Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/895B2E9282B511EEA0787C214AD9E6FC.roa
File: 895B2E9282B511EEA0787C214AD9E6FC.roa (raw, json)
Hash identifier: c0RpGJ0U4XZIXU6Nt02EsnmobvjQ5tCwI3vsYskassU=
Subject key identifier: C5:B6:DD:9F:11:E6:DD:B2:DB:29:C7:28:DB:77:6C:8B:AF:6D:AC:5C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4FAA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/895B2E9282B511EEA0787C214AD9E6FC.roa
Signing time: Tue 14 Nov 2023 06:17:50 +0000
ROA not before: Tue 14 Nov 2023 06:17:47 +0000
ROA not after: Tue 12 Nov 2024 06:17:47 +0000
asID: 397630
IP address blocks: 154.202.119.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20394 (0x4faa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 06:17:47 2023 GMT
Not After : Nov 12 06:17:47 2024 GMT
Subject: CN=6553110e-0111
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1c:c6:1a:f5:13:a4:af:b3:be:2c:b2:fb:83:
db:c7:af:eb:5b:cb:ce:df:cd:1a:50:fe:a7:21:48:
68:9c:09:ba:8b:e1:e8:ae:b7:30:e9:b8:c9:0d:bf:
71:2d:0f:ee:ee:48:5e:77:28:f6:b7:f4:37:e9:5f:
bd:1e:b3:c6:78:54:93:0a:b7:df:0b:f7:35:e9:83:
5b:0b:50:85:b6:04:3b:e8:bc:6a:5d:d6:58:9a:27:
d2:95:81:dc:06:cc:81:1c:b5:78:83:5c:d6:a0:5d:
0d:6b:67:a6:16:30:f2:a7:67:32:90:bc:af:fe:98:
a4:7b:dd:11:a1:39:79:2b:89:6f:1f:1e:c1:cf:75:
78:1c:7c:d4:e7:c0:f8:42:fc:70:04:2e:42:5e:29:
d7:98:3b:27:36:ac:9f:e4:32:f2:76:4b:66:ba:34:
35:34:78:4b:76:6b:cd:60:8e:dd:80:1a:99:bc:a3:
a8:0f:f8:23:cf:a5:9c:23:3f:4f:8e:e9:08:1d:4b:
20:76:24:44:9f:be:0b:5a:e2:72:4a:03:93:7a:f0:
c0:84:11:7e:47:02:4e:ea:3e:a0:22:fd:64:a7:1d:
47:01:4d:21:09:73:70:fd:ae:d3:1c:e2:d8:d8:c2:
61:92:3b:bb:3b:76:66:dd:6d:38:9d:9d:20:81:75:
73:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:B6:DD:9F:11:E6:DD:B2:DB:29:C7:28:DB:77:6C:8B:AF:6D:AC:5C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/895B2E9282B511EEA0787C214AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.119.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:3f:7a:4d:5b:f1:34:b8:1e:c6:27:16:d6:ea:0a:f2:64:ab:
98:a8:48:a5:cb:db:fc:20:fb:15:8d:82:c6:2b:f3:80:40:06:
69:95:91:5b:6a:79:74:07:22:4d:74:36:a4:96:09:5f:6b:9e:
1b:54:91:09:32:bc:1d:d5:3b:c8:28:43:c3:d8:65:1d:a5:2b:
8e:98:ac:1b:48:c7:e5:00:e7:c4:31:dd:9d:7c:90:9f:cc:e6:
35:10:3e:d8:fa:ba:70:b3:da:c7:78:a4:2c:ae:53:79:a1:3f:
88:4f:ff:48:e1:56:e3:74:2b:97:f6:80:a7:14:78:48:f0:ec:
34:93:1b:e8:b2:bd:cb:17:04:c3:c1:c3:a6:06:ae:8a:3d:46:
21:c8:22:3b:90:90:a0:31:60:54:d6:35:f0:16:8e:14:af:a2:
d7:fa:f0:f0:70:94:f5:8f:77:92:d6:af:85:ac:c4:ba:73:e6:
e7:48:67:bc:81:46:a9:d4:06:58:ed:00:a5:f1:58:7c:dc:72:
75:53:82:84:6b:8b:34:01:31:2f:78:e8:fe:3c:2c:6e:2d:06:
0b:da:41:f3:78:7a:1a:4d:59:4b:36:65:36:98:fc:1b:fb:af:
ae:d8:c7:9b:27:2e:3e:a2:9b:a1:d5:3f:62:24:ba:b0:eb:c7:
dd:42:7e:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:14 2024 by rpki-client on console-ams.rpki-client.org