Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/00AF96F686B011EE8A4248504AD9E6FC.roa
File: 00AF96F686B011EE8A4248504AD9E6FC.roa (raw, json)
Hash identifier: A5MF49BBpEEW15DNZgirOnWJJPMzLj3imLBWI+cNDx4=
Subject key identifier: AF:DC:7F:0E:B1:9E:65:0B:23:B8:06:22:41:E1:BA:80:51:56:69:A5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5117
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/00AF96F686B011EE8A4248504AD9E6FC.roa
Signing time: Sun 19 Nov 2023 07:48:18 +0000
ROA not before: Sun 19 Nov 2023 07:48:14 +0000
ROA not after: Fri 19 Jul 2024 07:48:14 +0000
asID: 45996
IP address blocks: 154.205.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20759 (0x5117)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 19 07:48:14 2023 GMT
Not After : Jul 19 07:48:14 2024 GMT
Subject: CN=6559bdc2-3f14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:15:4e:02:1b:e7:ec:31:6c:31:20:df:87:f1:
99:e4:f5:c1:ad:a9:fb:9c:f9:f7:fa:d9:f4:89:d7:
a9:75:33:56:5b:9e:87:53:6d:0a:8a:f1:0a:f4:aa:
fb:87:5f:a5:e0:96:d8:fa:c6:a1:73:da:0d:67:ef:
b5:b7:29:9d:7a:79:e2:27:1f:f6:e0:c9:a3:5c:ee:
57:66:4a:05:07:c7:85:50:78:63:f5:2e:fc:96:12:
6e:ef:d3:9f:5e:77:4a:80:a7:25:bb:d6:94:05:19:
1f:e3:6d:b3:f5:23:8a:d3:50:fc:85:dc:0a:23:d0:
cf:aa:54:9f:98:e8:02:da:9b:de:cc:eb:ae:18:7e:
97:ac:b8:34:54:02:c2:c4:2a:6e:eb:44:f2:9e:e5:
3f:18:2c:f5:45:70:3d:96:f4:47:6b:89:b2:7d:82:
2a:12:a6:b1:3a:70:f2:18:7f:14:dd:ac:cc:38:18:
69:6a:75:54:ed:ae:3e:2a:5c:ac:56:b8:a4:b8:e2:
b5:7e:31:c4:75:ca:85:d7:b8:ae:ce:5d:6b:3a:62:
16:14:d2:1c:94:11:c1:04:14:74:d8:43:fb:77:73:
90:63:47:e7:ef:cc:f3:29:82:04:cc:5e:8d:cc:3b:
d4:7b:1b:36:4d:8d:ee:59:96:d3:79:88:84:62:e7:
b2:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:DC:7F:0E:B1:9E:65:0B:23:B8:06:22:41:E1:BA:80:51:56:69:A5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/00AF96F686B011EE8A4248504AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.2.0/24
Signature Algorithm: sha256WithRSAEncryption
31:07:5d:3f:9d:11:a5:69:bb:1c:9a:f1:9e:5d:40:76:e8:17:
a4:80:f9:21:17:29:64:d0:97:02:d1:bc:3e:84:e0:5d:8c:26:
18:85:c1:e3:9e:aa:bf:b3:e2:63:22:82:48:5b:80:aa:71:b3:
d3:df:bd:36:21:7e:aa:72:ca:45:14:dc:07:df:71:fe:6b:46:
79:34:22:e8:86:2a:e6:e5:74:39:fc:00:fe:9f:19:90:d8:ea:
f7:77:5e:78:c8:13:3b:6d:c4:b0:0d:d9:47:b5:d7:a6:47:3c:
b5:a4:d1:37:a4:ba:20:8e:2a:f0:e3:10:ce:20:af:f8:32:e3:
96:57:7f:e3:96:c1:7d:3f:f1:16:39:0c:20:34:fb:38:a0:fa:
4e:12:67:bf:1e:71:6e:3b:b6:82:44:0a:37:3e:19:ec:5f:25:
05:25:a3:49:45:e9:45:0b:93:74:4c:d2:d5:ec:e8:8e:98:39:
88:62:60:07:0d:b4:1b:08:47:5a:9f:e5:5b:80:99:ee:7d:5b:
cd:33:eb:5e:aa:1f:28:62:08:88:d8:cc:a3:96:43:1a:79:1c:
f9:cc:d9:72:24:c0:99:ae:ce:43:dd:93:f6:31:5f:12:02:f0:
32:6e:8d:38:32:af:bf:4c:ef:cd:04:4c:c8:8b:29:4d:fd:e4:
43:53:c1:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:01 2024 by rpki-client on console-ams.rpki-client.org