Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7596F62C539C11EE910C56544AD9E6FC.roa
File: 7596F62C539C11EE910C56544AD9E6FC.roa (raw, json)
Hash identifier: HhexpFp5r0qHEJomZoSCukM0viu7q6GxPNFMt7ZLv58=
Subject key identifier: 41:20:D2:A8:26:0D:76:4A:73:B4:4D:E3:2E:E8:F2:C5:BE:FE:9D:D1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3D6D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7596F62C539C11EE910C56544AD9E6FC.roa
Signing time: Fri 15 Sep 2023 07:49:55 +0000
ROA not before: Fri 15 Sep 2023 07:49:52 +0000
ROA not after: Sat 08 Jun 2024 07:49:52 +0000
asID: 142403
IP address blocks: 154.92.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15725 (0x3d6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 07:49:52 2023 GMT
Not After : Jun 8 07:49:52 2024 GMT
Subject: CN=65040ca3-1d37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:59:ab:98:47:a4:63:03:04:0a:fb:2c:75:ef:
2d:21:24:67:61:48:42:17:22:b5:d7:fc:f0:0d:6a:
2b:37:d4:92:cd:37:bd:dd:2d:6a:75:da:31:2d:8e:
7e:6a:33:da:d5:cd:43:68:70:3e:4d:37:ad:d5:a4:
9f:46:75:8d:60:6c:12:bd:70:31:ba:c2:d9:40:1a:
29:e6:57:f9:b7:64:af:8c:1e:9b:6f:25:48:d3:ee:
ab:df:4a:71:fb:e1:fc:f6:79:9e:f0:cb:57:b1:54:
1d:b3:ce:ac:66:70:78:e4:ce:9a:b9:56:c3:f1:c2:
46:2b:bd:b2:97:9b:74:b5:02:a6:8c:3f:61:ac:70:
3a:84:4c:4e:14:20:90:6a:30:cf:68:55:b1:f6:90:
ac:2f:cf:d0:01:2e:02:05:cc:3c:1d:13:a3:52:79:
de:47:84:b6:6b:2a:0c:0b:17:da:56:0a:b9:38:80:
97:d4:06:5a:91:76:be:68:85:6a:e2:bd:c6:45:c2:
89:ce:67:21:40:3e:55:16:64:c2:14:e2:36:cc:35:
24:dc:72:fa:9a:c4:fc:86:8b:2b:45:f5:e9:ce:b1:
f5:c7:f6:93:0a:7d:97:1e:7d:5e:09:33:4c:8f:0e:
63:04:63:c7:60:9d:81:c5:67:ff:f8:79:28:f1:59:
9c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:20:D2:A8:26:0D:76:4A:73:B4:4D:E3:2E:E8:F2:C5:BE:FE:9D:D1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7596F62C539C11EE910C56544AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.18.0/24
Signature Algorithm: sha256WithRSAEncryption
43:2f:ce:0b:3b:79:3e:f1:d7:7b:ab:01:68:a6:5b:ad:39:16:
c1:08:c0:40:35:ff:66:37:9c:c8:27:c2:07:53:aa:1c:e4:ea:
6f:bd:ad:f9:77:7d:3f:22:35:ad:a9:11:ce:46:1e:1c:41:65:
14:ef:74:53:20:57:fb:78:bb:dd:98:a6:d5:da:df:3c:28:08:
ee:de:8a:1b:4e:9e:bd:f6:80:f4:91:bb:74:62:7f:98:7f:89:
e2:d8:60:7f:b6:ce:48:90:1e:32:fe:4d:89:b7:e4:f4:6c:fd:
2c:73:a0:74:2a:2d:00:77:15:fe:2e:26:e9:d2:33:08:f9:3d:
56:34:d2:ca:d0:25:ab:cf:97:cf:11:95:14:b6:59:8b:49:cb:
8c:f8:c6:c0:78:78:38:d6:07:f9:0a:9c:d2:4b:3c:d0:d9:a0:
68:e6:fa:b5:0f:4f:a9:85:df:1a:63:92:e4:8d:86:8c:60:f2:
c2:23:b9:c1:61:a1:dd:5d:02:fa:92:d3:72:82:8a:d0:7e:86:
2f:b7:a5:38:66:16:50:c4:5a:e7:5c:cf:aa:19:dc:e8:d3:fe:
a8:4e:71:80:8c:24:0f:23:8a:22:24:b7:be:72:41:64:b2:db:
d9:d1:e1:b0:f3:c2:c2:f1:f0:c8:e6:68:b5:98:ad:c8:4a:42:
43:b4:3a:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:12 2024 by rpki-client on console-ams.rpki-client.org