Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/499F282CF91611EDAC7511154AD9E6FC.roa
File: 499F282CF91611EDAC7511154AD9E6FC.roa (raw, json)
Hash identifier: Fx2oej0dsWz2bJujxFkvkIYeWsg1JsWcX2e/oyptxAQ=
Subject key identifier: 56:BB:D7:B1:2E:C9:E1:40:1F:3C:34:37:C9:91:F3:BC:6E:12:05:C2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 262A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/499F282CF91611EDAC7511154AD9E6FC.roa
Signing time: Tue 23 May 2023 03:02:44 +0000
ROA not before: Tue 23 May 2023 03:02:41 +0000
ROA not after: Wed 15 May 2024 03:02:41 +0000
asID: 399674
IP address blocks: 154.94.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9770 (0x262a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 23 03:02:41 2023 GMT
Not After : May 15 03:02:41 2024 GMT
Subject: CN=646c2cd4-72be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:6d:a9:12:33:90:bc:e0:09:85:3c:bf:17:2f:
1f:24:b3:a6:76:20:09:c0:a4:14:50:da:11:5a:86:
8b:b9:5a:e0:d9:f0:c9:5d:32:22:c4:fd:0f:3f:5f:
97:91:a2:e5:71:b0:99:ef:79:22:a8:c0:fa:e3:a4:
66:06:cc:cc:7f:73:42:c1:d8:34:b7:ce:38:bf:5e:
5a:10:58:cf:73:9d:e6:ca:03:e9:ef:2e:cc:b1:e4:
63:92:3b:4b:73:48:46:68:00:f5:e5:e0:8a:41:77:
a4:74:86:67:50:61:d4:d9:3d:81:f2:cf:c7:ba:75:
88:b5:6b:4a:4c:58:fb:0a:30:98:54:5d:cf:b7:8e:
0b:01:85:10:9a:21:9c:0c:40:d0:75:80:c2:6e:5c:
50:81:41:c6:2c:02:34:a6:e2:04:2f:a7:d9:c9:28:
57:d5:06:6b:9a:99:94:dc:4a:b7:c8:99:5d:25:ec:
84:b8:12:72:6f:8c:d6:2c:22:fc:f8:ca:73:8e:32:
2c:d5:4f:02:4e:a6:96:ff:dd:7c:00:10:b3:db:a8:
cc:22:6d:71:4f:e0:0f:cc:1f:01:bd:a8:49:21:71:
5b:11:44:a5:89:16:ac:f2:24:62:fe:2c:d2:d1:00:
eb:37:f2:45:c6:7a:34:c9:e7:d7:e6:96:fe:20:0c:
8d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:BB:D7:B1:2E:C9:E1:40:1F:3C:34:37:C9:91:F3:BC:6E:12:05:C2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/499F282CF91611EDAC7511154AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.224.0/20
Signature Algorithm: sha256WithRSAEncryption
46:18:cc:1a:82:a2:5f:1a:65:21:fb:70:8e:9c:38:42:d6:b0:
00:05:08:74:af:60:e7:4c:81:6b:35:81:65:a3:69:21:a2:1f:
0e:f7:92:6a:4d:c5:56:6e:60:fe:df:ba:b2:0c:27:8d:92:a4:
87:08:9d:f9:db:ba:1d:f6:ba:a2:95:51:e4:b2:3e:1d:e0:bc:
b3:55:b2:da:23:d9:9e:c5:33:35:cf:bc:56:ec:5a:3b:2d:67:
5c:cd:51:bb:de:de:7b:bf:9a:80:04:00:5d:54:36:f9:e0:d3:
3c:64:3c:d6:1b:63:e7:63:c2:8d:8f:d4:c9:fe:bb:05:2f:4a:
af:52:2d:58:9d:af:de:39:c0:bb:8b:7d:39:b6:20:8f:cf:33:
a6:87:08:7e:38:73:54:3e:fe:cf:ce:58:2b:d6:68:f5:2a:a7:
0e:98:9e:dd:ab:15:f2:f1:c8:54:c0:0a:37:25:a6:28:3e:56:
3d:e9:50:36:e6:28:73:c6:80:77:3f:d0:8e:08:16:0c:3f:37:
4c:e4:e9:00:13:bc:ad:7e:12:1b:97:4d:8b:ea:95:31:f3:8b:
e2:dd:e7:a4:1e:be:33:19:a3:4c:4b:21:0a:07:13:37:32:57:
de:45:9a:00:94:9d:ca:b9:17:3d:d5:52:ad:2d:87:58:67:26:
cf:1c:87:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:08 2024 by rpki-client on console-ams.rpki-client.org