Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81F5C162277F11EEBA3752164AD9E6FC.roa
File: 81F5C162277F11EEBA3752164AD9E6FC.roa (raw, json)
Hash identifier: hnT8xdkV28J1vVsGjxt/4gtz2NgmWGsS8sWxRLrREHw=
Subject key identifier: D6:1B:B7:2B:B3:96:0F:F5:0E:F2:E3:BD:81:B3:FD:EA:FD:97:AB:8B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3377
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81F5C162277F11EEBA3752164AD9E6FC.roa
Signing time: Fri 21 Jul 2023 04:31:49 +0000
ROA not before: Fri 21 Jul 2023 04:31:45 +0000
ROA not after: Thu 13 Jun 2024 04:31:45 +0000
asID: 7018
IP address blocks: 154.85.12.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13175 (0x3377)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 21 04:31:45 2023 GMT
Not After : Jun 13 04:31:45 2024 GMT
Subject: CN=64ba0a35-2ff9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b6:66:88:8b:37:75:8e:96:ed:ca:64:ff:12:
81:21:a3:ee:c8:c6:93:6c:60:56:f5:b2:ca:85:71:
47:3b:cc:97:47:67:ea:de:75:ac:b9:b1:fb:83:3e:
7d:5a:e5:d0:41:b3:d1:c7:16:81:e1:c0:0c:ac:d8:
79:52:36:f7:c2:fc:95:27:7c:00:8a:a1:d2:6f:50:
84:b6:af:b9:18:1d:44:d8:f1:62:36:9d:66:55:bb:
07:ca:fb:67:7a:ce:78:2c:1d:b1:50:0f:be:6c:4b:
72:96:d9:73:5f:fd:b3:4a:2c:ba:ba:fd:fc:9c:0f:
64:a8:d8:5a:ac:a6:e3:6a:fe:93:31:5d:b1:37:b9:
21:5a:0b:95:71:02:4c:78:c1:35:fe:6a:40:50:6f:
00:07:fd:41:7d:cc:4c:16:a0:43:34:ba:7e:a6:3c:
06:4b:4f:31:22:50:20:8e:95:3e:99:5f:ef:fe:88:
9b:35:dd:b2:f1:c5:18:10:d3:16:43:62:e3:c9:9c:
18:df:2b:00:08:6d:49:f6:a6:58:70:80:2f:c5:d9:
87:86:5b:df:7f:e3:03:4c:e3:d7:bd:f6:b7:58:c4:
20:6b:1f:c6:d5:66:a5:49:b9:b9:f6:5e:63:f6:08:
43:4f:f4:02:be:2a:7a:2a:a8:08:17:96:c8:9a:07:
51:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:1B:B7:2B:B3:96:0F:F5:0E:F2:E3:BD:81:B3:FD:EA:FD:97:AB:8B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81F5C162277F11EEBA3752164AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.12.0/23
Signature Algorithm: sha256WithRSAEncryption
b5:9c:71:3e:54:9b:69:c8:1b:2c:3a:88:5b:db:f2:5f:4e:d9:
aa:15:d5:79:89:13:59:92:e9:73:c5:e4:55:75:77:d6:ff:fe:
b5:69:8e:ef:6d:e1:88:15:ea:fb:4e:80:62:2b:4a:4b:44:3f:
ea:58:f2:32:12:31:11:c7:52:26:c8:1d:1c:44:9a:37:d9:5b:
da:a9:eb:c4:a7:78:0d:f7:e2:7f:bc:84:2a:33:4e:6d:bc:42:
5e:0c:4e:47:1d:db:62:40:bc:15:a7:a5:b5:49:ff:3c:73:f3:
e2:0b:fe:9a:8b:61:f9:64:86:e8:03:5a:ab:7a:ac:aa:01:4a:
b8:a7:15:91:2a:e6:75:f4:55:f2:a3:b5:f7:4d:e6:87:73:90:
22:e2:64:c8:09:78:04:13:38:0e:d2:47:e8:55:1c:3f:84:ee:
e1:b2:1c:3e:36:1d:51:dd:a7:ca:64:39:77:22:c5:dd:3b:eb:
d8:dc:67:54:1f:41:eb:f0:f3:1f:2b:2d:4f:14:3c:9e:0d:2a:
8d:1d:f0:2e:fa:1d:12:15:72:b8:93:40:d9:ea:11:eb:c6:c2:
53:7c:59:57:a6:b8:23:17:40:d7:72:ff:61:9b:20:6c:c3:04:
11:32:52:df:f9:f4:e0:b8:bd:b2:4a:86:2c:4e:ff:a3:fd:18:
39:a4:14:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:14 2024 by rpki-client on console-ams.rpki-client.org