Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5820DCA9E4911EE8A7F8A0AD25BE465.roa
File: F5820DCA9E4911EE8A7F8A0AD25BE465.roa (raw, json)
Hash identifier: uPhy6acMrX9y+yfTpy/DU6ZgDw4xvwyMa9w1c1fZNUQ=
Subject key identifier: AC:D5:90:BD:5E:23:99:8F:9A:C2:C2:0A:72:D9:6B:48:62:6F:CF:48
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 62F8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5820DCA9E4911EE8A7F8A0AD25BE465.roa
Signing time: Tue 19 Dec 2023 08:38:18 +0000
ROA not before: Tue 19 Dec 2023 08:38:15 +0000
ROA not after: Sat 14 Dec 2024 08:38:15 +0000
asID: 141216
IP address blocks: 154.84.165.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25336 (0x62f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 19 08:38:15 2023 GMT
Not After : Dec 14 08:38:15 2024 GMT
Subject: CN=6581567a-332f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:99:91:81:e9:a8:b4:31:75:d7:0c:9b:7c:8b:
24:bb:db:8b:ac:44:90:13:ad:37:f9:82:b3:55:22:
be:e8:ef:da:b9:cb:67:84:32:c7:f3:33:e1:fd:72:
8e:f0:2d:23:18:41:c4:ac:12:88:1f:0d:90:1f:e7:
ae:41:58:2e:15:79:3c:60:bd:7d:80:0f:23:69:48:
f6:65:42:74:f3:dd:e7:a1:a1:55:81:04:da:d4:56:
3b:17:12:7a:49:46:a2:e9:e5:c9:45:6e:42:0f:29:
ba:b4:f4:37:66:bd:ee:8c:45:81:81:f7:84:a0:3d:
12:b7:79:a0:91:e9:91:b3:00:27:af:ad:90:83:58:
e1:eb:59:37:42:72:86:a3:ef:75:e1:cc:99:b9:38:
c4:e1:2a:ab:7c:f9:2a:1d:96:9b:38:0d:5a:e4:b5:
cc:85:d1:cd:01:ad:2d:2f:19:72:f6:5a:55:15:51:
71:12:8f:6d:ae:03:f9:29:6d:af:3d:6e:55:59:48:
30:6d:91:4e:e6:c5:46:99:41:c3:08:9e:b6:9b:38:
0b:4a:65:31:61:0e:16:df:ce:f7:fc:61:e3:e6:b4:
fd:78:d3:c7:73:80:a2:a8:b3:36:18:08:05:32:f4:
d8:0c:34:90:00:1f:f0:a9:bf:16:a5:40:e8:eb:a7:
20:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:D5:90:BD:5E:23:99:8F:9A:C2:C2:0A:72:D9:6B:48:62:6F:CF:48
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5820DCA9E4911EE8A7F8A0AD25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.165.0/24
Signature Algorithm: sha256WithRSAEncryption
43:74:e4:1a:a1:b5:14:b2:f3:3b:03:a4:e2:51:59:2b:3d:54:
5b:07:b5:4d:f4:2e:c3:23:4a:e3:60:18:b2:dc:c6:90:ac:b7:
ff:a3:5e:74:c1:1c:a5:80:1c:26:8a:66:86:11:3e:b9:e2:42:
27:00:a5:44:70:45:ad:75:a8:7b:a4:43:c8:23:38:52:eb:a7:
1b:f6:6a:b3:ca:f1:ec:4f:cd:57:92:31:0d:67:f3:9a:db:cd:
18:4a:df:64:69:b2:be:3c:fd:f0:9d:9f:c7:0e:d6:bb:85:45:
8e:d5:2d:8d:52:a7:26:88:b0:0f:43:ca:b5:71:64:ae:d2:de:
11:07:38:5a:31:c1:b2:2b:87:03:9e:44:66:63:64:75:5a:17:
4f:1a:72:69:17:78:5d:0d:cd:7d:2d:bb:9f:9a:57:92:ec:b2:
89:b5:38:06:47:02:72:bc:40:8b:22:1d:75:71:90:16:2a:fd:
e8:ef:1f:b6:f1:a1:78:65:e4:d0:3d:fc:ac:3a:e4:b2:4e:51:
a2:b9:46:d1:23:70:86:38:51:94:68:d8:cf:24:b6:fc:36:4b:
0b:0c:b8:c2:5d:c3:bf:db:c4:87:ce:7f:12:3d:b9:05:ac:52:
b6:aa:2c:e9:53:ae:72:2d:3a:5d:52:1a:a7:ca:3a:6c:10:20:
95:01:7e:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:54 2024 by rpki-client on console-fra.rpki-client.org