Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EF639A82958C11EEB35ECF41D25BE465.roa
File: EF639A82958C11EEB35ECF41D25BE465.roa (raw, json)
Hash identifier: aj0Sqqg5KFsfw8/MmgurLN8SqgO6FkhTaXFOlOUZpxo=
Subject key identifier: F1:BA:11:73:0D:2D:88:F1:9A:69:CB:4D:E2:FD:90:50:74:B7:7F:E9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5F48
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EF639A82958C11EEB35ECF41D25BE465.roa
Signing time: Fri 08 Dec 2023 05:45:04 +0000
ROA not before: Fri 08 Dec 2023 05:45:01 +0000
ROA not after: Wed 11 Dec 2024 05:45:01 +0000
asID: 137962
IP address blocks: 154.223.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24392 (0x5f48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 8 05:45:01 2023 GMT
Not After : Dec 11 05:45:01 2024 GMT
Subject: CN=6572ad60-4ca7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:f3:b3:06:d2:b8:4c:88:01:91:e0:7f:b8:14:
65:0e:f8:14:d2:e8:ae:4b:e8:30:68:d0:02:79:2c:
8a:53:b3:9b:07:72:a5:3f:c1:d9:9b:1d:71:1e:94:
82:d9:fb:74:16:84:8c:46:9c:91:af:9c:73:4e:02:
24:40:a1:fa:cd:86:64:51:f3:95:53:fb:13:3e:e2:
68:f2:8d:24:7c:71:e0:5a:d6:ba:f3:95:ac:23:6b:
9f:9e:21:d5:81:02:01:5e:f0:d3:34:39:39:4a:32:
5f:14:21:63:7c:1b:c9:f5:57:39:95:38:58:ca:c6:
00:7e:56:d8:91:b9:f2:89:3d:5f:09:33:05:8e:80:
f2:9d:08:7a:ca:10:32:16:46:89:4c:f7:0b:8c:4f:
72:bc:99:99:8e:c9:11:6e:95:8d:9b:72:7c:3c:98:
2f:41:44:dc:83:d5:bf:90:27:ca:a1:bc:ab:97:af:
fd:b8:74:99:3d:72:67:02:b0:0c:d3:27:f0:7b:5e:
10:c2:ad:83:7f:8a:18:d7:86:f1:b8:3a:a4:75:13:
4c:47:3a:d9:51:e6:7b:e4:b0:f0:a5:9f:3c:57:1e:
01:65:83:b4:5b:cb:65:ac:2a:07:2c:7f:57:1b:11:
47:8a:90:3e:3e:d0:ff:c9:92:f3:62:28:47:48:e1:
1b:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:BA:11:73:0D:2D:88:F1:9A:69:CB:4D:E2:FD:90:50:74:B7:7F:E9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EF639A82958C11EEB35ECF41D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.6.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:1d:ae:29:75:63:69:eb:24:1c:d2:2e:8b:11:7e:10:30:ff:
e9:c2:13:89:95:6f:f0:51:51:36:77:a2:67:d9:39:d0:ed:bb:
b1:7d:65:98:2c:ed:eb:fb:4e:8a:ab:62:3d:3a:82:67:9c:87:
5d:be:90:02:3c:50:45:e9:1d:38:4d:ed:26:d6:c1:f4:7f:45:
47:66:fb:d9:19:30:be:f7:e6:14:6d:14:48:e2:d4:14:a5:8d:
10:e8:fb:db:ac:c8:67:c2:c3:90:9e:17:98:88:58:29:30:54:
9c:cb:79:18:c2:98:8f:52:53:7e:a6:b1:67:6c:75:60:e1:db:
67:1b:dd:68:ab:c3:9e:9d:08:29:16:2e:36:1d:2a:37:fc:67:
18:dc:4c:22:fa:38:7c:75:e6:f1:16:cd:38:a6:aa:9a:d0:fb:
a9:d6:aa:5d:4b:2d:e0:e3:5e:87:b7:9c:ec:1a:b7:bd:66:f4:
87:ed:d8:a4:5e:35:b7:e4:cf:9e:62:80:a3:87:3c:de:13:2c:
02:5a:b9:6f:55:e5:d1:92:4c:25:4e:3a:d6:a1:7e:31:e5:58:
aa:4b:4c:a3:db:dd:f4:77:78:5d:ae:3c:09:e7:9a:21:65:7c:
9d:d5:9b:3c:f5:ba:0c:9c:48:a8:15:d4:af:b1:63:3e:35:4f:
73:c6:b8:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:52 2024 by rpki-client on console-fra.rpki-client.org