07:0d:d1:5d:20:e0:62:19:09:ad:d8:49:0a:
a5:7c:10:53:24:ad:69:3c:ce:88:55:25:9e:36:af:
17:3c:5b:f9:b2:f7:8c:20:f5:35:8c:57:b3:df:1d:
c1:21:da:c4:2f:3a:a1:0c:1e:44:1e:0e:8d:8e:b2:
f6:94:25:3e:d7:9e:6e:77:0e:2f:b3:a1:28:89:29:
57:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:5A:FE:E1:11:C7:20:0E:13:E1:CD:8C:BA:4E:4C:40:F8:4E:9A:7B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E10573D0988D11EEB7038D26D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.86.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:52:6d:32:82:f6:03:3c:e4:c6:80:04:db:f9:cd:42:da:1b:
67:05:ff:82:c2:e8:0e:53:9e:67:82:7b:d9:9e:73:94:53:ca:
45:30:2d:a9:43:1b:7f:df:d1:86:40:99:1e:ae:83:5b:ff:b0:
06:84:2a:b1:64:e7:41:7f:8f:b8:fa:63:eb:bd:f3:9a:6a:35:
4b:9b:92:81:87:95:78:1a:09:5a:e8:ed:87:b2:21:11:c3:9b:
78:2c:62:55:01:c7:21:18:5a:b0:4c:62:0e:5f:96:f3:0c:d5:
1d:3f:d3:eb:94:88:fa:fd:33:96:4e:e4:15:1d:bf:af:e9:33:
0b:b6:50:48:8a:86:7f:a4:a2:84:42:ae:66:8d:63:88:98:92:
c6:7b:b2:1f:ab:a4:b8:b1:a7:66:3f:25:7c:3c:f0:39:8e:a8:
5d:67:7c:b3:1a:ca:a8:43:7a:55:61:1b:da:f7:44:46:15:ee:
72:ed:e5:98:4c:c5:e4:ee:9b:38:82:58:12:6a:27:12:af:ad:
5f:47:16:3e:e6:e1:ca:43:90:46:ad:9e:e7:95:47:2d:e7:97:
ac:ba:8f:f6:f4:30:35:0f:47:5d:ac:4c:66:af:0a:5e:e0:57:
7c:6b:a4:25:fa:ba:76:55:f8:f6:82:9c:d0:a2:10:f8:44:af:
ab:25:46:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:41 2024 by rpki-client on console-fra.rpki-client.org