Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE37565A82BA11EEB6B77C314AD9E6FC.roa
File: AE37565A82BA11EEB6B77C314AD9E6FC.roa (raw, json)
Hash identifier: cLjegJUZgghR00EMb8gNaypVk+QEh7HD6ox9+9hPZC0=
Subject key identifier: 08:A8:2B:FE:6D:25:7D:56:A7:57:17:20:9B:57:DC:EB:77:7C:8D:12
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4FE0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE37565A82BA11EEB6B77C314AD9E6FC.roa
Signing time: Tue 14 Nov 2023 06:54:39 +0000
ROA not before: Tue 14 Nov 2023 06:54:36 +0000
ROA not after: Tue 12 Nov 2024 06:54:36 +0000
asID: 397630
IP address blocks: 154.201.42.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20448 (0x4fe0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 06:54:36 2023 GMT
Not After : Nov 12 06:54:36 2024 GMT
Subject: CN=655319af-902b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:92:ff:05:71:31:ef:4a:22:2d:02:0a:c8:6a:
c7:00:f1:5d:e7:58:b0:25:5f:f5:9e:5d:0f:74:bb:
8d:03:37:b6:60:85:15:d5:89:97:34:d0:57:d9:a8:
43:0c:77:ca:5b:ee:46:8a:f9:3f:6e:94:07:aa:6e:
4b:44:1d:93:4f:01:ba:13:37:f5:9e:de:b1:1c:2e:
53:9c:7b:c9:93:3d:e3:89:76:8a:b4:5a:2e:7e:92:
f6:06:b5:4a:3e:59:19:f9:33:a0:c6:71:cb:ff:6b:
55:06:55:37:6a:d8:5e:9b:d5:3d:c0:9e:a9:69:81:
38:11:1b:20:95:11:7c:04:0d:be:d5:e2:42:bd:f2:
ce:c9:e0:c8:b7:56:6e:1b:ab:74:ad:ac:6e:e1:ba:
3e:e4:d1:a9:60:72:10:e1:1a:41:06:da:76:8e:b4:
f0:33:ea:ea:39:07:48:6f:31:d3:55:ea:bf:7a:0f:
35:39:e3:50:2d:84:32:8a:3d:53:cc:fe:8b:8b:2b:
f9:ec:d2:77:bb:33:d9:21:9e:5b:8d:99:34:8f:57:
04:80:a3:e7:24:7f:12:3e:41:32:88:69:4a:fa:fa:
cd:d2:5a:b5:d1:0b:75:16:21:c0:c2:9b:0f:e0:fe:
26:a1:84:e9:67:37:5b:c2:5e:dc:49:33:18:6e:4d:
f1:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:A8:2B:FE:6D:25:7D:56:A7:57:17:20:9B:57:DC:EB:77:7C:8D:12
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE37565A82BA11EEB6B77C314AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.42.0/24
Signature Algorithm: sha256WithRSAEncryption
61:c4:64:e5:5a:b2:8b:ab:95:bf:54:dc:5c:24:7e:16:95:c5:
06:cb:d6:eb:3e:84:1a:04:3b:62:2c:ed:52:20:46:50:7d:bf:
c2:42:88:50:0d:b2:36:6d:a2:2b:e8:1b:07:39:bc:17:d9:c4:
ab:86:4f:76:e8:38:5d:56:18:f6:a7:dc:8c:af:10:d1:47:43:
f8:3d:b9:c6:bd:cf:47:06:e2:08:e1:8a:7f:cb:4a:2a:16:e2:
99:24:01:f9:76:8e:0c:94:91:b2:43:d9:a1:c5:a7:43:71:a3:
c6:c0:e2:74:3c:b8:61:5e:9e:ea:fd:a9:8e:38:fd:c3:1a:f0:
a0:9e:34:e5:43:3e:97:1e:9b:e0:04:c4:a2:e5:8a:f9:09:d7:
02:ac:a8:9f:64:8b:26:1c:78:0b:d4:42:f9:c7:ed:94:1e:b3:
35:03:5c:30:43:95:8e:40:33:5c:c9:70:f5:26:f8:f2:40:f0:
f5:dc:5e:3f:63:c2:83:29:1c:15:c1:f8:88:86:c2:c7:6a:e3:
16:8b:e3:61:76:99:22:dd:ae:2d:0c:cf:19:2b:f0:70:34:21:
67:4a:14:fe:2b:5f:bf:fd:66:73:29:97:7e:9b:78:31:8c:08:
96:6a:ef:02:d3:b8:89:4c:21:89:2d:30:32:64:f5:85:6d:00:
f4:08:a8:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:18 2024 by rpki-client on console-ams.rpki-client.org