Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FF685A82B5A11EE9F3672524AD9E6FC.roa
File: 1FF685A82B5A11EE9F3672524AD9E6FC.roa (raw, json)
Hash identifier: swtOrlwQYyS/WD0n9tHOtO3P2dd98Hk31x9b6/+nVZ4=
Subject key identifier: 4E:B8:CC:B8:F0:6A:A6:51:D6:23:84:61:BB:51:60:92:B5:3A:07:A8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3436
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FF685A82B5A11EE9F3672524AD9E6FC.roa
Signing time: Wed 26 Jul 2023 02:14:18 +0000
ROA not before: Wed 26 Jul 2023 02:14:14 +0000
ROA not after: Wed 24 Jul 2024 02:14:14 +0000
asID: 151196
IP address blocks: 154.212.160.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13366 (0x3436)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 26 02:14:14 2023 GMT
Not After : Jul 24 02:14:14 2024 GMT
Subject: CN=64c0817a-ed05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:8b:13:f2:8f:7a:75:7f:47:b0:96:ea:ad:a6:
06:be:74:17:15:de:8b:cf:8d:af:75:4a:1b:24:e3:
2d:31:5e:97:5e:be:eb:fa:32:90:14:b3:e5:e5:19:
0d:c6:77:20:47:d7:ed:4d:07:70:12:1a:13:78:10:
ee:21:47:57:86:81:22:22:0a:3b:05:1d:25:4f:42:
e5:60:4b:b6:a9:e8:cb:db:58:5f:a0:c8:58:58:d5:
80:dd:cc:e8:76:57:ec:aa:b3:a1:c9:f4:45:b5:02:
2d:c5:f4:4b:72:ac:ec:f2:8c:43:4f:98:39:52:0a:
8b:41:d0:c9:b6:49:d5:f1:91:34:a5:58:38:d5:8d:
37:5e:59:ee:1f:c3:82:3e:f7:69:40:ab:b5:d9:77:
09:43:37:ec:64:63:86:7f:57:ab:49:eb:10:5d:0c:
96:d1:9d:48:ea:86:d6:1e:03:f5:cb:f0:bf:67:f3:
bb:b8:b4:9c:87:50:2a:f6:67:7a:3e:ae:01:3a:83:
f1:3c:5d:8f:d2:ce:d3:14:a4:24:44:fa:ce:c5:b1:
83:0c:4d:7a:68:1b:07:c8:df:60:de:76:7f:66:81:
12:7e:80:be:1b:95:d9:a6:78:f3:25:8a:2d:f8:07:
de:72:56:8b:53:17:63:44:17:78:51:5d:4c:a6:88:
57:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:B8:CC:B8:F0:6A:A6:51:D6:23:84:61:BB:51:60:92:B5:3A:07:A8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FF685A82B5A11EE9F3672524AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.160.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:24:4e:7f:72:ec:ec:b4:c5:fa:93:cf:a8:03:53:b7:f6:a4:
13:e0:a8:d6:ba:a5:1a:92:92:02:88:12:a7:e3:bf:5c:a4:45:
64:b5:96:9f:3e:71:22:20:3f:b8:be:81:3e:5d:11:ce:b8:15:
6a:89:17:3e:c3:ac:a5:d6:cb:01:7c:6a:cc:6b:94:1a:4c:c6:
d2:d4:ff:be:fe:8d:1f:98:88:e0:2a:86:cb:af:45:b2:51:63:
0d:75:94:77:b7:b3:ab:7f:09:87:b0:50:5d:ee:a5:21:61:f4:
d5:27:76:0a:8f:68:bb:54:57:4d:21:81:d2:0b:81:da:14:5c:
d6:99:a1:50:25:72:c8:41:9e:96:69:21:26:e2:db:a2:df:16:
bd:fa:ac:d4:f8:c4:03:ac:24:3f:1f:c9:d3:3a:b8:80:95:22:
6c:9d:0a:f5:53:14:ba:25:b8:33:b9:3a:eb:27:89:8d:4c:fe:
c3:c1:0d:2e:73:21:02:c4:b5:b3:d3:c2:bf:3f:a7:6e:aa:68:
db:28:3e:19:72:74:b5:19:31:70:a9:18:04:3f:9a:08:d8:be:
9a:c7:49:e2:18:8a:ae:d4:9f:94:95:23:de:62:8d:65:2f:63:
3a:2f:de:bd:f6:3b:7e:ad:df:09:3b:08:ac:e4:e6:74:c7:9a:
0d:ee:87:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:03 2024 by rpki-client on console-ams.rpki-client.org