Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/174A46A078AE11EEA160FA8A4AD9E6FC.roa
File: 174A46A078AE11EEA160FA8A4AD9E6FC.roa (raw, json)
Hash identifier: tEOfZ+CTYt3bcR1t73ouU5KkK6le3/WXH5rA8XwBh0M=
Subject key identifier: 62:C7:99:B8:08:31:3E:D2:5C:BB:10:7A:3E:CC:21:F7:29:2E:19:86
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4B23
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/174A46A078AE11EEA160FA8A4AD9E6FC.roa
Signing time: Wed 01 Nov 2023 11:59:21 +0000
ROA not before: Wed 01 Nov 2023 11:59:17 +0000
ROA not after: Mon 04 Nov 2024 11:59:17 +0000
asID: 138678
IP address blocks: 154.196.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19235 (0x4b23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 1 11:59:17 2023 GMT
Not After : Nov 4 11:59:17 2024 GMT
Subject: CN=65423d98-f1ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b7:ba:77:d0:f4:ca:ad:d1:dd:7f:2e:ec:fa:
2d:bb:4d:eb:2d:e0:e4:33:e7:1c:13:2e:02:a7:6b:
b6:20:4c:0a:f5:85:41:3b:1e:a6:c1:48:a8:47:b2:
3c:4a:9b:13:3c:81:59:d4:26:80:c1:03:b6:62:ec:
fb:83:11:e8:da:67:c7:c6:7b:36:c9:56:91:41:a7:
38:9e:81:13:f8:23:3d:61:39:0f:e5:53:17:95:a9:
7b:67:95:52:5b:d3:fa:e2:db:aa:b9:7f:23:4e:5b:
63:82:61:5f:2c:f3:55:1e:a4:fd:94:38:27:0d:07:
a2:da:10:94:c9:5b:a8:e9:3b:2d:7c:fe:e1:7f:f2:
02:ab:85:e2:04:d5:67:e8:ef:28:01:e2:3e:eb:4d:
1a:69:8c:f4:f3:57:fa:08:42:31:67:71:95:b9:bd:
ec:5b:83:ea:16:2b:f5:e8:2e:d2:03:1d:5d:70:7e:
c4:8b:76:2d:77:39:82:a0:d8:36:ba:71:70:f9:5d:
d2:4e:b3:36:fb:c3:6a:1b:b7:cc:64:8b:74:68:5f:
b8:e3:5a:ce:f6:18:e6:25:2d:a1:45:dd:ef:1c:e1:
9a:cb:fa:f6:ec:57:f3:73:19:c3:0f:2c:dc:73:aa:
fb:c7:c0:30:b6:a7:a4:42:ab:93:71:7a:fd:71:49:
87:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:C7:99:B8:08:31:3E:D2:5C:BB:10:7A:3E:CC:21:F7:29:2E:19:86
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/174A46A078AE11EEA160FA8A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.1.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:9b:25:13:19:26:cc:0d:23:c8:c7:b6:a7:e5:a1:a2:e5:ef:
74:68:b6:29:c1:63:67:1c:36:5b:59:e3:53:e5:a6:a6:05:54:
5c:16:7c:bf:08:a8:71:33:18:de:79:a5:07:11:ed:b1:8c:96:
98:03:46:16:9f:fc:9b:74:b8:d0:fe:fb:8f:82:8a:85:e0:30:
a3:a3:04:84:23:cf:fa:6d:b9:32:a5:ef:1d:95:69:a7:86:09:
bd:25:6a:a5:d6:27:e8:57:36:43:5f:37:33:0a:e9:c3:e6:b4:
8b:09:e6:84:56:ac:5e:77:6a:bb:9f:4d:1e:15:c7:87:b1:5c:
6b:00:d4:a4:37:57:9e:f6:3f:0d:c7:b3:cf:71:20:53:be:bd:
be:e3:5f:b7:4a:a5:6e:a1:b1:e8:5a:17:79:f1:c1:04:b7:f1:
19:89:74:50:65:e0:89:ea:76:34:a4:26:35:3b:68:e8:f5:7f:
6d:b2:80:b1:f3:06:2e:69:8f:54:4f:84:7b:05:ce:59:ba:e8:
84:75:9a:d0:08:9f:9b:a3:aa:be:cb:55:02:47:c9:76:ba:5e:
ea:1e:95:ce:40:80:5f:33:39:bf:31:64:db:8e:8b:89:ba:43:
b6:b4:ce:b0:15:2b:34:c4:95:c5:2e:67:b2:bf:97:a8:a2:d0:
e6:03:5a:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:03 2024 by rpki-client on console-ams.rpki-client.org