Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/42A822A4277D11EEBC358C0F4AD9E6FC.roa
File: 42A822A4277D11EEBC358C0F4AD9E6FC.roa (raw, json)
Hash identifier: IJ7wWgd3kOFQXpcxOzJwY4GUkyn+S4wn8ZuekNLgOHQ=
Subject key identifier: FC:47:E1:A0:8E:41:0B:E5:EF:15:61:4F:A9:6C:07:4B:AC:4B:60:30
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3361
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/42A822A4277D11EEBC358C0F4AD9E6FC.roa
Signing time: Fri 21 Jul 2023 04:15:44 +0000
ROA not before: Fri 21 Jul 2023 04:15:40 +0000
ROA not after: Thu 13 Jun 2024 04:15:40 +0000
asID: 7018
IP address blocks: 154.85.104.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13153 (0x3361)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 21 04:15:40 2023 GMT
Not After : Jun 13 04:15:40 2024 GMT
Subject: CN=64ba0670-b0c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:db:db:bf:f9:2f:8f:d3:1c:8c:54:9d:de:da:
09:1c:13:3d:90:48:58:68:81:73:4e:2d:4a:3a:f6:
ca:d5:50:41:23:67:8a:94:6f:e5:0f:47:9b:6e:9f:
b6:86:98:36:f1:cb:97:0a:ae:99:66:38:44:c1:e2:
41:08:4b:bf:fd:00:6b:9e:37:71:50:c8:45:c5:06:
76:16:51:8e:01:57:64:b1:f3:7c:81:48:f1:49:6f:
57:75:67:c2:85:81:9a:2d:3f:a9:88:9a:87:e1:2d:
72:29:76:7d:ed:43:6c:18:5f:1f:fb:52:21:66:7e:
f7:b0:d6:48:25:6e:35:91:6d:e8:02:bc:63:0d:d0:
64:b9:8e:43:e4:70:d8:e4:43:88:8e:a4:39:9a:bb:
1b:1a:4a:6e:17:d4:7e:e9:39:cd:23:a6:e1:08:4b:
3e:e7:8b:c6:da:72:06:e4:e7:87:3e:48:56:45:8c:
c7:1c:c1:06:17:6e:fd:87:f0:69:8d:4b:a3:9e:0e:
9e:d2:41:70:f1:c9:90:05:51:7d:18:1a:f4:e9:93:
3e:07:e6:cb:9a:c2:92:bf:2c:84:03:81:f9:0c:cc:
00:9a:4f:ee:d9:8e:1d:99:e5:15:eb:7a:2e:86:e3:
1a:5d:0f:4d:52:50:7e:8e:33:d9:ce:92:4b:8c:11:
a4:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:47:E1:A0:8E:41:0B:E5:EF:15:61:4F:A9:6C:07:4B:AC:4B:60:30
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/42A822A4277D11EEBC358C0F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.104.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:c3:38:42:0b:c8:51:f9:c3:f1:64:3e:ce:c6:9a:13:31:a6:
50:8c:fc:c1:10:5c:87:37:5f:23:65:6c:fe:21:d0:cc:fe:03:
bb:0b:7e:c2:5b:25:3b:da:af:46:6a:3b:7a:bb:3a:0d:89:60:
c0:2c:94:93:e0:5f:dd:d0:03:5b:8f:ee:64:e4:b2:ef:d4:62:
31:63:ad:7d:ae:10:11:99:4d:01:53:b4:70:99:5e:f1:4a:40:
11:60:bc:02:a9:65:0f:07:3d:5b:48:7d:28:eb:e1:e6:6a:0d:
a3:ec:5f:5c:ee:9a:bb:f7:a1:06:7e:6b:54:2e:59:c1:01:be:
71:ef:a7:7f:48:bd:00:f4:0f:1e:4d:2b:09:0b:fd:1c:9f:1a:
e2:6a:11:f0:dc:1f:8c:69:16:15:c3:93:db:7a:2f:48:fc:67:
ce:db:b2:b4:85:b2:79:64:00:80:a3:c2:c4:c9:7c:7e:b7:d9:
f8:af:19:96:e5:f3:4d:76:d4:1c:e8:23:c2:a1:3d:68:5b:06:
64:0d:db:c9:80:4e:6a:c1:1f:27:e4:cb:fd:33:e9:6c:2c:31:
29:2c:07:cb:c1:75:c1:47:23:cc:50:39:50:71:47:aa:9e:26:
da:9f:db:a7:29:7a:e5:5a:6b:65:31:7d:e5:9e:cc:10:c7:a4:
f6:65:9b:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:07 2024 by rpki-client on console-ams.rpki-client.org