Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4C6BA4E246D11EEB9324B1E4AD9E6FC.roa
File: F4C6BA4E246D11EEB9324B1E4AD9E6FC.roa (raw, json)
Hash identifier: XxpXJhs7X5fZK44hJbKUICo8wC4ZX7SZw2nHABRqaDM=
Subject key identifier: DB:F9:C9:05:51:A8:E1:17:61:5E:93:BB:06:96:DA:C4:75:28:96:E3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 32D9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4C6BA4E246D11EEB9324B1E4AD9E6FC.roa
Signing time: Mon 17 Jul 2023 06:48:37 +0000
ROA not before: Mon 17 Jul 2023 06:48:33 +0000
ROA not after: Sun 14 Jul 2024 06:48:33 +0000
asID: 212552
IP address blocks: 154.211.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13017 (0x32d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 17 06:48:33 2023 GMT
Not After : Jul 14 06:48:33 2024 GMT
Subject: CN=64b4e445-84b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:7b:73:51:ab:e1:64:53:59:50:5c:70:6b:f7:
f2:14:26:a5:38:f6:99:cc:dc:ac:9d:55:c0:32:01:
2b:64:2c:76:95:08:ec:99:ef:4f:dc:68:b7:29:89:
ef:bf:63:f8:dc:4e:b9:0a:87:83:9e:7f:42:7b:61:
24:a0:f0:5b:c8:ce:3c:9b:70:1a:f7:b9:90:ec:32:
68:f5:eb:5c:0b:95:44:34:f4:aa:2e:13:17:86:e9:
c1:56:95:e9:85:7d:44:ac:90:78:7e:0c:07:84:91:
15:b3:96:c9:8d:91:ee:ab:38:f6:39:d8:58:40:c3:
76:67:34:23:b5:1c:91:a2:50:c6:ac:d4:4f:f4:7b:
4b:5a:a4:1b:c0:c7:e5:ba:29:26:9d:1b:95:85:cd:
c1:de:35:f4:c3:36:ff:da:49:f0:42:9e:31:97:3d:
95:44:3e:71:07:34:44:d7:30:c4:ab:89:d9:65:a5:
e2:2c:39:90:f3:20:38:f6:cf:02:0c:a4:bf:31:5a:
dc:77:0c:e2:78:25:3d:44:c8:89:4d:99:ef:da:62:
2b:8b:0c:a3:24:d3:58:42:0d:81:b3:51:18:5f:b5:
fb:e8:4c:d9:62:9d:b0:4c:88:13:8e:18:a2:e9:f3:
3e:72:43:ce:70:3a:0e:5a:ca:51:60:c4:9c:6b:9b:
b6:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:F9:C9:05:51:A8:E1:17:61:5E:93:BB:06:96:DA:C4:75:28:96:E3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4C6BA4E246D11EEB9324B1E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.2.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:d3:42:d8:64:bf:95:80:9b:9a:73:ca:54:07:6c:51:61:53:
f3:dc:88:42:d8:c7:db:83:81:9a:c3:98:0c:bd:94:ff:c6:49:
0c:0b:f1:f8:0c:2b:12:ab:cf:6b:51:84:f8:d1:fb:97:ba:21:
1b:a1:02:c5:f5:65:d0:fd:a9:d0:72:6f:86:e9:6d:32:c2:d4:
0e:f1:7e:45:a2:ff:70:c5:51:88:47:81:ae:9a:3e:87:86:00:
82:a1:3e:61:3f:e6:9f:87:d9:f3:dd:b1:f1:31:1b:8f:f9:a0:
03:87:b1:93:08:04:bf:22:09:50:90:fe:fa:bc:d1:13:4b:1f:
75:ac:ba:96:e5:16:22:7d:13:12:d3:0b:ed:d1:f4:67:53:55:
79:63:7a:c1:2c:80:e0:d5:8e:38:ff:9c:1a:5e:ec:d8:26:de:
10:a0:cf:f7:70:3c:d2:96:28:ba:cc:8d:c6:58:c5:8c:7f:29:
b4:5e:47:54:5c:bc:72:68:ae:e3:81:e4:30:8b:43:30:fd:9e:
e9:28:9c:94:de:f4:e8:9b:89:6a:c2:0a:5e:e2:c6:f8:c7:10:
81:dc:a0:70:29:5b:5b:aa:cb:22:ee:86:01:eb:0f:2b:25:45:
9e:cc:21:75:49:36:bc:d0:20:26:f3:ee:7e:e5:6b:24:5e:f4:
57:fc:94:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:43 2024 by rpki-client on console-fra.rpki-client.org