Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/662EC19C3C6311EEA2CE226C4AD9E6FC.roa
File: 662EC19C3C6311EEA2CE226C4AD9E6FC.roa (raw, json)
Hash identifier: qJZA5eX+xbJzCe6D7i9PnOvJU1CqeC3CU+zF75cZcts=
Subject key identifier: D4:BE:AA:84:C1:21:E3:C9:08:CC:F0:11:6B:B0:23:2F:DC:FC:DD:B6
Certificate issuer: /CN=F36DB492AF/serialNumber=F43E0668EF72BD87FA5368BE2B6815C0BCB40149
Certificate serial: 0163
Authority key identifier: F4:3E:06:68:EF:72:BD:87:FA:53:68:BE:2B:68:15:C0:BC:B4:01:49
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/9D4GaO9yvYf6U2i-K2gVwLy0AUk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/662EC19C3C6311EEA2CE226C4AD9E6FC.roa
Signing time: Wed 16 Aug 2023 18:33:31 +0000
ROA not before: Wed 16 Aug 2023 18:33:28 +0000
ROA not after: Wed 09 Aug 2028 18:33:28 +0000
asID: 23764
IP address blocks: 154.72.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/9D4GaO9yvYf6U2i-K2gVwLy0AUk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/9D4GaO9yvYf6U2i-K2gVwLy0AUk.mft
rsync://rpki.afrinic.net/repository/afrinic/9D4GaO9yvYf6U2i-K2gVwLy0AUk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 14 May 2024 00:04:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 355 (0x163)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DB492AF/serialNumber=F43E0668EF72BD87FA5368BE2B6815C0BCB40149
Validity
Not Before: Aug 16 18:33:28 2023 GMT
Not After : Aug 9 18:33:28 2028 GMT
Subject: CN=64dd167b-abb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:53:6c:11:64:7c:fe:ea:60:59:26:f0:40:82:
3d:84:3b:c2:16:a3:3a:8f:a2:72:29:0f:8b:55:51:
10:02:5c:32:d6:47:ca:d7:69:68:dd:c9:c2:40:d5:
0b:a8:2f:90:e8:57:10:61:97:15:90:2b:51:22:d5:
ce:b8:b4:81:d3:bd:17:89:dc:57:16:51:ed:0f:72:
2f:ae:29:3b:ba:b2:f4:75:b0:88:c0:25:81:bf:de:
db:b4:e8:1e:16:3e:15:0c:25:70:9f:7f:0d:10:6e:
3f:73:1b:54:58:c9:f3:b2:1f:7b:a0:b9:39:ab:5b:
0f:4c:4b:38:dd:a7:8d:6e:aa:35:c5:d6:ca:b6:83:
05:3f:74:65:a9:58:98:6f:ac:eb:3d:6b:29:50:76:
d8:c0:f8:67:82:ce:e3:93:ce:d3:92:4f:18:97:35:
ab:d8:2d:3d:33:8e:68:a5:57:4d:f3:80:51:39:ba:
f2:ae:83:27:03:2a:54:1a:81:31:eb:02:0f:ae:b6:
1b:a8:ee:6b:25:41:1d:ba:4d:5e:69:36:1b:ad:e3:
13:3f:c7:ad:3a:e1:c4:65:15:aa:92:45:8d:07:e9:
8d:2e:01:77:79:cf:de:d2:2f:bf:fa:04:f0:80:b8:
c9:4a:e9:27:27:c6:98:7e:64:83:87:e1:6b:b2:d8:
52:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:BE:AA:84:C1:21:E3:C9:08:CC:F0:11:6B:B0:23:2F:DC:FC:DD:B6
X509v3 Authority Key Identifier:
keyid:F4:3E:06:68:EF:72:BD:87:FA:53:68:BE:2B:68:15:C0:BC:B4:01:49
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/9D4GaO9yvYf6U2i-K2gVwLy0AUk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/9D4GaO9yvYf6U2i-K2gVwLy0AUk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/662EC19C3C6311EEA2CE226C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.72.45.0/24
Signature Algorithm: sha256WithRSAEncryption
11:c8:82:fb:08:7b:97:77:1f:e0:86:04:c0:62:6e:13:76:a7:
59:b0:92:c8:6b:4a:74:a3:23:ac:a7:a3:f2:8d:f6:f1:a8:20:
9b:ad:22:45:9f:b5:49:54:30:7b:f9:83:3a:17:ba:82:65:45:
21:7d:e6:9d:ed:b6:43:5a:9b:0c:da:ec:a1:43:2e:da:a0:17:
82:6d:c8:46:a9:ad:bc:07:3a:e7:5a:3b:e5:b3:9b:ea:66:fa:
a8:7b:b0:93:18:63:a7:3e:4b:7e:67:a7:99:30:28:df:35:af:
f6:9d:24:57:c6:74:ed:43:06:2c:cd:7d:41:aa:8d:28:74:d1:
ce:11:58:21:ac:3e:14:93:c9:ce:15:3e:1d:98:2d:4c:c7:98:
db:ea:c3:20:b1:86:56:8d:37:0c:9f:22:6e:bd:01:aa:a3:93:
43:40:42:1c:39:6f:62:ba:1d:0f:48:0e:92:57:b9:10:aa:8c:
e3:c9:b5:a8:8e:a6:77:cd:75:30:72:41:0f:ee:6b:ec:14:75:
db:49:dd:db:f5:6e:a9:5c:c4:84:5c:42:9a:19:5c:58:0e:14:
dd:9c:67:df:15:9f:46:77:f7:7e:47:10:f7:44:c4:49:87:4b:
b2:e0:e2:0f:e4:32:a6:8a:63:1b:b0:ad:ed:a6:50:57:24:f0:
15:25:2f:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 03:29:15 2024 by rpki-client on console-ams.rpki-client.org