Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8365E56406D011EF867C57F5007001B1.roa
File: 8365E56406D011EF867C57F5007001B1.roa (raw, json)
Hash identifier: iHxCHTj2+AKt80kIW/11eB08BkaI5vDJwyDeI7bHcNA=
Subject key identifier: 1B:39:F8:55:6F:30:43:1F:71:B9:85:A0:63:4D:44:FA:20:27:9D:32
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B2A9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8365E56406D011EF867C57F5007001B1.roa
Signing time: Tue 30 Apr 2024 09:03:30 +0000
ROA not before: Tue 30 Apr 2024 09:03:27 +0000
ROA not after: Sat 25 May 2024 09:03:27 +0000
asID: 7018
IP address blocks: 154.206.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45737 (0xb2a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 09:03:27 2024 GMT
Not After : May 25 09:03:27 2024 GMT
Subject: CN=6630b3e2-ad8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:41:8c:19:ae:ba:4b:5e:81:05:d3:dd:f8:82:
4d:e6:47:14:c5:82:2c:c8:8b:fb:89:34:8d:2b:c6:
55:99:5a:1a:26:e3:b3:aa:31:e6:3b:e3:3d:12:69:
35:ee:f9:4a:ad:62:09:10:c1:91:6d:f9:62:90:52:
c7:48:41:b8:e2:f8:40:54:78:d8:a2:da:a3:69:75:
a6:1a:0d:d2:b8:66:32:7f:6c:7b:df:25:69:6b:3f:
fd:2c:0d:95:40:98:5e:45:dd:75:72:80:6b:a0:81:
49:0a:fe:9e:5a:04:e6:1a:6a:65:ba:74:93:34:4f:
ac:14:d0:bb:33:fe:c6:14:61:9d:28:8f:c3:f9:4b:
b7:87:16:71:fb:5c:a1:23:1d:1e:4f:34:4c:eb:10:
5d:29:33:9a:d7:ed:6b:8b:e6:f4:69:e1:31:60:47:
44:49:23:a7:56:36:d9:db:6f:2a:52:6f:dd:32:70:
f0:cb:82:db:c5:66:cb:0c:0d:cf:ba:cb:ec:33:53:
38:49:20:25:2c:2d:f3:84:26:ff:07:01:14:81:f0:
08:57:09:3e:c1:de:f2:b0:32:cc:69:d3:3f:78:83:
ca:98:9f:b5:60:73:4e:25:09:7b:fc:38:33:21:11:
6e:b0:8f:2a:21:9b:b2:ec:8f:2d:81:cc:6a:2b:f2:
92:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:39:F8:55:6F:30:43:1F:71:B9:85:A0:63:4D:44:FA:20:27:9D:32
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8365E56406D011EF867C57F5007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.16.0/20
Signature Algorithm: sha256WithRSAEncryption
a7:70:07:41:47:79:d2:44:38:77:26:f0:ae:56:23:2c:e5:11:
03:53:98:9e:a2:ab:4a:da:81:18:10:e1:9e:aa:29:ed:f5:e3:
46:55:97:51:35:72:0b:1e:d7:f6:22:d1:8e:54:99:ed:04:c9:
16:e0:13:a5:a1:4f:c0:50:f7:61:68:f2:82:5d:09:b6:43:9a:
d7:cf:71:c1:00:18:03:b1:95:45:ef:e2:82:d8:33:68:95:99:
f0:34:d2:95:75:6b:a4:1c:8a:51:ed:9b:2f:72:ad:f0:d3:f7:
e0:01:ec:88:63:9c:a8:b5:79:d7:ed:6b:2a:6e:19:43:06:6a:
16:ea:d3:ad:b0:5a:b2:08:c0:73:fd:a8:42:db:8b:59:7f:55:
fb:c6:1b:eb:c4:da:d8:ec:e8:32:4a:a4:dd:a4:f4:f9:df:17:
3f:c6:2d:3d:62:a6:da:9e:00:f8:90:ff:33:f9:04:44:9a:dc:
17:07:9e:1d:31:ee:89:52:51:ab:44:02:58:74:97:35:2d:5b:
f9:38:c1:aa:21:ca:86:44:a9:48:5d:b6:cb:b5:92:1f:42:62:
02:32:e9:2b:46:f3:01:35:4d:fa:c3:0b:9f:57:78:e6:87:a9:
67:a7:32:1f:ab:80:ef:b4:a1:c5:4a:e0:62:a2:59:25:5d:53:
f5:0a:4a:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:25 2024 by rpki-client on console-ams.rpki-client.org