Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F27349AE82B611EE8F00DF254AD9E6FC.roa
File: F27349AE82B611EE8F00DF254AD9E6FC.roa (raw, json)
Hash identifier: mThS0IWNvH0LKeWH2O0bcskHEAsavLNhsWOIDgUSWlM=
Subject key identifier: B2:D5:27:47:B4:4A:56:0E:18:9D:E7:00:B7:1E:38:46:7A:7F:6B:8E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4FB8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F27349AE82B611EE8F00DF254AD9E6FC.roa
Signing time: Tue 14 Nov 2023 06:27:56 +0000
ROA not before: Tue 14 Nov 2023 06:27:52 +0000
ROA not after: Tue 12 Nov 2024 06:27:52 +0000
asID: 397630
IP address blocks: 154.201.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20408 (0x4fb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 06:27:52 2023 GMT
Not After : Nov 12 06:27:52 2024 GMT
Subject: CN=6553136c-a829
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d2:b3:90:da:a9:6f:7f:e6:a5:10:49:d7:14:
1d:41:18:b9:e2:b8:9b:0f:54:76:1d:d2:38:94:fc:
43:07:f8:2b:cc:53:b0:20:5d:d6:15:56:27:76:9c:
c5:ba:8e:f3:4e:21:b7:6d:a9:fb:82:3b:51:d4:a0:
d2:c4:57:5c:d3:3b:43:f7:5e:bc:5c:98:70:eb:18:
67:b1:6f:56:a3:3e:2b:db:e9:84:93:71:c4:bc:b5:
7b:1f:1e:83:6c:81:d6:15:20:49:62:8f:61:12:0f:
a9:3a:06:32:03:de:91:38:6b:95:49:3d:24:2c:8f:
ae:ac:43:2b:c6:0f:79:c6:45:e5:e9:a8:64:08:39:
25:61:77:c2:66:03:d4:fe:1d:a9:0c:4b:19:d1:2c:
60:77:fb:cb:b7:17:53:3f:18:c5:fb:22:62:70:31:
c3:5e:64:47:8d:39:b0:04:8a:80:29:df:cd:8f:ef:
3b:fd:92:ef:15:af:43:c5:1c:a1:2a:8f:e9:69:41:
82:10:fc:33:eb:6f:58:db:f6:2a:81:a9:3f:9e:ac:
61:b3:82:78:c7:2a:4f:6c:26:c2:87:e0:9e:e9:b5:
e6:e8:d6:b0:2f:9e:cc:11:1c:07:e1:1f:5a:7d:a3:
29:46:79:f8:0a:8e:fe:0d:0a:0f:b2:f8:ec:ac:10:
40:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:D5:27:47:B4:4A:56:0E:18:9D:E7:00:B7:1E:38:46:7A:7F:6B:8E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F27349AE82B611EE8F00DF254AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.58.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:53:29:f2:47:ad:f5:bd:f2:e5:80:b7:a7:c8:11:d8:0e:b5:
b0:ac:dc:53:66:82:e0:ca:89:87:7e:db:28:61:d2:29:2d:ec:
d6:ef:e4:c2:c5:34:1f:89:bd:51:2d:55:8e:4f:6f:16:75:6b:
c7:f0:f3:6c:b8:a8:90:ac:c8:c2:c4:df:2b:af:11:8a:0a:f0:
e5:ae:62:1c:cd:92:15:47:1e:fd:f9:a4:44:0c:6d:aa:2b:61:
fa:fc:be:d6:f3:e4:11:3d:f5:44:25:22:8d:7d:b0:ab:fc:6c:
a2:91:62:42:be:21:9f:ad:04:48:e2:09:cb:ba:5d:7f:a1:24:
18:ae:37:6d:41:88:be:f7:af:ec:44:ac:e2:75:44:2f:34:71:
1e:57:71:66:a8:1a:3b:29:8f:28:b7:c0:53:c8:56:f6:2c:04:
34:68:66:ce:3c:8f:b0:d8:8e:12:17:9a:82:17:92:fe:f2:42:
da:cf:cb:75:c4:3d:29:ff:c8:85:49:af:8b:5e:79:e1:7c:dc:
2d:30:bd:4f:be:54:c6:cb:3c:df:8d:91:50:dc:c9:25:d5:08:
40:f3:e2:74:7f:ef:35:79:0e:af:23:b2:90:ca:7b:aa:00:05:
ed:9c:eb:d4:80:d4:65:92:e1:13:2e:dc:9b:09:f7:8e:e7:ac:
73:91:15:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:30:06 2024 by rpki-client on console-fra.rpki-client.org