Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C8D3ABF678AD11EEB3A1C9894AD9E6FC.roa
File: C8D3ABF678AD11EEB3A1C9894AD9E6FC.roa (raw, json)
Hash identifier: SJ8RysCvdxlhUC/S71oryMMQqSjDkwecM0Kp9vt0G9k=
Subject key identifier: 38:CE:2F:CA:EB:60:64:7E:D6:90:3B:76:D6:AE:27:CC:C5:F0:E6:B1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4B1F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C8D3ABF678AD11EEB3A1C9894AD9E6FC.roa
Signing time: Wed 01 Nov 2023 11:57:09 +0000
ROA not before: Wed 01 Nov 2023 11:57:06 +0000
ROA not after: Mon 30 Sep 2024 11:57:06 +0000
asID: 209242
IP address blocks: 154.85.8.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19231 (0x4b1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 1 11:57:06 2023 GMT
Not After : Sep 30 11:57:06 2024 GMT
Subject: CN=65423d15-64bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f3:c1:20:61:69:7d:c3:c3:72:2e:cf:39:32:
5f:93:2e:83:62:a2:e3:87:f5:46:9b:16:d9:d1:5a:
23:92:03:b9:8e:6f:ae:03:16:eb:c9:a1:90:f7:88:
e3:ee:63:11:f2:4f:f3:75:f1:2a:a4:e5:dd:16:40:
9d:f3:6d:c4:d4:0b:a7:3c:a5:7a:7b:c3:37:71:97:
43:25:78:97:aa:1e:0b:56:f2:c4:0e:7a:c0:ff:ac:
15:81:28:fa:1a:98:fe:13:11:42:be:7e:ef:d1:30:
a7:e3:ee:1b:63:89:48:7f:22:83:ee:24:3c:38:c2:
2e:10:e9:10:de:93:5f:b1:b6:e0:61:ad:58:f6:61:
5f:42:a2:cc:4f:5a:62:d2:81:22:70:7a:6c:d5:f5:
28:7b:4a:a8:39:79:ac:fb:4e:2b:8f:73:cd:08:21:
f7:aa:c5:3f:cc:89:aa:d2:cd:b5:93:92:1c:7e:4c:
71:96:2c:44:c0:f3:04:62:15:69:8c:df:88:08:89:
48:f2:54:e2:7d:b2:7c:58:b4:66:88:ed:0a:a2:10:
8c:60:20:4d:8d:4e:72:dc:e7:3f:29:c5:a1:66:e6:
02:ce:49:1c:e5:be:d1:25:51:72:ba:b0:22:56:b5:
94:b3:28:a1:27:3b:64:b5:c0:89:71:61:00:15:29:
b8:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:CE:2F:CA:EB:60:64:7E:D6:90:3B:76:D6:AE:27:CC:C5:F0:E6:B1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C8D3ABF678AD11EEB3A1C9894AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.8.0/22
Signature Algorithm: sha256WithRSAEncryption
c5:4d:81:2f:3d:80:1b:7f:08:2b:57:71:31:e5:ea:9e:8b:cb:
3b:d5:a4:6d:8a:51:1e:62:ab:ee:dd:a2:21:97:4e:d4:a2:92:
67:35:9a:73:ad:31:54:b2:49:ac:49:66:94:0f:1f:76:cf:97:
31:9c:48:83:e0:c2:24:59:27:67:b2:f3:cf:ff:73:b8:b3:63:
2b:5d:6b:40:03:e6:d5:51:49:b0:52:30:57:22:60:6a:40:5d:
61:28:f3:12:df:35:b5:ea:09:bc:7d:ae:37:15:bc:cf:54:eb:
16:1a:48:33:6f:0a:cf:d4:31:91:95:fb:86:3a:d5:5b:38:d7:
87:c6:11:0b:1c:c3:6f:2d:79:82:db:8c:71:39:3f:cb:69:02:
8c:30:bf:6f:d3:45:bb:77:24:f5:f9:35:bd:a9:0d:7b:e5:a3:
18:28:0d:19:88:9e:f3:ab:e5:1a:34:63:5e:03:e9:dc:7c:d8:
57:12:85:86:ae:f8:84:47:c3:fb:c8:a7:a6:f7:f1:38:eb:2c:
ab:67:51:64:59:16:07:94:2b:4d:49:01:bb:1d:0e:77:d4:98:
b0:7d:31:e4:25:da:fb:d9:3f:7b:ef:08:5f:f8:26:a4:da:e8:
b2:42:91:34:31:fc:bd:fe:cd:9c:6f:f4:a7:ad:18:83:7d:ae:
37:25:a9:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:20 2024 by rpki-client on console-ams.rpki-client.org