Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0EF8434CF74A11EE9E28955C017001B1.roa
File: 0EF8434CF74A11EE9E28955C017001B1.roa (raw, json)
Hash identifier: cgt+4+pt6MRqNEUG5xCC8aCr/J4J+FeMe4hbPfrpTHU=
Subject key identifier: 78:32:86:CF:82:8F:CF:AE:97:F6:AF:F2:F7:5E:49:CE:72:87:70:67
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AAF6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0EF8434CF74A11EE9E28955C017001B1.roa
Signing time: Wed 10 Apr 2024 14:53:15 +0000
ROA not before: Wed 10 Apr 2024 14:53:11 +0000
ROA not after: Thu 17 Oct 2024 14:53:11 +0000
asID: 132813
IP address blocks: 154.205.8.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43766 (0xaaf6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 10 14:53:11 2024 GMT
Not After : Oct 17 14:53:11 2024 GMT
Subject: CN=6616a7da-238a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:08:49:af:d0:08:d1:f5:e1:f8:31:0a:5b:d9:
2d:27:08:d3:82:cf:2c:9b:bd:69:f6:de:6f:91:8e:
48:53:52:a3:d2:dc:3d:80:fa:38:0a:a5:13:ac:57:
92:58:dc:b3:37:2c:ed:fe:b5:c4:c0:57:1d:a2:de:
89:88:42:27:18:08:80:eb:71:84:6f:1d:79:bc:81:
67:66:12:03:1e:5d:b7:97:7f:89:a3:b1:df:13:cb:
07:22:b6:9d:17:a9:a3:48:0a:a3:64:82:e6:a6:a8:
40:69:e3:0a:56:b0:18:6e:7d:d9:d2:8c:c1:0f:26:
1e:ac:9e:8f:ea:43:0d:9f:6f:16:77:c0:86:79:b7:
9d:6d:39:31:d4:63:f3:3e:81:6b:99:43:22:15:a0:
57:7b:63:11:49:88:6e:15:22:08:b4:24:f8:05:5b:
d4:d0:79:78:be:7a:83:3d:fe:a5:58:be:e7:f5:80:
60:01:ee:97:9b:74:74:75:b2:53:a5:ee:6b:8d:2a:
c6:a0:05:e2:04:ea:24:b5:86:c4:78:6b:58:61:ee:
27:80:85:22:b7:9c:f6:c2:95:63:56:03:67:44:dc:
3a:65:0a:58:1f:d9:75:4f:10:5a:53:b8:3d:bb:5a:
62:64:e6:e8:79:a6:b9:1b:b7:33:7a:47:14:49:8b:
56:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:32:86:CF:82:8F:CF:AE:97:F6:AF:F2:F7:5E:49:CE:72:87:70:67
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0EF8434CF74A11EE9E28955C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.8.0/22
Signature Algorithm: sha256WithRSAEncryption
b4:d6:8d:5c:6e:c1:17:e1:34:20:8a:ec:92:a8:4d:07:94:4c:
83:e0:e2:d2:a7:62:5f:34:e7:55:95:50:46:bb:a5:4e:fd:ed:
27:d8:e2:93:d3:fc:6f:73:76:34:fa:71:da:86:b7:f7:d5:4f:
b9:a8:fd:c1:2e:2a:90:5c:28:e7:d0:1d:41:f3:7e:86:6e:ad:
83:a5:af:46:ca:f4:e0:2f:86:2a:91:84:da:13:c4:91:d2:9e:
b6:d2:ab:11:7b:54:04:05:03:b1:e0:9c:57:be:a3:d0:7c:09:
5d:74:ff:4d:50:6f:bc:d7:12:88:34:c4:d9:96:26:d0:33:94:
a9:fd:2e:4f:28:31:b5:21:bb:81:da:b9:98:fe:20:2d:b5:c7:
7b:00:a9:b7:9f:01:b0:7a:65:1a:95:a8:fe:f4:9e:7e:1f:22:
90:f7:4b:fe:fb:fc:c7:d9:a0:15:97:c0:9c:a7:e1:49:a3:07:
b4:8c:8c:d5:f4:eb:76:cd:07:e4:39:36:d6:a0:b6:62:5e:9b:
c7:8c:cc:61:aa:1d:1f:2c:c7:81:b8:d8:fd:1d:bf:b1:b9:72:
f8:84:8d:1a:8e:67:01:e0:35:a8:fa:72:d2:7d:b2:6e:80:52:
83:1e:55:1e:a5:1d:6c:40:85:c4:a7:70:a1:ae:0c:09:f8:5f:
b3:76:23:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:02 2024 by rpki-client on console-ams.rpki-client.org