Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2ED45126278711EE8C0B592C4AD9E6FC.roa
File: 2ED45126278711EE8C0B592C4AD9E6FC.roa (raw, json)
Hash identifier: gaCirD5E2+8CkvtARePoUFWHaygi65q08b3ccr627SY=
Subject key identifier: 02:DF:C5:E4:80:74:16:3F:27:58:C3:6D:E9:56:AD:12:5D:D3:A6:00
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 33B5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2ED45126278711EE8C0B592C4AD9E6FC.roa
Signing time: Fri 21 Jul 2023 05:26:46 +0000
ROA not before: Fri 21 Jul 2023 05:26:42 +0000
ROA not after: Thu 13 Jun 2024 05:26:42 +0000
asID: 7018
IP address blocks: 154.198.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13237 (0x33b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 21 05:26:42 2023 GMT
Not After : Jun 13 05:26:42 2024 GMT
Subject: CN=64ba1715-1d86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:29:c5:c9:56:78:df:ff:14:48:8e:9d:8d:55:
74:f6:4c:60:1b:4b:49:b1:22:e8:a0:6d:2c:c5:b9:
3b:99:8a:00:87:bb:74:30:81:fd:e4:c4:5b:99:41:
42:8e:24:5b:99:47:11:0e:08:6e:8f:ad:c5:3d:5e:
e8:dd:a4:55:be:c6:1b:c6:33:42:cc:d1:2e:a3:97:
cd:30:ec:4c:02:12:6f:b1:4e:ec:30:0a:fe:11:dc:
15:6d:6e:c6:b6:5d:ae:e0:86:81:9a:36:df:1c:6d:
8c:10:00:19:6c:f9:00:86:a7:99:07:61:ce:23:ca:
d4:c9:d9:29:cf:c3:b9:e1:6b:06:e6:45:bd:17:3e:
b3:89:fc:eb:e4:85:70:6b:05:f7:95:c0:93:72:19:
bb:d5:7b:20:b4:d2:97:de:95:89:d7:bd:e6:cf:c8:
22:5c:9f:46:28:41:49:ad:77:96:34:47:30:30:20:
fd:11:72:7c:af:7c:3b:12:c4:21:98:c1:db:fe:7e:
ec:f5:62:5f:89:a0:67:94:16:c4:95:e2:22:d3:fc:
59:13:3f:23:f5:5c:b1:e3:9e:f7:56:7c:f1:b0:7a:
bd:7f:07:d1:01:db:a2:8f:86:e0:62:89:94:9d:4d:
b2:70:ee:ff:ff:a7:21:9c:7f:b3:69:29:20:af:c8:
24:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:DF:C5:E4:80:74:16:3F:27:58:C3:6D:E9:56:AD:12:5D:D3:A6:00
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2ED45126278711EE8C0B592C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.16.0/20
Signature Algorithm: sha256WithRSAEncryption
95:cc:40:5a:79:b6:e5:ec:fe:44:75:af:a5:d7:d5:43:3d:2a:
c6:8a:a3:66:37:18:e8:3a:8b:40:aa:aa:20:0a:95:b2:33:40:
84:e9:45:41:4f:f6:41:bc:08:c0:b0:66:38:10:ce:fb:9b:2e:
cf:d4:6c:28:99:c9:b2:84:e0:91:8b:43:da:e0:c4:d5:b1:c5:
45:12:38:52:5a:e4:f1:86:e6:49:46:15:12:f0:77:5f:56:0c:
bd:41:0b:ce:16:0c:04:e5:1a:56:48:c5:c8:a3:97:9f:58:43:
34:72:34:96:59:43:ba:b9:28:bf:5b:1a:88:6f:bf:01:81:21:
75:14:07:ea:57:b5:3f:ee:06:2a:71:cf:bb:bd:1c:ea:a7:da:
82:b0:6e:3f:bf:ef:cf:2b:26:e9:9d:ec:4c:27:32:28:59:6d:
54:bd:08:49:ac:95:f0:1b:b4:3b:7b:c5:67:56:e9:57:f5:e8:
38:9c:be:7e:65:f4:f3:76:76:72:c2:92:1d:d7:bb:b1:4f:b5:
35:66:30:43:68:07:ca:40:28:99:ac:95:17:18:6c:42:98:64:
63:0b:70:94:b7:a8:59:78:a7:21:dc:43:47:09:3e:c4:18:59:
ae:da:4b:02:5e:65:b7:6a:11:7c:9b:31:7f:4f:db:58:82:d4:
b3:d5:9a:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:05 2024 by rpki-client on console-ams.rpki-client.org