Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E5D30FA4278011EE976B891A4AD9E6FC.roa
File: E5D30FA4278011EE976B891A4AD9E6FC.roa (raw, json)
Hash identifier: soIZLD2LcoS/uYj+k3697W6V1OfViuL37NfbqNGkIu8=
Subject key identifier: 7F:A9:94:A2:3B:2C:25:F7:24:67:A9:2B:68:66:3F:E7:63:35:6B:BC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 339B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E5D30FA4278011EE976B891A4AD9E6FC.roa
Signing time: Fri 21 Jul 2023 04:41:46 +0000
ROA not before: Fri 21 Jul 2023 04:41:43 +0000
ROA not after: Thu 13 Jun 2024 04:41:43 +0000
asID: 22773
IP address blocks: 154.202.24.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13211 (0x339b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 21 04:41:43 2023 GMT
Not After : Jun 13 04:41:43 2024 GMT
Subject: CN=64ba0c8a-36e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:c3:f5:67:a3:02:95:25:c8:ba:51:f0:21:51:
99:55:91:73:db:4a:11:84:a3:2b:88:c9:6c:fb:94:
90:02:7f:31:55:fc:62:ad:47:48:4e:54:b6:03:63:
5d:74:84:77:8b:83:e5:97:0c:2c:cf:ee:0a:4f:01:
fe:1f:3f:77:28:63:c5:3a:29:44:d5:0a:29:89:0b:
28:8d:75:46:82:c1:43:68:a2:56:ea:80:94:15:73:
4b:84:fa:7e:57:d3:0f:ec:67:6c:a2:d0:da:d3:a7:
3c:69:7f:48:ad:98:52:48:e2:b2:cf:c9:19:20:9c:
0e:25:84:88:1c:c9:b8:14:f5:b8:90:62:ca:20:af:
61:e4:54:15:05:4e:3f:69:7a:c7:41:83:4e:05:0a:
1c:dc:0e:b9:3e:24:17:0c:66:c6:d7:48:e2:f5:c2:
7b:91:f8:40:56:9b:35:ef:9f:66:93:3c:19:3d:99:
48:79:04:64:97:f6:e2:2c:5f:ee:21:ba:d9:5f:e4:
7b:fe:7c:13:00:fc:4e:de:37:ed:b9:3a:86:11:55:
5d:96:85:73:af:fd:74:25:b0:b3:ca:b2:13:61:87:
1a:0d:00:16:e6:b5:0e:89:e0:ee:db:e1:38:b4:a1:
06:06:f8:08:a7:e5:a0:42:95:e4:c7:07:2d:63:dd:
11:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:A9:94:A2:3B:2C:25:F7:24:67:A9:2B:68:66:3F:E7:63:35:6B:BC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E5D30FA4278011EE976B891A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.24.0/21
Signature Algorithm: sha256WithRSAEncryption
35:3f:05:57:ef:c0:c5:d4:9e:e3:6f:9c:32:72:c2:92:34:5d:
7a:ad:5c:2c:70:48:a4:5a:ab:61:55:2c:00:1e:46:a8:c2:34:
63:e9:32:20:4d:a3:ef:d0:53:b2:fe:85:3d:f2:36:a6:b4:96:
a1:d6:7d:3a:75:d7:ca:d2:40:30:25:bc:54:20:9c:b8:b3:aa:
7d:46:c0:b6:bd:05:57:98:fb:c0:b8:00:2e:29:f8:c1:4d:5c:
45:60:e5:fe:4d:d3:9d:21:04:0c:2b:43:e1:59:fd:49:46:2b:
e7:f3:64:04:a0:97:f8:3e:ce:ae:7d:39:f2:73:ea:c9:87:ff:
1c:76:f4:f2:88:0c:18:75:e1:db:2e:0d:e2:31:14:fd:f5:c2:
cd:c1:12:65:2d:c3:1f:63:c6:32:3c:53:ef:79:97:f2:47:1c:
0d:bc:88:4b:57:53:08:14:31:6f:e6:b8:c7:26:77:2c:5f:62:
fb:05:95:11:f4:94:32:e1:7c:7f:0b:e9:d2:46:f6:1a:dc:ab:
8b:0c:e4:f7:5c:15:a6:39:b3:79:42:6b:43:e1:54:38:78:b4:
e1:60:d3:77:5c:da:d7:17:5f:2c:d9:b1:15:de:d8:cb:fa:64:
fb:d2:cb:e7:13:ae:35:8c:8c:2b:b1:b9:77:39:08:d6:36:18:
19:82:87:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:41 2024 by rpki-client on console-fra.rpki-client.org