Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF0AB7F010DE11EEAE7149304AD9E6FC.roa
File: AF0AB7F010DE11EEAE7149304AD9E6FC.roa (raw, json)
Hash identifier: Xr7TlQupPKd8KhO8davUJoCe262lU2nRMKdJTPSHjMQ=
Subject key identifier: 21:5E:63:9A:7C:12:74:5E:D5:D2:70:4C:C2:98:4E:E6:70:1C:27:BD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2D86
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF0AB7F010DE11EEAE7149304AD9E6FC.roa
Signing time: Thu 22 Jun 2023 09:25:10 +0000
ROA not before: Thu 22 Jun 2023 09:25:06 +0000
ROA not after: Fri 05 Jul 2024 09:25:06 +0000
asID: 139065
IP address blocks: 154.194.28.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11654 (0x2d86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 22 09:25:06 2023 GMT
Not After : Jul 5 09:25:06 2024 GMT
Subject: CN=64941376-eb9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:8a:5b:8d:a7:62:b5:94:ce:d2:46:55:2c:da:
4c:b6:5a:fb:a6:1a:f2:21:95:52:a7:82:b9:41:27:
dc:8a:cc:55:93:c3:55:1d:90:9c:ce:06:5c:87:df:
e0:53:66:d6:78:98:be:52:42:f4:2f:0e:9e:f9:27:
06:b3:d1:9a:45:ea:94:c0:5a:17:53:2e:72:56:46:
7b:f7:f0:3d:54:c1:eb:b7:2c:cd:f1:d9:eb:1f:ca:
0b:9d:da:44:64:98:0b:3a:d2:c3:b0:dc:40:fb:fd:
b5:54:d8:80:88:2d:33:50:a8:76:60:6e:58:dd:ec:
a5:48:86:84:02:c8:5f:4e:90:d4:84:95:f6:a1:0e:
ee:de:ee:fd:3c:7c:93:36:86:81:a6:83:db:51:5a:
e3:c2:09:63:bd:a3:f5:f3:19:c9:ed:0c:38:bf:08:
e2:fe:4c:76:89:0e:97:e4:41:32:91:93:7a:a1:cb:
07:db:26:5a:5b:c4:ae:0b:52:ab:c4:dd:cb:a8:9f:
20:13:02:84:66:dc:14:d2:e0:3c:ec:15:36:c3:20:
2d:72:99:ed:e5:a8:49:fe:cd:f3:fc:21:78:81:1a:
73:d7:e0:dd:19:78:c6:6e:2a:ac:85:29:57:54:4e:
5f:d5:71:6e:7e:1d:7c:cf:ae:e1:fe:44:63:68:ba:
16:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:5E:63:9A:7C:12:74:5E:D5:D2:70:4C:C2:98:4E:E6:70:1C:27:BD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF0AB7F010DE11EEAE7149304AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.28.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:c9:f2:83:fb:13:08:b1:94:ae:70:38:90:2b:f7:93:93:a2:
1c:ad:a5:ee:c2:9f:fb:81:41:04:e4:62:d1:ff:44:bd:2d:72:
01:67:b6:b0:de:64:06:00:43:68:e2:43:31:e6:9d:b8:db:c0:
2f:f7:28:69:5a:94:75:95:4c:a2:44:f8:90:9a:00:8f:c0:3a:
e2:d4:d4:4a:fa:d5:b9:5f:84:62:c0:e8:81:9e:91:f5:68:62:
41:3c:3e:d6:34:4e:51:57:80:db:dd:0b:17:a3:ee:01:ea:3e:
dc:02:3e:ef:9c:15:57:7e:60:91:13:25:a7:ed:85:fd:e0:e6:
8c:0e:75:02:76:07:44:b4:13:0e:ba:e0:a9:d4:d1:09:37:1f:
b6:07:1b:1a:a0:43:2d:88:a1:44:e6:89:5d:f2:b5:bf:96:30:
76:c8:d5:c7:00:ff:38:1f:6a:8e:85:26:c1:1b:20:1e:7e:69:
7e:39:06:22:dd:d5:59:89:4c:fd:ed:fb:ec:71:1b:20:40:85:
29:15:08:6d:01:12:e3:7f:62:56:61:61:bc:1f:b3:6b:47:b2:
02:cf:28:36:aa:81:b1:97:25:94:00:ad:95:61:91:68:4e:ee:
53:59:48:17:27:84:52:25:78:1f:16:fe:46:e3:9a:48:cf:fc:
92:b4:03:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:18 2024 by rpki-client on console-ams.rpki-client.org