Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE22994CFDC911ED8A1F935A4AD9E6FC.roa
File: BE22994CFDC911ED8A1F935A4AD9E6FC.roa (raw, json)
Hash identifier: sShVMz5FWzK5BwicxI3ua+esY3WAoyUVH3tHEAIipug=
Subject key identifier: 08:29:C9:0E:02:BA:F5:0E:91:DB:0F:01:E7:6C:3B:BD:65:92:AD:6F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2822
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE22994CFDC911ED8A1F935A4AD9E6FC.roa
Signing time: Mon 29 May 2023 02:37:24 +0000
ROA not before: Mon 29 May 2023 02:37:20 +0000
ROA not after: Wed 15 May 2024 02:37:20 +0000
asID: 63888
IP address blocks: 154.207.227.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10274 (0x2822)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 29 02:37:20 2023 GMT
Not After : May 15 02:37:20 2024 GMT
Subject: CN=64740fe4-3e1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fa:55:26:b5:87:69:b9:5a:50:e8:28:80:3a:
5b:45:b2:b8:00:a6:d7:be:79:c0:6a:a3:b7:80:fa:
34:a1:d9:00:45:d8:ed:3f:2d:04:f6:0f:c2:16:c5:
f9:d2:e9:7f:51:14:4f:56:c1:ac:ec:aa:ee:2e:92:
a0:56:6d:4c:64:74:b6:8b:d6:bc:bf:0d:14:62:fe:
df:c6:be:92:8e:6a:33:ec:49:ed:22:a4:71:9f:af:
2c:97:3a:71:7e:00:57:7d:dd:0d:30:0d:f8:ea:f6:
56:6e:65:f7:43:68:6b:3c:95:06:4e:d9:d9:03:a1:
19:fb:cc:fa:f5:6d:fc:1d:17:46:b6:d9:11:50:2f:
ac:4c:05:0e:89:67:d8:50:0b:ed:58:7e:f1:a8:f9:
89:72:0d:f8:b6:a5:e2:e1:99:bf:1f:e7:8a:13:db:
94:a3:9f:aa:95:dc:28:14:36:f9:c3:90:02:a3:16:
88:3e:e1:92:39:1a:af:9b:02:11:90:65:c7:3f:86:
7e:00:c8:33:1a:3b:6f:53:c1:88:eb:29:63:8b:7d:
ce:9d:1c:17:30:d8:13:78:6f:a6:73:1d:b5:cf:be:
79:bb:54:3d:5c:5f:a4:a8:91:23:4f:79:5f:94:a4:
bf:99:e2:74:f9:57:bd:7e:05:6f:62:1a:5c:0e:37:
01:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:29:C9:0E:02:BA:F5:0E:91:DB:0F:01:E7:6C:3B:BD:65:92:AD:6F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE22994CFDC911ED8A1F935A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.227.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:5c:0b:d3:9c:16:85:fd:7b:02:d5:fd:6f:e3:5e:c3:06:7f:
b3:7c:f4:22:a4:60:8b:24:62:35:53:e8:55:b6:51:8d:b0:62:
e4:df:6a:fb:82:86:5b:7f:ab:8d:d1:ca:0d:b1:3f:f6:1f:05:
0f:86:73:ee:1b:7f:67:f6:5c:22:c7:46:21:ea:7c:82:11:85:
58:bb:f7:b3:be:39:58:f7:19:95:ab:4c:ac:36:46:ac:3b:24:
10:f7:ac:af:2b:e3:8f:92:fa:e0:ef:56:94:4c:ae:7f:d9:66:
38:4d:af:39:91:9c:f9:01:f6:d3:2a:7d:06:39:77:3c:7e:e9:
fc:46:59:97:4b:89:5f:c9:33:78:e1:1a:7d:05:f1:a8:ca:24:
2d:f0:90:be:6a:fa:28:b7:8e:37:a0:26:65:3b:ac:05:86:46:
97:90:3f:d5:b4:ee:0e:6c:5e:1b:0e:de:41:e3:5e:e4:27:ab:
95:ca:9a:85:e3:98:1e:3d:0c:b4:f3:c0:28:fe:ee:d0:54:d3:
6c:09:37:1e:98:f9:40:d2:da:14:e1:a8:f4:6a:3f:b2:a7:ed:
41:c1:a7:d7:b4:55:4f:f8:24:e0:53:43:e5:3e:10:1a:95:80:
63:9b:1d:5f:e1:01:50:f5:63:dd:15:be:3e:2a:03:9f:5b:c8:
77:7f:de:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:19 2024 by rpki-client on console-ams.rpki-client.org