Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D1ED6D6A2C411EEA9E16D23D25BE465.roa
File: 7D1ED6D6A2C411EEA9E16D23D25BE465.roa (raw, json)
Hash identifier: cNmu4CoToSIaTUiFTuwqK7L+qD5QKCzUZQ7cb2deEks=
Subject key identifier: 1C:04:0D:84:F8:8A:BB:19:76:89:A6:A5:CC:2D:01:72:E5:93:E5:E3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 6685
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D1ED6D6A2C411EEA9E16D23D25BE465.roa
Signing time: Mon 25 Dec 2023 01:25:29 +0000
ROA not before: Mon 25 Dec 2023 01:25:26 +0000
ROA not after: Tue 07 Jan 2025 01:25:26 +0000
asID: 18004
IP address blocks: 154.85.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26245 (0x6685)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 25 01:25:26 2023 GMT
Not After : Jan 7 01:25:26 2025 GMT
Subject: CN=6588da09-9bac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:66:a5:b5:c1:54:b5:b3:0b:dc:af:2e:97:40:
ce:de:15:db:a2:aa:76:e8:97:e1:58:b7:32:fd:22:
ab:ed:60:59:1a:47:ba:74:78:55:f1:5a:93:57:0f:
af:59:bb:56:0b:49:e0:95:e2:23:62:05:7f:13:56:
12:10:b2:d6:72:8d:c9:6d:0d:89:7c:de:81:6a:3d:
f2:03:ef:ce:49:6c:51:d8:62:2b:52:2e:c2:6a:e1:
f7:10:c6:c1:c8:4c:53:89:bb:49:9d:21:64:58:24:
7d:15:48:99:9d:a1:02:82:50:01:e9:d0:5b:d8:3c:
0c:9a:d0:cb:4c:1c:9a:f1:d7:c7:f4:4e:4f:7d:70:
58:b1:d2:aa:5b:96:f6:fd:94:1b:0f:e9:39:80:cc:
78:28:25:19:59:6b:87:90:f8:0b:76:74:bd:01:c8:
83:ab:ce:6f:2d:1f:93:dc:2c:18:6f:0f:73:45:7e:
ca:72:49:c7:7c:67:42:03:84:9b:d2:b2:fd:32:3f:
35:e9:c7:8c:cc:c2:a1:dd:d3:36:d9:ff:1f:66:2a:
3b:4e:35:fd:af:4e:34:84:5c:5e:0a:5b:44:5b:38:
60:cb:36:cf:be:65:34:ab:60:9e:2f:a0:19:9d:ea:
bf:38:a3:06:55:40:fb:89:5d:ce:db:16:8f:a6:55:
ad:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:04:0D:84:F8:8A:BB:19:76:89:A6:A5:CC:2D:01:72:E5:93:E5:E3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D1ED6D6A2C411EEA9E16D23D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.81.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:06:f5:e7:8a:35:17:e3:31:2a:b0:09:d2:a0:72:7e:29:99:
62:73:63:75:f6:2b:bc:3c:b8:38:44:d4:a6:13:63:80:8d:60:
a5:e1:33:b0:74:4d:ec:43:27:da:f8:c2:cb:52:f9:e1:28:39:
02:a7:9e:35:74:42:82:d9:5a:52:d8:d8:6b:b7:8f:0f:4b:51:
81:06:37:1d:02:0d:61:b3:27:e3:8e:f2:6f:2e:ab:9b:74:34:
23:68:d4:a9:75:e7:bc:d0:25:eb:82:bc:c3:a8:2b:f6:e1:88:
04:c0:6f:a5:48:63:22:b4:cb:75:29:00:f7:f0:b6:b3:81:bb:
06:9d:58:92:49:55:0a:c7:74:38:53:67:e0:e7:4c:81:d7:0a:
be:49:0b:38:53:43:1b:dd:c3:c1:e3:22:77:db:8a:08:8e:b3:
45:fe:47:95:d0:db:a3:e8:4c:74:78:b2:d5:ed:83:62:99:c3:
6d:55:54:5d:c4:1e:40:b5:95:d3:ab:62:93:64:6c:58:9b:57:
c8:c3:89:db:ff:cd:6f:5a:b3:03:9a:4d:3d:8b:dc:0c:fc:bd:
df:ed:a3:82:59:a1:27:96:99:1f:58:7c:97:04:aa:73:65:1b:
6d:22:b5:91:f1:65:ff:02:a2:ed:f5:df:3a:9b:44:b6:dc:76:
9e:de:66:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:13 2024 by rpki-client on console-ams.rpki-client.org