Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/40CD1AECFEA211ED9205A96C4AD9E6FC.roa
File: 40CD1AECFEA211ED9205A96C4AD9E6FC.roa (raw, json)
Hash identifier: hB1YcVpZMx+SfXBb3wLnl6mMULCibU/DW9q9aAkYz4M=
Subject key identifier: 55:67:39:D0:8F:B4:1B:2B:BB:A1:E5:C8:7E:E5:E6:5A:E1:DA:68:92
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 286C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/40CD1AECFEA211ED9205A96C4AD9E6FC.roa
Signing time: Tue 30 May 2023 04:27:14 +0000
ROA not before: Tue 30 May 2023 04:27:11 +0000
ROA not after: Wed 15 May 2024 04:27:11 +0000
asID: 63888
IP address blocks: 154.207.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10348 (0x286c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 30 04:27:11 2023 GMT
Not After : May 15 04:27:11 2024 GMT
Subject: CN=64757b22-67d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f5:1c:97:48:82:be:e6:4f:a2:4a:ad:aa:d2:
0b:3f:6b:f4:f3:b8:81:10:9c:a1:d5:ee:e8:fc:d8:
2f:7b:72:a9:67:51:0e:7f:2e:ca:81:4e:07:45:21:
23:89:b0:fc:7c:7f:a1:42:d6:70:bd:33:de:c6:5b:
21:b3:f6:e9:a9:b5:2e:e5:4c:9d:cf:49:92:94:a5:
8b:ee:44:93:77:64:84:3d:de:bf:3e:37:18:77:2c:
4b:2e:eb:c7:39:be:36:7f:c5:cd:e0:4e:37:13:78:
82:04:52:8f:57:e9:5a:cf:4a:ff:bd:e4:1f:8a:68:
8d:9a:31:af:d3:bd:45:f9:d1:d5:5e:c0:34:44:b0:
b1:59:2d:83:7c:73:9a:4a:41:91:ac:8b:60:d1:56:
0a:b4:85:e8:b9:ab:e5:ec:fe:ea:45:d5:19:23:bf:
d6:86:77:75:8e:07:8a:03:99:18:da:48:72:05:00:
a1:96:7a:f0:f6:15:1d:ae:8a:95:7c:1c:47:f3:c2:
f7:37:a5:50:e7:86:ee:f2:0c:a8:0c:f9:ce:00:7b:
0c:e6:79:18:43:0c:c4:9c:57:4d:eb:cd:ae:0d:38:
51:2a:89:db:44:42:b7:ea:60:cb:af:ff:eb:eb:37:
47:e2:a2:09:d3:7e:01:b6:dd:63:7b:b6:a8:fa:de:
86:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:67:39:D0:8F:B4:1B:2B:BB:A1:E5:C8:7E:E5:E6:5A:E1:DA:68:92
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/40CD1AECFEA211ED9205A96C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.64.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:cc:0d:ad:04:1f:96:09:d7:94:c7:92:4f:84:75:b7:b5:b9:
54:d3:68:5b:8b:0c:5a:4a:dd:94:96:cf:60:5d:69:8b:65:cd:
de:1d:23:23:87:23:96:75:70:b2:66:fa:22:e6:cc:5c:e8:80:
1a:c0:19:32:81:6a:09:22:5f:92:f5:12:a9:54:bd:6b:44:ff:
27:a6:30:e3:29:a3:b6:6a:ef:14:da:a2:ad:01:03:fe:f7:c3:
b2:1f:d5:9b:5e:eb:96:de:41:9b:8a:d7:fe:e4:db:b6:30:2c:
0c:6f:a8:7c:67:61:f1:83:78:01:7b:a1:36:db:3f:f3:ae:9c:
6c:81:5c:35:ab:d9:dd:d1:3b:e2:90:07:1d:e6:6f:53:12:fe:
89:ca:a5:ac:7f:db:27:04:99:55:f5:1e:7b:18:a5:ec:74:e7:
30:91:af:f4:09:4f:1a:cc:ce:d7:0e:a8:f2:60:f3:11:52:50:
fb:25:26:8a:e6:21:6e:e1:a8:a6:2d:a1:b1:9c:66:88:fa:fb:
5d:a8:2f:10:95:8c:c6:5b:78:e8:2f:c7:ab:8c:f0:32:eb:5e:
63:0d:23:6c:5e:83:1f:99:65:7f:04:b1:17:b0:03:96:d0:8c:
04:02:12:df:3e:c6:65:9a:53:64:29:a5:61:23:f1:8e:17:a8:
71:60:c5:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:07 2024 by rpki-client on console-ams.rpki-client.org