Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F6C429D627E011EF93C45EF87CDC24C2.roa
File: F6C429D627E011EF93C45EF87CDC24C2.roa (raw, json)
Hash identifier: tnwcyEeh6BkMCtdi2xmvDq+4gWsxX+HmWwosAh+iw8I=
Subject key identifier: 8C:8F:75:D2:C5:0E:86:EB:5E:28:E4:75:5E:BA:8C:66:C2:EF:1A:27
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: C1BA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F6C429D627E011EF93C45EF87CDC24C2.roa
Signing time: Tue 11 Jun 2024 10:54:24 +0000
ROA not before: Tue 11 Jun 2024 10:54:21 +0000
ROA not after: Mon 12 May 2025 10:54:21 +0000
asID: 140951
IP address blocks: 154.193.186.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49594 (0xc1ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 11 10:54:21 2024 GMT
Not After : May 12 10:54:21 2025 GMT
Subject: CN=66682ce0-99cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6c:3a:e3:3c:8f:6c:e8:c0:95:86:7f:29:dd:
3a:f7:14:d2:0b:3d:b8:9c:07:df:29:62:87:9b:f6:
e3:98:a9:7a:0a:01:44:fc:ff:28:d1:35:23:05:8a:
6f:a7:14:41:29:b8:3a:03:7a:94:1e:14:fd:d5:c2:
e2:47:dc:b2:fe:09:cb:f0:15:64:5c:90:ed:f4:4c:
4e:cf:ad:36:73:a5:db:2b:5e:4c:e9:a9:17:74:13:
ca:dd:69:4c:80:92:1a:16:15:7f:66:e5:2e:45:84:
da:62:36:10:b7:7f:ea:15:3e:4e:de:7e:3a:2a:f7:
53:88:45:43:4a:b0:89:b9:8b:00:49:4e:12:15:ac:
b6:21:8c:9a:58:17:de:76:4b:8d:a3:37:01:a5:41:
6e:3e:d0:01:2a:e5:68:b2:1e:37:46:a7:41:b2:3c:
c7:ae:a3:f7:75:e6:b0:8c:f9:f3:c4:6e:f1:ef:c7:
b8:0d:00:3a:1f:e5:2a:97:94:ca:83:14:19:28:43:
66:09:b1:d3:ea:28:23:e3:50:77:20:33:db:ca:e8:
86:6c:dd:70:61:87:d4:74:87:1a:a9:57:0a:58:52:
dd:f0:65:16:d2:28:82:45:73:d0:7f:2c:6f:0b:d4:
9c:9f:10:76:fc:52:7c:14:69:a2:81:ae:2f:f1:4c:
b2:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:8F:75:D2:C5:0E:86:EB:5E:28:E4:75:5E:BA:8C:66:C2:EF:1A:27
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F6C429D627E011EF93C45EF87CDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.186.0/23
Signature Algorithm: sha256WithRSAEncryption
30:32:bf:1e:f7:1c:3b:39:ac:05:18:7c:62:a2:87:ff:1b:a1:
6c:d2:1e:4b:9c:08:72:b3:6b:e0:78:7e:c4:0a:f8:6a:b5:56:
e8:85:df:3b:e4:43:f8:4a:73:71:9f:a6:ba:df:37:49:a8:15:
d9:9d:09:fd:e8:9a:9d:0b:af:d8:fa:8b:da:84:cd:b0:6c:df:
0c:c2:4e:b7:30:f0:5c:39:d3:75:1e:94:6d:af:3e:4f:1d:a9:
55:97:85:b4:62:40:35:be:c9:ea:75:5b:91:19:cf:b3:b1:4f:
67:58:04:ff:b3:31:c0:f6:2a:7f:aa:04:36:44:3c:13:42:2f:
8d:64:a5:1c:f8:69:15:50:80:dd:2d:99:bd:cd:34:5f:2f:b3:
37:7d:7d:8d:1f:c6:aa:30:9a:fb:d5:ae:4a:67:eb:91:6e:06:
ad:92:e6:d6:c1:8e:93:22:15:91:a3:82:75:61:71:42:29:d5:
f4:bb:67:ff:30:be:d9:c0:a1:bd:e5:6e:6a:54:96:be:67:5e:
ec:58:8f:a1:4e:ec:23:5f:42:33:9e:7d:42:87:12:2d:02:4e:
b7:5d:a8:a8:46:ec:52:34:aa:a0:c3:63:8f:c6:93:14:25:06:
fc:8d:19:e7:7d:a7:b1:d1:75:4b:be:9c:54:17:ba:fa:bc:91:
5a:d5:88:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:31 2024 by rpki-client on console-fra.rpki-client.org