Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/78C63B5A278711EEBBC9172D4AD9E6FC.roa
File: 78C63B5A278711EEBBC9172D4AD9E6FC.roa (raw, json)
Hash identifier: bw4QmUsb/I7vf+dQyQnD7ZSDRGJPfcQC19BC/zn4Dh0=
Subject key identifier: 6A:5D:F3:4D:89:B1:FD:69:42:98:3A:21:35:95:F8:21:23:19:7A:78
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 33B9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/78C63B5A278711EEBBC9172D4AD9E6FC.roa
Signing time: Fri 21 Jul 2023 05:28:50 +0000
ROA not before: Fri 21 Jul 2023 05:28:46 +0000
ROA not after: Thu 13 Jun 2024 05:28:46 +0000
asID: 7018
IP address blocks: 154.195.8.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13241 (0x33b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 21 05:28:46 2023 GMT
Not After : Jun 13 05:28:46 2024 GMT
Subject: CN=64ba1791-8611
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:61:4b:30:3a:e4:78:72:31:85:25:29:ae:81:
21:68:bd:9c:b4:e7:50:2a:b9:88:51:30:2e:0f:e0:
b5:9f:73:93:86:fe:21:d3:48:cc:af:7f:2a:b5:e3:
c1:a1:9e:7f:5b:44:d6:f1:0b:34:e2:e4:c4:08:39:
ed:83:97:0e:f4:4c:3a:48:93:79:38:aa:8b:66:27:
2b:a4:d1:d6:68:65:9a:8e:cb:84:b8:fd:ee:1e:12:
fe:55:b0:4b:58:fb:31:34:3d:ed:70:bb:c2:dd:ee:
35:a0:78:68:dd:d9:95:db:c9:8b:e8:07:36:e1:f4:
10:d2:75:77:3a:f8:df:29:70:36:9b:54:fa:d0:fd:
c1:95:a3:0c:e1:28:d8:a6:36:f6:82:1f:33:43:4c:
df:70:d1:b6:83:d5:f4:d8:08:14:74:b1:96:26:5c:
92:9d:99:16:8b:53:c3:e5:cf:e3:86:52:7f:d3:57:
ee:6b:5c:e8:5d:74:88:17:ef:29:ed:ec:a2:23:ac:
a2:e6:4c:fc:d4:54:cb:3e:2a:a7:ee:06:74:b3:41:
ab:37:f7:ca:c6:8f:7e:d1:a9:a0:db:a4:5e:04:72:
b5:0e:bb:36:f5:b1:28:36:5a:f0:2d:d2:a8:6c:8e:
6c:a1:7a:f2:f6:0e:ae:2b:c7:de:7b:6f:92:3c:a8:
51:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:5D:F3:4D:89:B1:FD:69:42:98:3A:21:35:95:F8:21:23:19:7A:78
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/78C63B5A278711EEBBC9172D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.8.0/21
Signature Algorithm: sha256WithRSAEncryption
42:5a:d8:c7:09:be:82:4f:a0:e4:71:55:ab:95:52:9c:3b:b8:
7c:91:d5:b3:99:80:06:18:ae:5e:cc:57:34:3c:b9:4f:0a:62:
4d:a2:05:5e:c7:19:8a:ab:69:1d:0d:40:30:76:02:b3:94:73:
20:ab:18:05:8e:ec:19:c0:f1:2a:be:31:bd:c2:f8:8f:e4:f8:
70:62:10:9c:af:1b:6b:6d:41:08:78:24:b8:05:74:39:22:8e:
dd:0c:d8:33:73:79:97:2c:a6:e9:8a:33:23:f6:55:b4:01:d7:
87:f6:d7:08:21:6f:05:43:76:ae:7b:1f:1c:9a:dd:33:e3:ec:
fb:a6:95:b6:bc:9e:54:38:ef:c8:5d:a7:ae:be:95:1f:a9:17:
6f:ab:2a:17:43:ba:98:80:3c:ba:ff:da:b7:3e:a0:ac:5a:b4:
40:da:b5:e1:53:9a:72:4a:c5:13:25:2e:77:1a:6b:0e:02:28:
8f:cc:35:dc:a7:b2:c4:84:2c:6e:1d:53:1d:bd:12:25:c9:13:
56:83:fe:0b:64:7a:8f:ce:27:c7:83:c0:7c:96:7a:b3:92:92:
85:c4:9a:33:64:2f:ce:9b:91:0b:1c:f9:9c:a5:b5:c9:45:c9:
98:13:51:66:df:e4:56:11:f8:68:93:ad:96:f9:e8:2b:12:cd:
33:bf:1b:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:13 2024 by rpki-client on console-ams.rpki-client.org