Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C1CB239C278211EEA9DDD21F4AD9E6FC.roa
File: C1CB239C278211EEA9DDD21F4AD9E6FC.roa (raw, json)
Hash identifier: C+8TwzBM+SJKP7ZWXlPvoHC1xeZ6wqut/Bh880a3Cps=
Subject key identifier: 5E:5D:EC:F0:0D:83:0C:37:ED:9B:BD:C9:B8:95:82:73:97:33:AA:BB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 33A5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C1CB239C278211EEA9DDD21F4AD9E6FC.roa
Signing time: Fri 21 Jul 2023 04:55:05 +0000
ROA not before: Fri 21 Jul 2023 04:55:01 +0000
ROA not after: Thu 13 Jun 2024 04:55:01 +0000
asID: 22773
IP address blocks: 154.212.16.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13221 (0x33a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 21 04:55:01 2023 GMT
Not After : Jun 13 04:55:01 2024 GMT
Subject: CN=64ba0fa8-b7af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:3e:68:a1:dd:bb:9b:87:c5:70:91:0a:c6:4a:
73:1e:8b:67:a8:e7:f0:ab:5a:d1:88:76:c6:f9:99:
ad:d8:e7:14:47:7d:39:97:ff:b4:99:0d:f2:a6:a7:
65:d2:19:75:46:28:79:6c:18:0d:be:58:91:9e:b3:
f1:a2:ac:46:ad:53:3f:ea:05:5e:36:56:44:9e:8c:
3f:b7:db:97:02:5e:d1:ab:ec:e6:7a:31:f4:a9:eb:
4f:45:34:c6:28:2e:1f:bd:07:89:d9:74:05:4a:36:
62:07:be:20:a4:6a:35:e9:81:07:b8:8b:4b:ab:49:
06:a5:b2:17:9f:2b:a6:86:d7:5c:74:4b:10:4d:0e:
81:e2:08:23:64:89:ce:8f:41:b9:01:af:75:17:3b:
40:bb:54:91:0c:99:ae:42:59:31:88:3f:69:d5:82:
6c:ce:d4:9a:8d:35:05:f6:92:98:2b:77:ad:cb:00:
43:1b:e2:dc:5e:c5:87:7e:6b:75:b2:1c:1f:d5:6d:
f2:8a:6a:96:35:93:21:f8:ed:79:ef:8e:38:24:0f:
67:1a:d0:5b:03:fa:f3:86:59:fd:8a:37:d4:44:e9:
35:d6:8b:22:0d:a7:e2:42:f9:c8:65:12:cc:ff:ae:
72:7b:fd:c6:a7:fc:30:aa:5e:cb:ac:da:fc:1b:c1:
e8:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:5D:EC:F0:0D:83:0C:37:ED:9B:BD:C9:B8:95:82:73:97:33:AA:BB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C1CB239C278211EEA9DDD21F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.16.0/22
Signature Algorithm: sha256WithRSAEncryption
c8:78:76:e6:68:87:07:1e:17:ce:d3:57:a2:63:af:55:67:83:
41:d4:37:cf:ea:32:11:40:3d:f6:56:5d:65:dc:40:d8:3d:05:
ce:2f:c2:e4:6f:75:87:23:14:1c:ed:b7:89:2f:58:f2:97:d9:
53:4c:68:77:2e:09:13:0f:e5:01:94:e1:84:d3:12:71:2a:91:
2d:be:d8:e7:6d:41:2c:cd:72:85:3b:5a:25:a3:27:0a:e1:f3:
5b:71:1f:19:13:a2:bf:3c:97:aa:21:c0:87:e7:be:6e:c7:9f:
df:c2:c1:00:06:a2:8f:c7:fa:5c:df:e9:af:d3:02:74:9a:bf:
8f:04:f4:39:1b:45:4a:ab:88:39:ee:ac:8f:36:61:b0:59:99:
79:16:89:28:b4:3e:aa:ed:b5:f5:8e:35:07:eb:41:a4:47:6f:
95:81:f9:91:2e:2d:54:40:a7:b3:6a:78:d1:98:fc:0b:91:00:
07:d0:62:98:ee:30:7a:4c:1d:81:e0:24:9b:8f:81:03:d7:50:
8a:ca:e2:60:f2:58:fb:48:14:bb:cc:87:f0:98:f4:cd:b0:28:
2b:36:54:ac:d4:58:76:79:17:b4:44:05:d7:30:1e:a0:51:a5:
24:f8:64:ed:30:bd:dc:f4:b6:df:96:a1:ea:59:70:37:b5:68:
ec:f9:43:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:20 2024 by rpki-client on console-ams.rpki-client.org