Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8C6FF5025E1811EEA4378D4A4AD9E6FC.roa
File: 8C6FF5025E1811EEA4378D4A4AD9E6FC.roa (raw, json)
Hash identifier: wOFRFxRIR6bVpAD0FOGkYb8Uod3D2/+EL+8pDmYxAdA=
Subject key identifier: 0C:AA:7B:9D:BA:6B:0F:59:67:E8:E2:1D:A5:A5:FA:33:37:59:89:B5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 437F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8C6FF5025E1811EEA4378D4A4AD9E6FC.roa
Signing time: Thu 28 Sep 2023 16:03:22 +0000
ROA not before: Thu 28 Sep 2023 16:03:19 +0000
ROA not after: Sat 28 Sep 2024 16:03:19 +0000
asID: 21859
IP address blocks: 154.207.164.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:58:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17279 (0x437f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 28 16:03:19 2023 GMT
Not After : Sep 28 16:03:19 2024 GMT
Subject: CN=6515a3ca-57c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a9:62:cc:e4:b9:d6:e8:45:33:fb:fe:b9:96:
6a:39:6f:1a:0f:32:ca:93:20:98:c9:29:7d:84:09:
b0:ec:d7:e6:44:0f:5d:46:6e:ff:02:f6:b8:31:28:
e0:c1:a3:e2:e2:f8:d3:f9:59:21:b1:9f:8f:f1:83:
f5:09:35:18:81:11:73:b7:1e:6e:4a:5a:b4:4d:e6:
70:c9:af:e3:ce:06:92:d7:b4:26:03:58:a5:d2:1d:
96:6d:51:ac:b6:56:3f:cc:7d:ab:56:89:dc:21:ac:
e8:61:66:bc:d2:dd:de:20:d7:b6:5a:04:b6:99:3f:
f8:40:f9:cc:8d:57:e3:7b:4f:d4:f4:bb:73:8f:d5:
76:5a:99:59:c3:a4:de:50:e0:fb:0d:a4:d2:e6:17:
66:a1:52:18:a2:28:5f:92:f1:08:1c:e9:b5:1d:cf:
ce:91:c1:e9:b0:f2:8c:48:18:04:59:a5:d5:73:2d:
3a:9e:b5:44:a8:b2:78:c9:37:c1:89:ec:c2:ca:7b:
85:67:3d:ef:1a:18:a1:bd:9b:e7:1e:11:ab:23:87:
40:15:7d:5b:f4:3f:ae:38:97:9e:5c:53:bb:28:1e:
6a:99:02:6d:94:05:d7:74:97:02:42:99:30:5a:31:
7d:4e:7f:93:98:25:d7:b5:26:2b:1f:9b:6b:2d:b1:
ee:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:AA:7B:9D:BA:6B:0F:59:67:E8:E2:1D:A5:A5:FA:33:37:59:89:B5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8C6FF5025E1811EEA4378D4A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.164.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:c6:32:6f:ef:ce:a7:84:6d:4b:0f:02:ec:53:2b:72:e7:a7:
34:4d:76:de:13:ce:a8:b2:42:fb:ec:7a:17:c1:a5:e3:a7:1c:
61:7e:41:95:16:47:bb:23:87:27:f3:7b:97:9e:d7:a9:ac:21:
09:12:37:f4:56:b2:a9:96:fb:0a:62:ef:57:12:4a:66:4d:38:
eb:a4:d7:ea:11:79:d7:9a:da:a0:64:81:3b:77:5a:14:e7:cb:
53:6b:cf:6c:aa:35:7a:93:c2:cc:68:07:a3:c0:4c:c0:85:b0:
10:0d:3a:11:80:8c:5a:7e:0b:d8:a7:85:07:80:f0:fd:3d:4c:
9b:71:e8:d9:2b:e2:f1:5e:1d:f6:4e:b7:8a:47:ac:c0:ab:3d:
3f:93:dd:6d:c8:07:df:6e:80:8e:38:93:7b:b8:59:3d:57:9d:
3e:df:45:fa:3c:f3:32:24:df:18:20:04:72:a7:2d:a0:7b:43:
f4:76:aa:16:79:27:f3:85:db:91:78:78:76:2b:de:ef:2c:e9:
eb:ba:c7:f6:7d:8e:04:1b:96:58:25:fa:65:c8:a6:29:99:ba:
fc:1f:c6:f8:6e:62:ad:a8:1d:37:7a:29:07:8d:69:30:49:6d:
67:ee:31:e5:b6:95:85:e3:c4:d8:a8:20:58:4e:ba:22:9f:67:
19:a4:74:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 14:41:07 2024 by rpki-client on console-ams.rpki-client.org