Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B18743C670D11EE9BEBD7404AD9E6FC.roa
File: 4B18743C670D11EE9BEBD7404AD9E6FC.roa (raw, json)
Hash identifier: Oa4cZcALBvRn2LsQPbTc0yADyBBqRfWynRTZ63F3ujg=
Subject key identifier: 72:80:B5:C2:B6:B0:EE:19:08:F5:51:50:CC:59:1C:F7:A7:3A:D0:D9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 454F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B18743C670D11EE9BEBD7404AD9E6FC.roa
Signing time: Tue 10 Oct 2023 01:35:29 +0000
ROA not before: Tue 10 Oct 2023 01:35:25 +0000
ROA not after: Sat 28 Sep 2024 01:35:25 +0000
asID: 212238
IP address blocks: 154.207.160.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 30 Apr 2024 00:04:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17743 (0x454f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 10 01:35:25 2023 GMT
Not After : Sep 28 01:35:25 2024 GMT
Subject: CN=6524aa61-ff85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:26:02:64:07:ab:43:30:5f:3a:c6:de:d5:d0:
fe:a1:7c:76:b4:2c:0b:7b:58:4d:4f:ba:79:d4:8f:
eb:e8:01:52:13:f9:87:fd:4c:97:14:01:14:66:a0:
b2:8c:34:99:5a:22:cb:4b:ac:3e:3c:e6:d7:b4:3d:
b5:c9:71:6f:0e:8e:1f:22:3c:22:e2:b0:89:cf:08:
e1:1a:1d:fc:b3:95:14:15:06:f4:fd:b1:09:3f:31:
a9:6e:2e:ba:a0:dd:50:da:35:f5:ee:23:af:e7:df:
9d:86:98:d0:1d:5e:06:36:62:a3:73:8d:40:a3:bd:
3e:b7:da:ff:b2:b5:b6:40:4f:d2:44:29:1d:66:fe:
8f:0d:7f:08:9c:96:f0:d4:97:08:b4:6a:66:96:47:
f8:41:73:0a:97:5e:02:3c:d6:93:4e:3b:2b:42:56:
9d:75:18:2c:d4:42:8d:15:5a:74:48:6d:10:42:6b:
8c:31:72:f9:ec:d0:36:84:f2:8c:a5:a6:91:bc:36:
66:af:29:ed:9f:b6:89:d4:ce:78:20:2a:ec:d4:cc:
8d:81:f6:83:e6:17:47:b8:26:41:43:03:74:25:f8:
59:21:db:2f:c2:01:9e:ee:90:45:df:60:63:93:9f:
39:6e:8a:c6:83:3a:99:c7:d0:e5:e1:a0:16:51:37:
ba:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:80:B5:C2:B6:B0:EE:19:08:F5:51:50:CC:59:1C:F7:A7:3A:D0:D9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B18743C670D11EE9BEBD7404AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.160.0/22
Signature Algorithm: sha256WithRSAEncryption
99:40:db:1e:15:76:f6:fe:b3:83:d0:c3:8d:c1:82:9b:7b:5f:
3d:b7:45:78:f5:ea:00:0f:42:f4:59:6c:f1:e9:88:94:52:c5:
30:6e:a9:b0:bd:e0:b0:be:b1:7a:4c:20:df:ef:21:a9:35:89:
62:3f:78:79:88:54:1d:b3:2b:23:be:a2:a7:28:b2:b8:47:96:
b9:64:17:86:b6:76:9b:0b:16:2b:42:02:87:ed:c6:0a:67:00:
8f:e1:a7:4a:4d:c3:af:61:d2:9d:12:d5:77:86:1f:1b:b9:94:
96:b3:0a:d6:38:bb:6f:65:ff:fd:41:2b:1b:f2:f4:c2:79:6e:
f9:7b:e4:d1:46:e3:3a:12:38:e1:27:8b:03:49:4e:34:5e:4f:
51:cb:71:9f:61:2f:f2:7c:a3:14:79:89:9b:f2:a1:48:66:54:
20:df:94:e0:fa:83:94:c7:db:60:16:99:90:76:6f:25:75:f7:
6d:8d:20:51:af:41:1d:31:99:bd:73:2c:ad:f6:a5:2e:af:89:
3c:62:42:57:75:5c:e2:a7:d8:18:02:29:b4:95:bf:70:ad:d3:
c7:f2:59:b5:12:90:c0:29:4a:a9:94:54:03:ed:46:d0:71:c8:
df:0a:71:22:b4:0d:d3:31:b8:cf:d4:eb:11:6b:f5:9e:52:cf:
9d:8f:3c:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 03:10:43 2024 by rpki-client on console-ams.rpki-client.org