Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7FE5C5AE6CBF11EE917B746C4AD9E6FC.roa
File: 7FE5C5AE6CBF11EE917B746C4AD9E6FC.roa (raw, json)
Hash identifier: OILQk4+f2cV7eaktwE51IFhY5m19KvbWTbTTObTHX18=
Subject key identifier: C7:EF:8B:56:39:4E:FD:80:B3:6D:71:97:31:B1:88:C2:01:C8:8A:4C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4640
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7FE5C5AE6CBF11EE917B746C4AD9E6FC.roa
Signing time: Tue 17 Oct 2023 07:33:44 +0000
ROA not before: Tue 17 Oct 2023 07:33:40 +0000
ROA not after: Thu 30 Oct 2025 07:33:40 +0000
asID: 55020
IP address blocks: 154.211.4.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17984 (0x4640)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 17 07:33:40 2023 GMT
Not After : Oct 30 07:33:40 2025 GMT
Subject: CN=652e38d7-9c48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:86:fe:3f:d4:d2:8f:90:fc:1d:b6:c9:c4:f2:
17:fd:7c:a5:e2:91:f2:ef:40:29:f7:cd:6f:e9:37:
39:5c:41:1d:8e:ae:69:bb:7d:c2:53:e8:4f:c8:24:
df:f6:b8:ed:89:4c:30:bc:81:37:07:8a:f2:cb:9a:
0e:b9:d2:14:2e:61:51:15:92:f1:39:a5:f4:a0:59:
e6:09:af:06:7a:ea:ac:2d:3e:16:a1:35:54:b9:9a:
82:a5:0d:57:a4:d1:50:8e:a3:b3:1d:bd:7b:53:83:
c0:68:91:74:fe:df:bb:b5:c9:09:fe:6e:85:95:8b:
ed:9f:bb:40:87:ad:57:ff:c8:6f:5a:8e:b6:51:91:
38:58:f5:0d:5a:29:b7:80:e7:1e:2e:9d:b5:16:27:
90:90:c6:ea:c3:dd:2b:4c:92:13:a9:02:36:d0:18:
7c:dc:7a:a1:7e:cc:5b:5a:49:ec:87:8b:48:39:a1:
1b:e1:2e:6d:61:5c:6c:84:75:63:6f:79:1c:bb:28:
95:ae:1d:b1:ac:82:e1:7b:72:b0:60:c6:aa:a9:64:
0b:e5:8c:35:65:b6:e2:df:55:b3:68:10:95:b4:31:
7f:96:15:b9:a2:d5:42:90:bc:d4:63:a6:e4:cd:13:
07:3f:0c:10:4a:46:24:31:20:5a:35:28:6c:86:6a:
bf:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:EF:8B:56:39:4E:FD:80:B3:6D:71:97:31:B1:88:C2:01:C8:8A:4C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7FE5C5AE6CBF11EE917B746C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.4.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:ad:16:7b:7e:dd:98:24:68:df:a4:57:25:83:ce:d3:b3:c9:
c7:45:86:47:98:e9:8d:dc:f0:fb:f2:bf:fc:77:f8:c5:e0:9d:
34:31:bb:86:70:f2:b1:b6:86:81:0b:f5:9b:e4:15:cb:11:7a:
9d:2b:69:62:af:17:fb:f3:1c:40:9f:bd:ad:a6:fb:6e:f4:c2:
de:ac:6b:51:77:bb:35:40:d6:4a:54:4b:14:21:94:6f:f8:60:
13:9e:4d:75:6a:b6:75:ae:88:17:b6:44:7f:1a:18:42:86:f7:
4c:f4:48:3b:f0:0c:82:55:80:cd:61:9a:53:8d:df:01:34:4b:
cd:d8:8e:98:5f:fe:90:2f:8e:a6:65:dc:25:e4:c3:af:5e:de:
c5:e1:74:3f:3c:0f:5f:81:46:4f:23:70:0a:72:ce:8e:22:99:
f9:02:ae:2e:29:ee:3c:34:20:32:48:bf:69:6a:ff:40:81:ff:
d1:0e:25:9a:0d:07:9e:a4:15:c2:d7:47:5e:7a:bd:ce:de:e7:
89:8f:1b:91:6f:f3:eb:e1:8c:24:2a:de:76:d1:dc:dd:b2:05:
b3:65:7a:8e:41:58:a9:f0:e6:3f:20:d6:53:99:a3:af:75:e3:
4c:5e:a8:3f:e4:cb:f2:0c:47:48:76:a4:b9:09:a2:ab:1f:fb:
bd:00:f6:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:13 2024 by rpki-client on console-ams.rpki-client.org