Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F8896826F91511EDBF54DA134AD9E6FC.roa
File: F8896826F91511EDBF54DA134AD9E6FC.roa (raw, json)
Hash identifier: JjgNAEvCiDr/OMJx+ZF4v0nlYfQ66vEzxTtfHFHTTpI=
Subject key identifier: 09:8C:41:32:8D:CA:32:7D:CC:5E:1D:EC:96:EA:3C:7E:22:C0:36:3B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2624
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F8896826F91511EDBF54DA134AD9E6FC.roa
Signing time: Tue 23 May 2023 03:00:28 +0000
ROA not before: Tue 23 May 2023 03:00:24 +0000
ROA not after: Wed 15 May 2024 03:00:24 +0000
asID: 399674
IP address blocks: 154.94.144.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9764 (0x2624)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 23 03:00:24 2023 GMT
Not After : May 15 03:00:24 2024 GMT
Subject: CN=646c2c4c-3a73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:29:72:ed:c7:fe:23:24:b1:a5:2d:9a:dc:b2:
ac:00:eb:37:f9:e8:e0:e3:7e:99:9c:19:c4:d0:b8:
7f:10:ad:06:2d:5a:72:20:d2:b1:c9:92:3d:93:d3:
d5:af:a5:7e:bc:29:a9:75:0b:8e:ec:22:f2:54:78:
79:a5:60:6a:6e:fb:44:6a:74:3c:a5:0b:cb:3f:97:
3c:61:4f:ae:3f:aa:7b:cc:a5:00:5b:a8:cc:7e:7b:
1f:83:75:47:7e:bd:dd:56:2e:22:ca:ea:50:31:ec:
c2:14:78:3c:9a:ee:7e:a1:9f:44:dc:9c:67:8b:34:
98:15:1d:b9:64:f9:32:eb:7e:38:cd:bb:a7:1a:8f:
53:6d:24:96:c8:d0:9a:18:b3:af:0c:ee:82:0d:7e:
ef:14:79:e5:e5:6d:77:ee:71:fa:0a:5e:54:19:28:
2c:1b:63:c3:1f:dd:1f:56:ba:c2:03:46:ce:d2:75:
29:8f:18:58:8e:49:ae:b9:b9:63:ba:2f:03:fb:33:
85:5b:a0:55:ed:ed:1d:ca:37:b4:91:aa:b8:5e:b4:
39:db:20:93:fc:20:27:a6:ea:71:78:c3:22:ba:c1:
5a:dc:70:a0:21:09:b9:82:2c:58:13:c8:ca:68:70:
72:d4:17:4d:cb:9b:9a:c4:46:dd:0a:18:75:36:83:
83:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:8C:41:32:8D:CA:32:7D:CC:5E:1D:EC:96:EA:3C:7E:22:C0:36:3B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F8896826F91511EDBF54DA134AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.144.0/20
Signature Algorithm: sha256WithRSAEncryption
4a:79:54:45:d3:ad:3e:22:21:71:bc:e5:fd:e9:7d:17:94:56:
82:9f:60:76:60:93:22:36:b9:de:7b:90:4c:04:06:25:90:e0:
ea:b1:c5:af:52:88:97:5a:e3:f1:0e:f0:3b:70:eb:d0:e2:6a:
bc:9c:c3:38:e5:20:91:64:68:83:40:a9:d7:97:9a:5a:ab:ef:
a7:a1:76:d8:43:69:d3:4f:90:00:44:b4:c3:1f:f0:30:6e:85:
af:f4:06:66:57:6b:08:48:a5:e5:1e:a1:7f:0b:46:ad:77:93:
11:24:c9:d2:c1:77:7a:17:0c:1a:08:6c:a7:c2:e9:27:bb:b1:
c0:d6:71:b5:dc:9b:37:87:03:81:83:75:ce:98:d4:fe:6d:57:
c0:96:11:02:88:a1:c9:3b:1d:3d:5f:e8:53:ef:96:0c:3d:9f:
6b:2f:31:28:df:29:13:c0:76:df:5c:e9:9a:e6:e6:15:c0:56:
ce:dd:74:e2:77:4a:53:14:06:0b:28:60:82:ff:70:a2:6a:aa:
ba:68:a2:98:6b:4b:e6:cb:5d:ea:d2:36:fe:07:97:f8:32:de:
d2:7f:6b:67:fd:91:7a:74:f0:1e:7b:9e:35:e5:3d:af:8f:8b:
ce:8a:cb:f5:a4:37:fe:9a:76:85:f9:10:0f:0a:68:4e:f2:31:
57:46:28:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:10:29 2024 by rpki-client on console-ams.rpki-client.org