Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9F67A16E539B11EE9087B0514AD9E6FC.roa
File: 9F67A16E539B11EE9087B0514AD9E6FC.roa (raw, json)
Hash identifier: Ci/C6DqoR/UOm+bJLwUfQsjFUNbdJSXWilVdPAkSkcs=
Subject key identifier: 41:39:24:F0:5E:C8:AB:00:9B:FA:BA:C2:7E:9F:85:F1:6D:E7:D4:B0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3D61
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9F67A16E539B11EE9087B0514AD9E6FC.roa
Signing time: Fri 15 Sep 2023 07:43:55 +0000
ROA not before: Fri 15 Sep 2023 07:43:52 +0000
ROA not after: Sat 08 Jun 2024 07:43:52 +0000
asID: 142403
IP address blocks: 154.94.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15713 (0x3d61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 07:43:52 2023 GMT
Not After : Jun 8 07:43:52 2024 GMT
Subject: CN=65040b3b-7283
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:10:40:69:da:d5:47:36:0e:af:fe:ca:ae:4c:
d3:c3:5c:34:0a:14:fa:25:69:78:6e:01:de:63:e7:
dc:00:49:97:2d:a0:73:3d:ec:1e:f2:22:92:54:5e:
9b:b6:d4:01:0e:54:83:72:eb:40:1d:62:1f:55:c8:
21:d9:a5:ad:b6:1f:3b:b0:65:f0:21:58:93:53:85:
44:e3:e7:01:50:75:4a:5e:2d:4d:ba:22:6e:8a:22:
c6:c2:63:f8:37:44:bd:b6:f7:97:cc:83:70:8b:39:
77:ce:10:ad:b9:e2:5a:9b:1e:99:87:80:02:e6:9f:
27:aa:c4:20:72:68:84:1a:3e:ad:c9:44:1d:55:d5:
be:90:71:3b:55:41:2c:b9:b6:40:bc:39:f6:a8:bc:
59:bf:d8:13:0b:f1:a1:87:d1:1b:f1:b1:63:bf:d5:
d7:b8:1c:f3:c2:b3:b2:d2:02:ae:30:fd:78:57:0c:
58:02:ee:e0:ef:9a:6e:bb:81:92:42:f2:c2:a3:1b:
08:37:ca:9b:af:b3:16:3b:6b:30:9a:b7:d7:86:a6:
0f:f8:27:3d:7f:96:49:7e:87:f5:b5:4b:5c:30:5c:
03:7c:2d:23:ae:1b:59:4c:a0:c5:61:ad:0e:0a:bd:
7a:cc:ed:3f:a7:0b:2b:0a:f7:20:bb:d4:13:05:2f:
e1:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:39:24:F0:5E:C8:AB:00:9B:FA:BA:C2:7E:9F:85:F1:6D:E7:D4:B0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9F67A16E539B11EE9087B0514AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.5.0/24
Signature Algorithm: sha256WithRSAEncryption
28:48:04:b6:34:a9:b6:35:b1:06:68:2f:7a:7d:39:c1:c1:ab:
79:0a:38:7d:9a:60:4c:f8:57:f5:74:de:ce:4e:5b:4c:b3:cc:
12:45:67:fa:37:40:27:68:40:b4:7f:c6:c6:65:59:28:f8:6e:
87:35:4b:39:95:e8:21:67:8c:e4:08:3b:39:f6:62:60:9e:0e:
aa:22:38:ac:50:bf:bd:57:37:19:2d:92:7b:65:00:9d:2b:17:
91:3d:ca:cc:f5:c3:53:19:e5:d7:d8:e3:2b:cb:bc:41:74:ce:
c3:d8:94:41:83:bc:2a:00:ac:93:bf:54:33:a9:5f:60:29:2f:
3b:50:90:24:e1:4f:a1:49:15:72:dc:d2:f8:b9:dd:ba:e5:3c:
bc:fa:53:0f:c2:a5:f7:0e:c3:e6:66:a7:a9:75:84:30:d1:f1:
19:5d:49:0e:b6:fa:cf:01:d8:a1:80:05:7d:ff:6e:15:71:f0:
85:93:9d:58:a0:7e:f3:cb:35:d8:f7:6c:0c:4a:a2:7a:a5:81:
35:bc:bd:62:47:7e:41:0b:31:68:2b:f4:c5:15:24:c2:2d:c2:
90:a0:11:8e:8a:15:ac:5f:00:15:f7:6b:6b:88:ae:5b:22:b5:
f9:33:5c:62:d7:2d:ab:8f:cd:32:a7:4e:21:43:b5:44:29:bc:
f9:b9:38:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:16 2024 by rpki-client on console-ams.rpki-client.org