Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E35C0C025F9911EEB25CB7184AD9E6FC.roa
File: E35C0C025F9911EEB25CB7184AD9E6FC.roa (raw, json)
Hash identifier: sNflvsjFYfIZgcJo0BfAIJ2/PVej0v/AH8XyHuvUhGc=
Subject key identifier: 0C:CE:FA:E8:64:5A:98:BF:57:1B:55:C5:D0:96:03:E2:65:B2:25:4C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4441
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E35C0C025F9911EEB25CB7184AD9E6FC.roa
Signing time: Sat 30 Sep 2023 14:01:44 +0000
ROA not before: Sat 30 Sep 2023 14:01:41 +0000
ROA not after: Mon 30 Sep 2024 14:01:41 +0000
asID: 209242
IP address blocks: 154.84.14.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17473 (0x4441)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 30 14:01:41 2023 GMT
Not After : Sep 30 14:01:41 2024 GMT
Subject: CN=65182a48-21c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2e:64:03:23:9a:f1:0e:1b:c2:ac:47:cf:ea:
a6:05:57:d0:83:01:09:29:5c:45:c8:32:6a:cd:7c:
b5:03:74:ea:34:5d:a4:cb:50:a1:0e:81:68:d9:34:
17:31:47:a9:ad:f7:65:b3:b2:68:5f:9a:ee:e8:7d:
d1:7c:72:af:28:4c:c3:11:87:cd:d4:61:21:6d:a9:
d6:61:87:48:5b:2b:a2:ca:b5:8c:48:92:ad:1a:a0:
35:28:4e:d0:8b:b4:5b:7c:ca:2e:63:cb:19:57:19:
6d:14:2f:b8:ee:e7:e0:b4:2f:47:71:cc:d9:f7:85:
15:54:40:9c:3f:6d:a8:d0:d4:78:5e:ff:9d:19:19:
0d:a5:38:70:87:33:d6:26:34:2a:4b:17:21:29:8a:
34:fb:00:b2:17:fb:ae:b2:e0:ed:b7:a3:32:63:12:
57:60:7e:a1:07:89:50:4c:11:ce:fe:14:b2:2c:d7:
f7:e3:7f:c0:1a:d3:86:61:75:76:d2:da:62:ae:28:
29:12:49:ea:f8:53:80:3f:d9:54:2b:3a:57:c0:4a:
e2:e5:f2:0b:78:28:3b:7f:40:8e:d4:e5:5b:0d:7e:
27:63:15:56:3c:cb:97:20:11:41:ff:17:4b:a9:d6:
3e:e4:b3:b3:78:b0:1e:54:20:8d:46:36:ce:05:1a:
c9:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:CE:FA:E8:64:5A:98:BF:57:1B:55:C5:D0:96:03:E2:65:B2:25:4C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E35C0C025F9911EEB25CB7184AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.14.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:db:11:ef:b9:6f:73:ab:6b:15:82:b6:be:e4:e2:2f:4d:34:
85:56:34:49:0b:8f:d8:13:c0:e7:79:7d:fe:ac:58:a4:b6:65:
99:75:28:fd:35:50:f2:cc:ee:76:a7:33:04:10:3c:68:95:68:
51:03:62:de:f2:c7:0a:6e:62:95:df:d8:cd:50:dd:9e:6a:78:
26:c2:e2:41:56:03:fc:38:11:67:46:b2:90:3d:5c:7e:e4:c9:
01:25:24:93:22:11:95:45:88:2c:9c:00:d0:d6:e7:a0:c9:05:
e0:9f:b1:36:82:54:d9:98:08:c1:ed:08:5c:e8:69:9f:63:42:
16:68:32:75:ca:b3:af:e3:15:14:a1:ea:f1:11:65:1d:5e:02:
cd:87:67:bb:eb:46:6c:b3:d2:3b:28:72:28:6e:ed:2c:b6:e1:
eb:0a:97:4d:af:0a:58:93:04:25:cb:89:e1:80:49:86:4a:49:
70:54:c4:cc:70:21:36:48:35:fa:bf:c9:c8:92:3d:84:21:aa:
82:31:e9:5f:7e:f9:cc:70:40:1c:58:c7:9c:c9:24:37:28:71:
9b:f7:bb:88:a4:59:a2:a1:3e:8d:7c:cf:cf:7b:3c:47:e6:f6:
e1:c2:c1:aa:be:9b:97:e7:55:b0:d1:1e:9d:fd:01:71:f7:3b:
91:85:97:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:41 2024 by rpki-client on console-fra.rpki-client.org