Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BEF47FAA7C5111EEBEFB82274AD9E6FC.roa
File: BEF47FAA7C5111EEBEFB82274AD9E6FC.roa (raw, json)
Hash identifier: dNwL0SjcQy5U5MQuryjZZ2dGMWI3ojOZeHD8A0Hpd3M=
Subject key identifier: 53:5D:DB:CD:D9:8A:30:2E:DE:13:DC:89:D2:8D:DA:1D:F2:A3:9A:21
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4BA2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BEF47FAA7C5111EEBEFB82274AD9E6FC.roa
Signing time: Mon 06 Nov 2023 03:08:23 +0000
ROA not before: Mon 06 Nov 2023 03:08:20 +0000
ROA not after: Sun 03 Nov 2024 03:08:20 +0000
asID: 63199
IP address blocks: 154.196.4.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19362 (0x4ba2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 6 03:08:20 2023 GMT
Not After : Nov 3 03:08:20 2024 GMT
Subject: CN=654858a7-7d77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:91:c2:55:d9:91:eb:d5:e7:0a:3f:62:d4:78:
61:ff:56:c4:44:e9:cc:01:7a:43:db:8b:84:9f:7e:
1f:b8:4c:04:6d:91:7b:56:f4:98:5f:a6:56:c9:bc:
9d:ac:bb:c2:4e:7a:93:df:20:81:68:6b:e7:5b:9e:
72:87:53:67:2b:2b:2b:d4:98:f3:27:57:3f:d0:f7:
5f:ff:97:44:d8:fd:6e:bd:d1:c6:1e:00:41:a3:57:
65:30:88:4e:82:a9:46:51:a5:fe:bd:e7:f2:4f:d2:
de:f1:a3:31:fa:49:52:2e:04:b0:9b:48:06:f8:22:
58:07:7e:b2:1d:6a:ec:7d:d2:8d:33:49:86:4c:15:
c2:6d:ee:35:f8:e5:96:9e:30:e4:f7:bf:e8:60:f3:
d8:55:14:ff:ab:eb:60:9c:23:ce:98:13:4b:ae:07:
cd:f1:c2:b3:e8:f7:44:3f:d0:10:10:3e:37:96:af:
fb:52:5c:ef:bd:b8:78:7b:9c:b9:ad:54:ef:7d:90:
7f:a4:7e:56:f3:85:64:94:2f:eb:a2:df:b2:56:34:
80:dc:14:17:ac:aa:58:d3:53:02:bf:5a:c4:73:4e:
95:62:51:80:f8:87:26:d9:15:12:6c:b4:d1:85:9b:
a1:8a:e5:c2:b9:55:18:50:b0:11:d6:ed:10:7b:1f:
79:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:5D:DB:CD:D9:8A:30:2E:DE:13:DC:89:D2:8D:DA:1D:F2:A3:9A:21
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BEF47FAA7C5111EEBEFB82274AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.4.0/22
Signature Algorithm: sha256WithRSAEncryption
48:11:a5:11:f2:b0:04:76:39:11:c6:0c:6e:6b:8c:f5:33:a1:
69:ce:f8:48:22:54:5b:3d:25:68:7b:99:e4:02:e5:b3:e6:09:
11:13:88:db:80:d8:81:54:74:d0:4a:10:36:dc:f7:d0:65:9b:
74:55:84:aa:e5:80:6f:f3:19:ea:15:c7:70:ac:60:8e:39:93:
35:3f:9e:bd:14:05:65:2b:9f:71:1f:92:f1:6c:50:be:88:a6:
a6:cc:47:b9:08:55:fe:26:f4:00:88:e5:9b:26:01:12:17:d8:
2f:00:01:6b:2c:82:a8:94:88:36:e7:8d:b0:b5:94:0b:da:85:
13:bc:a7:73:d5:41:bc:2e:f7:61:2e:e8:3f:b9:5e:a0:e2:cb:
b1:6c:05:86:c5:12:70:c1:07:90:55:a0:46:52:20:b1:25:c9:
1e:e8:8b:81:a9:12:78:fa:34:04:d1:ff:d1:67:7c:a8:dc:f6:
52:28:3e:35:62:f7:8e:a5:02:53:4b:7e:1c:78:da:a1:61:e4:
9e:ad:00:ea:ed:ef:da:bc:e3:a4:a8:23:f8:9a:74:57:62:da:
81:21:c5:9d:88:6c:23:fa:18:a1:65:c8:be:d9:68:8a:fb:cc:
52:b7:ba:ee:8c:81:2a:80:5e:b7:da:a7:54:24:d1:b1:e8:38:
56:16:76:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:19 2024 by rpki-client on console-ams.rpki-client.org