Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F736BB08B66711EEA0A4D7AE775412E6.roa
File: F736BB08B66711EEA0A4D7AE775412E6.roa (raw, json)
Hash identifier: 0b4c+up/IXaEDUcaxPwV9uc/e516CIj6PxghLovmeqc=
Subject key identifier: 63:A5:5D:07:81:78:D2:8E:BA:E5:38:2B:04:BF:90:49:75:DD:9F:F2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 77F8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F736BB08B66711EEA0A4D7AE775412E6.roa
Signing time: Fri 19 Jan 2024 01:13:34 +0000
ROA not before: Fri 19 Jan 2024 01:13:31 +0000
ROA not after: Thu 08 Aug 2024 01:13:31 +0000
asID: 131685
IP address blocks: 154.204.24.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30712 (0x77f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 19 01:13:31 2024 GMT
Not After : Aug 8 01:13:31 2024 GMT
Subject: CN=65a9ccbe-7385
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:86:68:02:c0:92:0a:69:fe:89:4c:9d:c2:b6:
7c:61:db:3f:3c:8a:75:69:89:9c:e0:bf:ff:6e:eb:
cd:84:bb:3d:e6:a3:55:1e:79:15:c8:53:fe:5d:0b:
30:57:95:d0:96:05:d9:76:d2:3b:bb:50:49:cc:61:
2a:78:18:46:cf:72:aa:95:55:8f:33:b2:2d:ae:f4:
5a:4c:fd:06:db:be:5b:a8:c3:df:2a:0e:cb:62:5e:
fc:66:e7:dd:46:e5:dd:d4:c3:90:b1:56:50:9b:c4:
58:20:17:e3:b7:b8:25:01:e2:c1:8b:03:eb:5f:b0:
e0:84:a5:bf:93:5a:e0:4e:79:9c:27:23:0a:dd:bc:
68:60:05:28:dc:bc:70:c5:e5:f4:1f:fc:10:d8:37:
2a:fd:f3:0d:bd:19:83:e2:95:39:93:1b:ec:5e:23:
b7:ec:d2:cd:b5:4e:5e:45:f6:90:c7:dc:ab:b7:e5:
4d:f0:a1:98:bd:84:24:02:18:f7:cb:99:67:29:b2:
2a:3d:d5:d7:cd:6b:7d:b5:c1:45:94:21:82:62:52:
f3:ab:73:fc:16:43:c9:28:fb:9f:a5:36:43:af:01:
a2:24:29:e4:c8:08:eb:48:a8:e3:49:42:d7:fe:93:
e8:82:f0:bf:f8:5f:c0:24:13:87:89:8f:d2:b5:ff:
d6:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:A5:5D:07:81:78:D2:8E:BA:E5:38:2B:04:BF:90:49:75:DD:9F:F2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F736BB08B66711EEA0A4D7AE775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.24.0/21
Signature Algorithm: sha256WithRSAEncryption
2b:28:e9:45:7a:cd:4e:d2:a9:fe:5a:e7:ea:cf:19:35:2e:15:
47:17:c7:9b:88:08:e5:ec:14:67:90:bd:51:77:ff:2d:2d:cd:
d0:17:e2:39:aa:b3:64:cf:9b:5b:87:26:6a:fa:16:c9:8f:46:
63:46:ec:d4:c8:69:37:cc:55:43:83:ac:ec:56:7d:ae:53:dd:
94:15:df:fb:d8:7b:fb:a1:05:99:4c:16:1b:8b:f7:ff:5b:99:
8d:6d:8f:07:88:12:b5:e2:6d:16:78:ee:a6:4d:cf:a7:d4:73:
d0:64:f6:0f:ee:f9:d1:92:4c:c2:a7:93:4b:87:4e:08:5a:34:
e6:f2:5d:d2:82:4c:34:8e:ad:32:8f:22:a7:2a:1a:2b:7b:cc:
e9:2a:a0:21:e2:e1:67:6a:d7:bf:23:23:63:f2:a7:21:19:45:
d9:e1:f0:a6:21:22:2d:bf:7d:c2:05:96:72:b8:c0:a6:d2:49:
a0:03:5a:05:12:53:7c:93:ab:29:90:1a:76:96:69:7a:a8:26:
1a:4a:3a:26:87:c6:eb:10:5d:69:b8:39:df:a1:fb:a6:f8:a4:
22:56:b4:56:0a:9b:ca:6a:b7:85:d5:cf:a8:ad:74:01:34:16:
07:48:f9:f5:c8:30:fb:91:5c:6a:15:ff:99:1b:96:13:b6:13:
e7:7c:3e:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:24 2024 by rpki-client on console-ams.rpki-client.org