Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F3A34E9414F411EE9AF201854AD9E6FC.roa
File: F3A34E9414F411EE9AF201854AD9E6FC.roa (raw, json)
Hash identifier: wwTCmI2vTwqSBp3q6F7A5cMdpfIcRSBkZITDs57S+08=
Subject key identifier: 4D:53:B6:DD:AA:B7:D0:F9:52:73:88:60:C2:D3:E2:62:0E:E4:DC:AE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2DD0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F3A34E9414F411EE9AF201854AD9E6FC.roa
Signing time: Tue 27 Jun 2023 14:14:39 +0000
ROA not before: Tue 27 Jun 2023 14:14:35 +0000
ROA not after: Sat 26 Apr 2025 14:14:35 +0000
asID: 138995
IP address blocks: 154.218.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11728 (0x2dd0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 27 14:14:35 2023 GMT
Not After : Apr 26 14:14:35 2025 GMT
Subject: CN=649aeecf-3193
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:97:1d:61:9d:cd:e1:a6:94:30:66:d2:62:3a:
89:20:c6:08:f6:18:dd:2d:c0:a7:8f:ad:57:5d:46:
92:a9:2b:ce:7d:ec:aa:96:26:9f:b8:e3:3d:8c:7b:
7e:80:85:12:11:82:54:a6:f7:e2:41:6d:c6:06:3c:
b4:33:29:2e:aa:fd:1f:ee:e9:aa:fa:74:b0:6f:49:
e2:86:49:c5:dc:81:85:6b:f8:7f:6d:1f:4e:14:6d:
65:ca:21:cf:dc:a2:a8:38:80:28:3c:0b:75:d8:58:
5d:ca:48:22:d4:1d:54:97:26:84:5e:b2:b9:5e:fe:
61:cb:4c:99:8e:9d:24:91:b5:22:79:09:e0:c7:a8:
a7:c8:00:b7:c9:4c:ff:c4:e0:b2:b7:ed:2c:98:24:
92:a9:bf:6d:69:43:6a:03:cc:46:0b:eb:b6:20:0a:
84:c0:38:46:f5:fa:39:fc:3c:19:db:1e:25:d8:6c:
95:71:3d:71:ec:e5:fd:1f:d8:6d:0d:ab:e0:05:1c:
3e:92:ac:bf:15:4f:25:70:57:28:64:a3:32:73:e1:
3e:80:2f:18:3a:da:ec:3e:a8:ae:6c:b9:e3:9f:4d:
3e:1b:2f:ee:2b:f2:fe:f2:c0:7e:0d:36:00:70:a0:
2f:9e:4e:97:25:cd:e1:f8:04:93:2e:a6:ed:da:ac:
ce:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:53:B6:DD:AA:B7:D0:F9:52:73:88:60:C2:D3:E2:62:0E:E4:DC:AE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F3A34E9414F411EE9AF201854AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.2.0/24
Signature Algorithm: sha256WithRSAEncryption
21:c2:79:e1:99:55:03:ab:3f:4f:3a:e8:82:cf:2d:bf:14:1b:
0f:15:ca:68:3c:86:5d:10:04:0f:3f:da:b2:ce:7a:b9:e3:ba:
81:1d:d2:5d:de:ae:28:4a:93:e6:02:90:8c:80:b8:c4:2f:50:
85:ce:fd:3f:e4:43:44:f5:66:6b:a7:4d:20:d5:4b:6b:ff:c8:
59:e3:3a:2a:07:c8:ec:64:9e:de:b1:72:8b:bb:34:a0:af:13:
fe:7e:97:55:89:0a:d3:e7:be:b6:72:ec:f1:0a:0c:00:c3:ce:
a9:74:09:5a:c8:29:aa:7a:90:15:cd:dd:6e:62:8d:bb:13:d3:
5d:08:56:80:50:9d:6c:7f:5e:51:7a:a9:46:0d:68:d2:0a:52:
07:5d:14:60:56:1b:a3:26:db:be:8b:8d:b6:ac:d6:c0:04:18:
9b:28:bd:73:53:37:1a:26:a1:97:55:fc:cf:ba:5b:7a:27:16:
f7:73:e1:c3:9c:90:49:45:3a:19:8d:ce:a1:5e:cc:2d:97:51:
67:e0:fa:ac:0a:28:a9:95:24:58:b2:c2:44:76:fa:36:aa:08:
ef:aa:c6:32:04:3c:fb:e7:b6:b3:0c:c0:3b:bb:09:fe:0c:c9:
ee:df:24:91:96:a6:63:31:6b:5c:52:31:e1:45:6e:08:9b:7d:
00:b9:77:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:24 2024 by rpki-client on console-ams.rpki-client.org