Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8EE16E1EFE9711EDA367EB4A4AD9E6FC.roa
File: 8EE16E1EFE9711EDA367EB4A4AD9E6FC.roa (raw, json)
Hash identifier: GCGwFcg1zEr1n6fu0RnszlT9ghfzG4POCWuYEbkouOk=
Subject key identifier: 9E:15:8B:CB:D8:8D:21:2B:37:F5:B9:06:EE:67:70:CC:60:28:A8:E4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 283E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8EE16E1EFE9711EDA367EB4A4AD9E6FC.roa
Signing time: Tue 30 May 2023 03:10:41 +0000
ROA not before: Tue 30 May 2023 03:10:38 +0000
ROA not after: Wed 15 May 2024 03:10:38 +0000
asID: 63888
IP address blocks: 154.207.100.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10302 (0x283e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 30 03:10:38 2023 GMT
Not After : May 15 03:10:38 2024 GMT
Subject: CN=64756931-81d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ca:8f:b9:fc:b1:55:47:a5:4c:68:85:89:45:
a1:d5:de:04:cb:a4:0e:4a:9b:ae:54:1f:74:fd:bd:
79:57:59:e4:78:6a:8c:0d:a2:e6:f9:57:66:c5:15:
67:40:67:9e:ab:72:e6:73:c9:ec:63:46:46:6d:39:
b6:31:7c:62:a6:23:6d:d7:2d:d4:16:17:6e:eb:04:
b5:aa:6a:2b:e5:bd:04:a4:14:4d:bc:86:a2:91:e9:
7d:28:f5:25:b8:56:45:9c:37:0b:74:24:82:bf:0a:
19:71:47:53:c4:02:03:41:da:03:94:42:a1:58:77:
98:f3:a1:03:d9:8f:71:6a:f3:2f:96:5d:3a:a3:6b:
d7:38:a2:37:f1:7a:fa:c5:b9:1e:6d:1b:d6:ba:f3:
e0:68:2b:00:79:10:b1:ee:9b:a5:6e:67:c9:43:35:
80:17:69:48:cc:28:db:22:57:0c:cc:1c:51:d3:d3:
77:15:d0:03:72:91:45:30:5c:bf:39:39:f5:6d:4b:
3a:e9:54:37:cd:39:4c:7a:84:c4:8e:f1:41:46:3a:
8f:31:1a:b2:74:46:23:1c:48:64:48:4c:c5:c8:2f:
7f:ba:af:5e:86:fe:2e:95:00:4f:3b:bd:96:83:c0:
b6:74:6c:f7:57:9d:d4:0f:86:a2:d4:25:3c:55:ae:
95:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:15:8B:CB:D8:8D:21:2B:37:F5:B9:06:EE:67:70:CC:60:28:A8:E4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8EE16E1EFE9711EDA367EB4A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.100.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:aa:41:dc:27:c3:9b:0f:43:89:5e:f4:49:ed:de:2d:72:a5:
55:0d:9c:af:ad:f0:e2:88:6a:23:40:31:a7:14:94:e5:bb:9a:
56:a5:54:4b:a5:f4:1c:6d:55:0e:d3:d2:76:df:58:03:4a:40:
cc:15:2a:cb:7c:0d:f8:d4:48:30:cf:d0:61:01:b7:8b:e6:aa:
7f:4f:72:48:5c:fe:c1:81:88:cc:21:6f:50:11:40:b8:b8:26:
c4:3f:0e:4e:27:56:5b:5b:a5:f8:df:b2:80:aa:fe:19:ea:12:
fc:75:11:bb:a7:ec:f4:5b:ab:86:73:cc:9c:d1:cf:d1:4f:e6:
10:76:c8:50:23:4d:5d:dc:81:55:4f:27:92:a3:5c:52:69:1e:
c6:dc:32:a2:33:a7:b5:bb:e0:0b:a4:08:b7:83:5d:03:3d:e0:
0d:ee:9a:9d:e1:c7:18:2a:91:46:2f:2b:d0:ea:7a:7a:9e:88:
5a:d3:0f:8a:b9:31:7b:27:a9:0d:cf:a2:80:f9:81:53:69:30:
54:7c:fb:43:50:65:d6:75:62:93:70:fd:d5:08:e5:d8:4a:b3:
43:96:6d:8f:c0:66:a7:8b:1c:9a:db:79:3e:1a:ad:6e:95:1a:
42:84:b4:1b:74:5b:55:a8:bf:5b:68:da:3e:51:01:2e:be:73:
a5:ca:e7:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:15 2024 by rpki-client on console-ams.rpki-client.org