Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5C96B53A16F811EEB8A6E82F4AD9E6FC.roa
File: 5C96B53A16F811EEB8A6E82F4AD9E6FC.roa (raw, json)
Hash identifier: oocU4LF2Jp1FPLAiFeY7X/c557XnkBRHCSGEZQN6QPg=
Subject key identifier: 0A:F9:6D:92:A0:19:C1:DE:35:E1:4E:51:36:95:F4:CA:F7:BE:31:E8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2F53
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5C96B53A16F811EEB8A6E82F4AD9E6FC.roa
Signing time: Fri 30 Jun 2023 03:44:06 +0000
ROA not before: Fri 30 Jun 2023 03:44:02 +0000
ROA not after: Tue 25 Jun 2024 03:44:02 +0000
asID: 141167
IP address blocks: 154.93.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12115 (0x2f53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 30 03:44:02 2023 GMT
Not After : Jun 25 03:44:02 2024 GMT
Subject: CN=649e4f86-6cc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d6:90:2e:3c:82:0c:01:2b:ab:dc:e2:23:a5:
0c:3c:16:3d:97:4f:c7:4e:97:09:be:ce:e7:9d:0b:
b2:58:32:74:95:3e:ee:67:18:52:d9:bb:e8:5f:a9:
78:36:22:58:71:50:d6:9d:34:4b:fc:99:62:2c:44:
1a:cb:19:03:eb:e3:17:c4:69:fc:44:22:0b:6d:28:
6d:e3:07:b5:ef:5e:bc:cc:d2:7b:61:20:cd:94:1d:
cb:7a:35:af:c2:76:28:d5:47:b9:ea:e0:84:5e:cd:
e9:03:2d:b9:23:92:88:5c:60:43:4f:3d:f1:2a:ef:
ae:d1:76:2b:8c:b9:a0:b1:40:3c:30:1a:da:e3:c4:
5d:ff:94:7b:40:35:f4:2f:6d:28:58:4b:37:a5:62:
cb:df:da:38:9e:62:36:83:d2:e3:c4:e2:9e:00:83:
12:ba:e1:ff:db:90:e8:ce:b8:7d:38:f7:d2:f6:5e:
37:5e:56:6b:4f:17:93:50:8b:dc:01:31:19:8a:1d:
38:22:d6:a8:19:52:2b:9d:7e:2a:c3:b1:52:c2:1d:
5b:b6:26:d6:0d:91:47:28:a5:4f:d0:26:22:6e:ac:
f1:6d:97:54:9f:28:56:2a:fa:59:63:1a:eb:5c:1f:
09:f1:8d:19:27:79:f5:1b:66:7f:a3:08:d3:0d:78:
24:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:F9:6D:92:A0:19:C1:DE:35:E1:4E:51:36:95:F4:CA:F7:BE:31:E8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5C96B53A16F811EEB8A6E82F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.1.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:48:32:23:e7:ef:66:29:c7:e0:92:21:5b:46:e5:6b:87:04:
1a:46:60:24:3b:d8:19:ea:1b:2d:4b:e9:2c:0c:c1:58:af:10:
b7:ee:97:cc:9d:8c:16:6b:21:18:29:67:e8:60:37:7f:94:0b:
65:36:82:e9:27:1b:48:df:81:aa:97:b6:d2:f6:c7:8c:10:fd:
08:51:93:e7:2f:25:82:a5:d5:d7:df:c9:cd:f5:9e:3f:91:9e:
7d:23:eb:05:49:95:d2:4b:be:d3:72:76:16:47:74:46:de:15:
13:76:c2:20:58:5f:62:e6:93:d0:99:27:e3:31:7d:83:cd:d2:
2c:4f:3f:5e:69:d1:6d:ff:40:aa:14:a4:6b:42:56:8f:6a:39:
83:00:1b:f5:7d:14:c6:7e:50:d7:9d:2d:e6:b1:72:a3:8a:20:
89:0b:28:58:72:cc:ee:5d:2b:e8:b7:d5:1b:fd:81:45:b2:33:
62:9c:ce:7a:08:94:44:81:29:99:c2:7d:28:7c:94:df:e5:a8:
32:f7:bd:06:52:3c:57:ff:7a:bf:6d:9d:d7:4e:4a:fe:ad:95:
9f:4d:3b:b7:f2:58:b5:55:ed:41:e6:97:ac:f2:9f:7b:a0:24:
4f:89:2e:f6:75:25:f1:dc:ab:2e:b8:d9:5d:a9:b2:fb:09:ed:
8c:42:f6:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:10 2024 by rpki-client on console-ams.rpki-client.org