Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D72CCDC82BB11EE99871D344AD9E6FC.roa
File: 8D72CCDC82BB11EE99871D344AD9E6FC.roa (raw, json)
Hash identifier: fmu+nJ852Re+02H2KkHKrQWgHIUGk5UpnP8Emmh4uaU=
Subject key identifier: 1B:33:A7:05:FC:EB:EB:69:BF:BC:F9:EC:94:61:69:51:3D:DA:9F:1A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4FEA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D72CCDC82BB11EE99871D344AD9E6FC.roa
Signing time: Tue 14 Nov 2023 07:00:54 +0000
ROA not before: Tue 14 Nov 2023 07:00:50 +0000
ROA not after: Tue 12 Nov 2024 07:00:50 +0000
asID: 397630
IP address blocks: 154.202.112.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20458 (0x4fea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 07:00:50 2023 GMT
Not After : Nov 12 07:00:50 2024 GMT
Subject: CN=65531b26-6619
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:52:55:c9:8f:f0:dc:15:ca:aa:9e:ec:3d:63:
89:7c:60:11:12:a9:9b:9e:ee:8c:ce:fc:6b:a5:89:
4e:da:8b:cd:11:10:19:b8:d0:4a:e4:b9:bb:e1:50:
58:65:bc:21:7f:80:be:f5:ff:3d:f9:1c:9b:c5:6e:
21:be:1a:0b:0c:9d:81:55:e6:22:80:53:91:3c:bd:
6c:3f:ca:aa:06:da:66:90:5b:52:71:33:fc:0e:b3:
14:ce:cc:84:ae:6a:bc:58:a3:4c:fd:bf:fb:d4:32:
cb:e0:d7:de:ca:1e:be:d4:d8:1d:73:e0:ab:b5:54:
0c:42:2a:23:3f:72:4f:c5:ed:a7:51:14:cb:a4:79:
2e:4b:dd:a2:c5:de:01:9f:c5:91:41:ae:ad:6a:ee:
5c:da:8e:6d:29:c3:94:c8:c1:0d:0a:7b:51:cd:5d:
c0:0e:ee:d9:2f:3f:80:28:c0:20:63:37:63:48:45:
40:92:5f:18:51:cf:02:cd:e0:3c:11:d8:33:73:1b:
77:0c:2e:a5:e4:9a:25:d4:b4:84:72:7e:0d:38:87:
81:aa:91:62:c9:d1:bd:63:0a:35:90:af:9b:d3:f9:
14:9d:61:af:47:37:8e:cd:40:63:30:cb:8e:b9:29:
9c:31:ac:5c:8a:6c:25:35:39:3d:87:c3:dc:6d:5a:
68:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:33:A7:05:FC:EB:EB:69:BF:BC:F9:EC:94:61:69:51:3D:DA:9F:1A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D72CCDC82BB11EE99871D344AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.112.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:23:bc:e2:29:f9:9f:38:cd:f0:98:44:13:ab:c4:69:b4:cc:
cc:04:bc:d9:69:28:6d:86:a2:ce:cb:2a:4a:f5:50:08:e8:ba:
83:86:25:86:89:6d:bf:c1:bb:28:42:0c:ff:8f:68:9c:e1:13:
8f:bd:e2:0a:55:ca:f5:63:5c:7b:2a:58:57:ea:c8:6f:4b:10:
08:7f:3f:96:b0:22:48:f6:6a:8b:06:19:1f:ce:f5:7f:82:fd:
7d:e6:15:29:6d:e4:d8:ac:dd:82:d8:7b:84:44:b8:24:85:d7:
cb:83:b6:7f:18:71:f3:30:dd:1f:d7:28:7e:87:76:ec:ee:11:
a4:0a:e1:67:5c:8c:b0:c3:47:0f:d3:4d:33:54:bd:44:24:24:
29:bf:e8:1d:35:7c:a2:32:88:75:b5:18:f3:76:5b:bb:86:14:
05:13:6e:4e:0b:1f:83:74:09:a6:aa:fe:76:8d:04:ed:d5:a9:
a3:31:75:38:cb:e7:8d:22:0d:10:c8:a6:e0:0b:64:3b:1d:19:
fb:02:13:02:5b:4d:dc:c1:b9:33:14:42:c0:7b:46:62:25:6e:
2a:09:01:cc:58:5c:9b:d6:72:76:e3:51:6e:da:e0:e4:78:18:
d0:dc:2a:cc:c9:1b:1c:18:fa:d3:d7:21:28:56:2a:0a:f8:28:
26:6e:0a:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:15 2024 by rpki-client on console-ams.rpki-client.org