Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3C0FAD08040B11EEA2DE50624AD9E6FC.roa
File: 3C0FAD08040B11EEA2DE50624AD9E6FC.roa (raw, json)
Hash identifier: GImTrwlrAh7+4X8ph6+3txiHsUOQhXxDTE4RyvCDrc0=
Subject key identifier: 4F:F4:6D:54:78:D3:C9:3B:5C:56:73:ED:55:23:6E:B8:48:E4:54:4B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 295B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3C0FAD08040B11EEA2DE50624AD9E6FC.roa
Signing time: Tue 06 Jun 2023 01:41:19 +0000
ROA not before: Tue 06 Jun 2023 01:41:16 +0000
ROA not after: Thu 20 Jun 2024 01:41:16 +0000
asID: 45996
IP address blocks: 154.205.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10587 (0x295b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 6 01:41:16 2023 GMT
Not After : Jun 20 01:41:16 2024 GMT
Subject: CN=647e8ebf-7e25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:22:ac:c6:cf:2e:6b:01:7d:27:7a:d6:79:3e:
89:5a:34:0e:72:76:06:b6:82:8c:c0:8d:47:89:d2:
ef:45:68:fc:63:c6:7c:38:52:fe:df:24:18:7a:ce:
1c:ca:e0:5f:20:73:4e:79:6d:9a:0e:00:88:c6:85:
f5:a9:94:a3:5e:a7:5d:97:cd:c9:ad:27:3b:a6:33:
80:38:67:9c:63:1c:0e:17:6e:95:e2:8c:2c:73:33:
73:df:48:b4:a3:39:f4:ed:da:6d:b5:ac:90:55:31:
ee:05:a8:7e:37:32:35:54:78:dc:0f:6e:f5:3e:a2:
a2:90:9a:58:8c:82:fd:50:6b:bb:1c:eb:74:8e:de:
54:b6:66:44:b0:f4:2c:0e:06:8c:46:68:2c:9c:01:
df:e6:33:14:e3:b2:e0:db:c6:98:55:27:52:67:5a:
c8:f9:47:56:38:63:e3:bc:af:15:a1:64:89:20:94:
cf:49:c2:69:4f:5f:29:fa:f2:c4:53:3f:c9:fd:53:
82:64:a9:5b:94:b4:88:28:ac:3a:be:fc:9e:a6:ae:
89:24:d6:14:fa:76:ff:09:2c:85:79:d4:de:12:ef:
5e:69:f3:6e:43:73:42:3a:88:d9:65:82:37:cd:f3:
6e:2a:86:b2:f5:b0:89:38:c5:80:39:65:b2:f0:1d:
fa:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:F4:6D:54:78:D3:C9:3B:5C:56:73:ED:55:23:6E:B8:48:E4:54:4B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3C0FAD08040B11EEA2DE50624AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.2.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:e2:96:3e:b3:5a:35:3a:95:91:cd:a1:93:f5:5e:d7:7f:3e:
28:18:61:28:2e:8d:65:24:77:4c:00:42:09:65:3c:ab:c2:d0:
63:a6:d1:9a:d4:33:32:45:95:87:eb:86:ca:9b:39:47:03:9d:
0a:20:b7:82:41:e3:a0:77:ca:7a:f3:3f:aa:98:fd:2f:71:a4:
5e:31:11:ca:82:ff:f3:41:7a:20:45:82:d8:d8:cb:2a:42:2e:
43:48:0d:85:33:1c:03:19:ee:1a:07:43:80:86:21:63:5a:01:
3e:e0:38:ee:1f:84:6b:c8:81:3d:c7:02:8f:b5:ff:ca:f5:21:
b0:94:a7:b7:b7:f9:d9:2b:1b:3e:7c:d2:7f:3d:40:ba:cf:67:
f8:e2:14:ea:f9:6f:a1:d4:11:80:8d:57:2d:63:2d:c8:90:a8:
4c:b3:48:5f:b3:ef:e7:d8:60:1d:42:1c:f5:3b:12:2f:6e:0e:
37:5b:a8:59:d8:e4:b0:a9:0e:35:57:1c:4b:97:91:27:d1:cb:
29:95:0e:3b:0f:00:cb:7e:ae:14:7a:ca:67:7b:c0:15:7c:e0:
79:79:9d:4f:b7:69:f7:3c:ed:d9:5c:ee:f6:71:7c:96:7f:2a:
7c:03:f4:c5:4b:8a:15:04:6e:d7:19:4e:26:a1:12:14:6a:46:
fe:12:4f:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:06 2024 by rpki-client on console-ams.rpki-client.org