Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A1464BC2F91711ED8EAC67194AD9E6FC.roa
File: A1464BC2F91711ED8EAC67194AD9E6FC.roa (raw, json)
Hash identifier: I/Z1gzDMIQK7KBgO9+DuxTqZXTKqIVLmFtsY68F7Bo4=
Subject key identifier: 44:D8:BE:AE:DD:92:A8:8C:2E:E9:89:1D:DF:6B:34:C6:96:CC:7B:73
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2644
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A1464BC2F91711ED8EAC67194AD9E6FC.roa
Signing time: Tue 23 May 2023 03:12:20 +0000
ROA not before: Tue 23 May 2023 03:12:17 +0000
ROA not after: Tue 20 Aug 2024 03:12:17 +0000
asID: 399674
IP address blocks: 154.205.244.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9796 (0x2644)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 23 03:12:17 2023 GMT
Not After : Aug 20 03:12:17 2024 GMT
Subject: CN=646c2f14-dff2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9c:7c:36:ce:19:d2:1c:f3:c0:fc:3b:fb:59:
8c:ec:d0:f9:90:9f:8d:89:28:26:29:dc:12:14:b3:
13:bd:f5:03:6f:bc:70:b5:1c:55:5a:6b:23:60:c7:
05:78:63:34:f0:f0:68:2e:ee:cb:22:58:13:97:67:
06:8a:17:87:e5:86:ad:8f:43:fa:c1:2c:51:7e:00:
74:db:c8:d5:a8:ac:61:d3:ed:c2:f2:26:5e:f8:a6:
ca:dc:c6:a6:1d:ba:45:93:a4:41:07:d2:35:65:f1:
08:67:44:19:f1:46:6d:35:53:0d:28:9f:ff:d1:87:
f1:09:bc:04:9a:9b:e3:b6:71:81:ef:84:d2:a7:39:
42:28:78:2c:9f:67:87:29:41:89:d5:1a:6a:cb:9b:
0c:63:2f:be:22:9a:28:8d:11:9a:b9:0e:20:a9:d8:
72:3c:b1:06:95:40:39:1c:81:36:88:ef:c9:a5:d8:
dd:ec:8e:d2:dc:cc:8b:50:50:35:05:de:d6:a0:e8:
45:54:64:6f:6e:5f:a9:42:22:f2:47:18:48:fb:31:
c9:09:d0:db:01:17:e7:d9:6a:80:a6:e2:8d:e1:b2:
64:cd:af:e8:92:c0:7a:50:e6:54:5b:ab:72:e7:f6:
bf:90:8f:d4:79:72:f8:ff:29:ab:0a:aa:e6:49:e6:
d3:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:D8:BE:AE:DD:92:A8:8C:2E:E9:89:1D:DF:6B:34:C6:96:CC:7B:73
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A1464BC2F91711ED8EAC67194AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.244.0/22
Signature Algorithm: sha256WithRSAEncryption
d7:0f:98:96:69:8d:2a:52:1f:61:bd:27:17:e6:fb:27:98:fb:
b6:07:09:e6:25:8d:58:d0:cf:3a:b2:fb:90:82:f8:80:c1:55:
7e:8d:f4:33:89:e5:48:cb:80:d1:b5:d9:92:d2:36:53:41:38:
38:e3:b7:64:02:46:1b:8b:3e:8b:d1:ff:0a:45:1d:d5:4d:61:
61:c0:90:79:94:e1:5d:5f:41:67:b8:13:fb:26:1a:57:bb:2e:
f8:f6:45:2f:fd:15:f1:b7:a4:7c:3d:f3:3f:dc:91:c9:ce:1f:
2b:2a:1e:2c:d8:4a:60:a1:d6:c4:be:35:c1:c0:fe:a2:22:d7:
6d:df:5e:00:6c:26:ca:95:5a:65:3e:20:47:f7:0c:c6:dd:08:
40:b6:a4:d0:ab:38:fe:db:1e:3a:21:65:f0:0d:7e:75:4a:1f:
12:19:40:f4:63:7e:33:e0:9a:de:b2:31:64:fc:9c:3b:23:3c:
1f:0f:75:d8:8d:74:63:9b:3d:2f:1d:98:c2:96:bf:39:85:eb:
4c:08:a4:7f:cd:38:22:aa:43:bc:49:0d:76:94:1f:f7:61:82:
77:39:a5:f0:e0:3e:44:8c:a3:9c:55:38:8c:44:df:ce:66:fb:
d9:e2:9c:ff:3e:8a:d4:25:7d:ae:dd:62:e9:e6:02:4f:be:7b:
ee:be:3c:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:17 2024 by rpki-client on console-ams.rpki-client.org