Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C2AE64F6278011EEBE2D131A4AD9E6FC.roa
File: C2AE64F6278011EEBE2D131A4AD9E6FC.roa (raw, json)
Hash identifier: D6/oUdbZ2P+PEBCD9X+lsYfyg0HNpJoRPf1cH4JuHlg=
Subject key identifier: AC:79:42:9A:7C:19:73:9C:3B:8D:BE:24:75:8C:63:A6:63:ED:A5:2F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3399
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C2AE64F6278011EEBE2D131A4AD9E6FC.roa
Signing time: Fri 21 Jul 2023 04:40:47 +0000
ROA not before: Fri 21 Jul 2023 04:40:44 +0000
ROA not after: Thu 13 Jun 2024 04:40:44 +0000
asID: 7018
IP address blocks: 154.205.48.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13209 (0x3399)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 21 04:40:44 2023 GMT
Not After : Jun 13 04:40:44 2024 GMT
Subject: CN=64ba0c4f-7852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:71:8d:4a:01:54:68:e2:27:11:45:e4:c8:34:
7a:33:66:a1:85:99:26:26:3b:22:1b:33:d8:49:c6:
39:b4:49:c8:a6:19:ea:4c:ec:e4:c2:23:4e:5e:73:
6f:20:97:94:ee:83:43:d8:27:6d:eb:fa:ea:31:c8:
48:9a:c0:82:8f:2d:2f:90:8c:14:59:6b:60:8e:1e:
3c:91:f1:cc:1f:84:86:c3:5e:d2:b2:33:9b:17:8a:
70:87:58:d1:71:44:af:f4:ea:a9:21:a9:b3:1e:36:
90:d4:7c:97:6e:7c:d7:c3:a4:4f:61:00:8a:6a:97:
02:d7:ad:94:35:b0:c5:b8:ae:1e:5d:5c:24:42:21:
5f:03:3a:d9:54:d9:6c:ca:4d:c2:ff:9f:83:d4:d3:
65:45:21:57:78:35:75:c2:6a:06:47:72:e5:b1:3f:
0b:30:99:81:96:30:c5:b3:7b:22:8d:99:37:48:0d:
78:47:7e:01:62:b8:53:73:75:3c:89:3b:92:15:d3:
23:10:b4:3a:fc:8b:88:49:35:4a:56:3f:41:f7:3b:
fe:92:f6:50:dd:e9:0f:79:a7:2a:e4:24:4a:d3:8b:
e0:d3:0d:46:9b:7d:5a:8e:a8:18:2e:0f:da:1d:c5:
d2:99:07:26:5d:a4:a3:67:14:38:02:2f:df:55:a6:
12:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:79:42:9A:7C:19:73:9C:3B:8D:BE:24:75:8C:63:A6:63:ED:A5:2F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C2AE64F6278011EEBE2D131A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.48.0/20
Signature Algorithm: sha256WithRSAEncryption
29:26:82:0c:84:63:67:eb:8d:d9:52:eb:e7:e5:2a:29:69:99:
8d:31:8a:29:c8:cf:62:4f:8c:ac:9f:67:9d:c8:09:d0:3f:84:
9b:be:36:db:59:4d:63:54:82:07:53:aa:c1:be:ac:a2:57:e3:
db:3f:a0:f4:07:a2:cd:4a:31:73:ab:58:d3:76:bc:13:21:49:
57:9c:49:6a:01:93:5c:21:2e:89:02:0e:f2:85:cf:48:55:0d:
12:58:1b:b8:cb:d3:29:e4:17:b9:34:6c:18:76:14:dd:a7:e0:
e7:71:f6:5f:40:3e:1d:a8:a4:af:92:1e:b3:c7:1b:a5:d4:99:
04:f2:39:c7:72:11:b8:59:61:22:83:61:9b:84:66:97:b6:80:
89:1d:be:42:e6:22:ce:e0:9a:66:1d:2b:f5:8a:82:9d:9f:5f:
65:f0:4c:c6:4a:f4:01:19:1d:d9:ed:9e:c2:32:57:3c:74:82:
48:9b:a0:71:23:c9:f8:7b:a8:83:19:e9:82:41:e5:97:36:c0:
4a:16:8e:22:32:34:50:c9:a5:fd:54:69:fe:b4:a7:1a:a4:9c:
81:3d:2a:02:72:4c:87:88:bb:65:8f:35:96:71:dc:b8:d6:ff:
67:d7:0c:21:e2:52:3e:da:b6:33:ef:76:25:2c:24:17:cf:a1:
47:49:e8:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:20 2024 by rpki-client on console-ams.rpki-client.org