Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E12B12D47EB611EE90A682534AD9E6FC.roa
File: E12B12D47EB611EE90A682534AD9E6FC.roa (raw, json)
Hash identifier: S5L7wCmf4/43B8rjjutvCVlKtzJjA2ZhJhPAKfbphRc=
Subject key identifier: 72:85:B0:67:D9:2F:F4:55:6E:1B:63:F3:D6:FF:E4:1E:71:8D:7E:46
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4DA1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E12B12D47EB611EE90A682534AD9E6FC.roa
Signing time: Thu 09 Nov 2023 04:17:22 +0000
ROA not before: Thu 09 Nov 2023 04:17:19 +0000
ROA not after: Thu 08 Aug 2024 04:17:19 +0000
asID: 133861
IP address blocks: 154.204.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19873 (0x4da1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 9 04:17:19 2023 GMT
Not After : Aug 8 04:17:19 2024 GMT
Subject: CN=654c5d52-2a79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c4:f1:90:36:29:42:55:23:1c:f3:10:89:86:
de:46:e5:9a:39:79:4d:90:90:67:32:2f:bc:f8:15:
cb:0f:15:59:c3:d8:74:c9:3d:fb:42:09:54:af:24:
57:4d:d8:f2:98:c1:f7:09:90:b5:9d:f5:3f:d1:36:
72:8d:45:ff:e2:e9:6f:e7:32:d1:a1:6d:b7:40:cd:
72:41:0f:37:fa:88:fb:97:1d:22:ce:59:b1:53:56:
c5:03:28:b4:f7:01:f3:cd:8f:62:77:92:ec:cc:d7:
f0:a0:6e:03:a4:b2:0c:81:74:03:f0:92:9c:88:b2:
53:c9:d1:4a:ef:19:60:4d:22:ce:8d:76:ad:e9:a8:
db:4e:9e:c9:bd:c3:74:b9:0b:55:4f:0c:71:75:3b:
eb:9c:90:f3:51:d7:45:74:0d:7b:0c:d8:67:20:cf:
11:ef:e1:f0:cb:2b:32:e5:06:30:a1:e8:12:13:b3:
2b:ac:20:e8:36:59:48:9c:23:0f:55:75:2a:80:23:
a3:db:94:32:d3:ea:3d:1f:1c:20:a4:28:c7:31:cd:
d5:f2:2f:5e:ed:2f:72:e5:83:f7:67:2c:7f:27:86:
9c:1e:92:ad:0f:65:f2:02:2c:22:30:85:f6:0e:b0:
1e:f2:33:65:4a:67:d8:20:6f:28:d7:50:9a:96:c9:
ad:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:85:B0:67:D9:2F:F4:55:6E:1B:63:F3:D6:FF:E4:1E:71:8D:7E:46
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E12B12D47EB611EE90A682534AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.61.0/24
Signature Algorithm: sha256WithRSAEncryption
64:d8:de:57:a9:eb:b3:c1:f7:90:d8:77:df:16:60:2a:28:52:
5f:a2:2c:25:cd:b5:5f:ea:fb:ca:f8:20:71:54:7e:2d:d2:88:
0c:16:4d:e1:65:a4:4c:8a:5a:53:da:6c:84:7c:74:58:27:46:
5c:f1:3c:d8:4c:6b:c0:56:bd:d6:10:1e:a9:60:71:44:d4:02:
46:61:3f:81:ab:5a:c3:4b:3a:12:88:e4:26:61:65:56:94:76:
59:7d:b0:0f:3a:1d:51:70:8e:44:9c:01:0e:41:17:e7:d2:3c:
f5:27:36:a9:9a:fe:57:a0:ea:c0:b0:fd:0a:c6:55:06:e9:51:
83:7e:cc:a3:03:08:76:19:0c:bb:81:a3:d0:f4:56:32:90:95:
08:f9:78:87:2e:38:c4:ed:f5:c9:c3:00:4a:96:13:85:b7:31:
88:7d:8a:fc:a7:e1:64:75:25:ac:2b:7a:28:08:eb:ba:9b:ef:
9a:7c:d2:10:2c:55:83:ab:2d:61:d0:bd:cc:80:25:62:ba:f8:
69:f2:d3:f5:2c:e6:e6:8c:ee:78:70:56:40:c5:9e:f1:9d:a5:
89:13:13:b3:1e:7e:8a:a4:26:fa:b0:13:c2:8f:86:87:ad:9a:
ad:b8:be:08:ce:24:2a:a9:37:57:f3:4b:ef:81:4d:10:3e:29:
8d:ec:d6:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:41 2024 by rpki-client on console-fra.rpki-client.org