Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9FE28A8A82B911EEBB3D1B2E4AD9E6FC.roa
File: 9FE28A8A82B911EEBB3D1B2E4AD9E6FC.roa (raw, json)
Hash identifier: staJq3xhF1s7kcXA2vNnC+/1QZsNnaMcVk+HDnOjo3c=
Subject key identifier: F8:F4:D8:E6:0D:B9:EF:24:63:3D:8E:CB:B8:2F:39:13:08:D0:84:A2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4FD4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9FE28A8A82B911EEBB3D1B2E4AD9E6FC.roa
Signing time: Tue 14 Nov 2023 06:47:06 +0000
ROA not before: Tue 14 Nov 2023 06:47:02 +0000
ROA not after: Tue 12 Nov 2024 06:47:02 +0000
asID: 397630
IP address blocks: 154.202.126.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20436 (0x4fd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 06:47:02 2023 GMT
Not After : Nov 12 06:47:02 2024 GMT
Subject: CN=655317ea-16b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:07:fb:0c:16:a1:dd:03:dd:1f:ac:1c:90:cc:
88:4c:e9:80:47:82:88:61:d9:25:b9:c1:e8:fc:9a:
d7:23:d9:aa:49:49:74:bb:e4:9e:c6:a4:02:e6:7e:
8c:8b:36:eb:5e:70:9b:98:15:1c:a3:1e:36:19:91:
82:c6:7d:80:34:76:29:55:14:e6:b3:a1:19:50:78:
43:74:22:79:e9:8f:19:76:7a:53:81:b3:5b:48:01:
c5:18:84:41:2e:1c:20:16:52:0e:df:f3:b9:ca:67:
99:18:75:9f:81:b2:c4:e5:35:c7:5c:95:4b:cc:22:
b5:23:1f:29:33:98:60:0c:f6:69:60:59:bf:72:e8:
0c:a4:d0:ca:ab:a4:0b:48:b9:2e:5c:0d:0f:25:fb:
19:4c:47:d7:70:79:ec:86:ad:ce:4d:ac:a4:ea:3c:
a6:aa:d1:e1:55:4b:c5:ec:a5:5f:fc:2b:5a:18:b4:
d7:93:c8:68:1e:01:78:e2:1b:c9:83:c8:f6:eb:e8:
fa:d1:d3:17:6c:b1:23:26:80:97:fb:7a:19:b4:c8:
0e:ee:e3:e5:5a:4e:9a:4a:42:c2:42:c4:5b:68:b9:
00:6b:7d:04:10:c3:aa:ae:72:cb:fd:32:d6:0b:89:
ac:5d:18:4d:3b:b8:0f:4b:58:d0:e1:3d:66:c3:48:
5d:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:F4:D8:E6:0D:B9:EF:24:63:3D:8E:CB:B8:2F:39:13:08:D0:84:A2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9FE28A8A82B911EEBB3D1B2E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.126.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:b4:40:25:86:d5:fe:4c:e3:a0:f0:65:27:e5:e6:3c:f3:ad:
e8:c5:1b:cc:3d:06:35:8a:cb:a9:8f:9d:a8:e1:1e:48:83:80:
59:b0:59:a2:41:60:13:61:e9:9c:4e:d6:55:bf:0b:48:2b:8e:
be:b1:af:13:33:a3:3e:c7:70:14:65:a8:d8:7d:74:9c:b4:19:
26:7d:51:1a:95:73:73:85:e7:35:2c:ba:8a:35:d5:29:a7:9b:
92:9f:19:5d:b6:3d:92:e0:be:56:77:c6:51:6f:16:44:5c:13:
36:d3:94:2a:da:a4:96:54:4f:50:ae:c4:80:6a:e3:12:47:48:
29:50:a4:35:c3:03:27:00:ce:40:30:91:c0:66:57:5a:c4:03:
be:12:98:7b:3c:e8:c3:bf:48:86:79:a7:87:38:d6:31:af:18:
96:9b:0b:bd:72:cd:da:5d:fd:5c:df:33:fc:04:8d:83:d3:fa:
b2:5c:de:94:a0:21:3a:0a:0a:47:e8:0a:07:76:1d:9b:d0:52:
5f:b6:cf:06:9c:4f:26:71:e6:d4:0a:cc:a8:7c:80:09:5b:09:
48:5c:99:9d:5e:3f:a1:74:13:3a:fc:65:b4:98:be:58:67:2a:
f0:2d:45:fc:66:a4:2a:4b:b5:6b:0c:71:f2:48:7c:df:62:11:
21:fe:53:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:16 2024 by rpki-client on console-ams.rpki-client.org