Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB8876F0277F11EE9E1BB3164AD9E6FC.roa
File: AB8876F0277F11EE9E1BB3164AD9E6FC.roa (raw, json)
Hash identifier: 1+X2NLwxBWC9C8aqo6k/3LuWUTtgDHT41hijQMLvCDE=
Subject key identifier: EF:79:8C:5B:09:8C:4B:50:6E:8A:9C:28:13:87:02:75:7A:6E:3A:C3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 337D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB8876F0277F11EE9E1BB3164AD9E6FC.roa
Signing time: Fri 21 Jul 2023 04:32:59 +0000
ROA not before: Fri 21 Jul 2023 04:32:55 +0000
ROA not after: Thu 13 Jun 2024 04:32:55 +0000
asID: 7018
IP address blocks: 154.214.24.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13181 (0x337d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 21 04:32:55 2023 GMT
Not After : Jun 13 04:32:55 2024 GMT
Subject: CN=64ba0a7b-f97c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a0:be:e5:77:f8:8a:ac:26:85:76:06:e5:dc:
eb:ac:df:9c:4e:1c:52:e2:e5:33:74:2e:25:94:aa:
8d:1c:f4:e9:e4:f1:08:f9:eb:fe:65:64:29:bf:59:
b0:ef:f4:01:d0:55:65:20:bc:62:81:f1:64:a3:81:
c1:9c:97:5f:1b:bd:c3:18:10:ee:bc:3f:9c:a8:ca:
7c:6e:f0:cd:e6:ba:55:5a:08:e9:5b:62:fd:ca:6f:
d2:cb:12:63:5e:1d:a3:5c:7e:5b:cd:3c:b6:03:ad:
a9:7f:d8:31:b7:5b:a4:0d:c3:cf:2e:fd:5e:61:1a:
db:dd:e1:1e:7c:0b:60:8c:d2:10:1b:08:da:3b:64:
07:a2:f0:a5:23:e6:7f:25:4c:42:b8:e7:5b:9f:70:
8d:3f:b6:04:84:23:6c:f7:e6:c9:f6:c6:13:b3:7a:
37:36:6e:af:a3:fa:2b:c6:09:c0:9b:77:16:e2:a7:
0f:79:5f:9f:24:fc:50:ab:df:ff:b0:34:ec:be:ca:
16:39:a8:ed:7a:cf:b3:f3:4b:9a:99:b2:60:ba:b9:
21:1c:6d:49:18:13:7d:fd:d2:66:f9:9b:3a:61:3e:
7c:64:e5:c2:79:90:9d:89:92:96:70:37:fa:83:d1:
65:ec:d2:c9:39:d6:c1:f6:28:99:59:c5:2a:ec:ec:
8c:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:79:8C:5B:09:8C:4B:50:6E:8A:9C:28:13:87:02:75:7A:6E:3A:C3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB8876F0277F11EE9E1BB3164AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.24.0/22
Signature Algorithm: sha256WithRSAEncryption
d5:80:b2:53:fc:15:9a:79:60:ee:32:60:b4:71:74:20:77:ef:
ba:3b:cf:43:67:04:e2:6e:10:7d:5c:3d:13:b4:33:36:5a:99:
24:db:84:f9:28:9e:9c:ec:ce:18:aa:d3:1f:aa:ed:c3:0f:24:
eb:d2:f9:da:5a:87:9e:c5:0d:d2:84:ea:1c:cb:18:e5:a7:eb:
d7:63:83:a4:be:82:b2:8f:99:3b:d2:06:0f:6b:4d:b6:36:dd:
72:63:a8:99:90:c1:fa:1b:62:e0:8a:fb:8e:f6:21:d6:b0:ea:
b8:1d:3d:d7:02:1e:c4:9c:95:08:6a:a5:53:62:23:be:72:d4:
4c:81:9f:42:45:fb:5a:a8:d0:6b:3d:8d:58:04:d9:86:53:2a:
cf:0f:39:8e:73:3a:41:24:62:be:d5:16:2e:96:e7:d4:be:f6:
1a:cc:55:67:53:96:8d:dd:58:26:a9:45:30:b2:07:a0:f7:a2:
5d:27:a3:84:fc:9d:dc:d7:b5:01:ef:7c:3f:c0:9c:d2:d3:e2:
03:54:bc:7a:44:97:c2:84:c3:e3:62:a8:cd:05:a9:5c:b2:68:
41:b3:ae:a5:38:5f:6f:a4:a4:cd:fd:b0:8a:73:91:a1:b6:7d:
83:f6:43:15:aa:7e:7c:f9:e1:87:e4:fe:93:cf:2c:09:00:47:
5d:cf:72:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:18 2024 by rpki-client on console-ams.rpki-client.org