Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/09F9C608CCBC11EE98D7E081775412E6.roa
File: 09F9C608CCBC11EE98D7E081775412E6.roa (raw, json)
Hash identifier: b/vyD25E4y9k/TWD8obf5PbiNQMsjykD1lWkJg3rKuw=
Subject key identifier: DB:10:B0:1A:73:9D:61:57:53:6D:5E:6B:F5:EA:03:2E:86:27:5F:5A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8AE5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/09F9C608CCBC11EE98D7E081775412E6.roa
Signing time: Fri 16 Feb 2024 11:10:49 +0000
ROA not before: Fri 16 Feb 2024 11:10:45 +0000
ROA not after: Fri 26 Apr 2024 11:10:45 +0000
asID: 9009
IP address blocks: 154.216.226.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 11:10:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35557 (0x8ae5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 11:10:45 2024 GMT
Not After : Apr 26 11:10:45 2024 GMT
Subject: CN=65cf42b9-0658
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:52:e1:df:e9:c0:9b:af:4e:47:e9:de:b6:24:
60:fb:ee:01:b6:cb:17:a2:69:51:21:fc:a6:f2:c2:
a7:cb:8d:15:ab:08:2f:08:bd:65:8d:87:4d:22:b8:
21:03:f1:2f:94:cf:45:b8:0f:5e:07:db:11:e8:23:
d3:72:fd:ea:de:be:72:c9:ca:c0:42:af:b1:72:22:
bb:f3:a8:99:31:bd:90:8b:9b:71:6c:34:07:4c:e1:
18:4f:f0:a1:48:07:5c:7e:00:3d:42:16:0c:0a:bf:
89:ef:a9:6a:e8:76:5d:97:66:9d:82:60:68:4c:aa:
59:5d:5f:91:4d:97:16:ed:5d:87:51:d6:64:74:2a:
5d:b4:39:8d:5a:ac:44:98:12:78:1b:a6:a6:3d:13:
2b:6d:8e:7f:5c:99:fa:e6:de:a9:21:55:f6:04:87:
e9:87:86:8b:92:df:ec:5f:e2:bf:70:fd:b3:a8:4d:
a1:e4:96:21:0e:a4:35:4a:40:dd:fa:7c:4b:26:42:
9b:7f:83:26:0d:7c:9c:6c:16:cb:1d:4b:ef:fc:23:
34:6b:da:00:5b:87:bd:1d:6f:06:70:e3:0f:75:83:
67:d1:e9:fa:57:dd:98:c6:e9:7c:de:be:ef:c4:bf:
cc:53:da:0f:7e:21:7a:69:cb:11:3c:bb:c9:09:fb:
87:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:10:B0:1A:73:9D:61:57:53:6D:5E:6B:F5:EA:03:2E:86:27:5F:5A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/09F9C608CCBC11EE98D7E081775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.226.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:b3:49:a7:67:0b:db:99:cc:39:a9:21:d4:4f:81:13:d1:fa:
e7:43:f5:36:5e:56:6f:69:4c:31:0b:bc:44:ca:6c:74:f8:b4:
31:a9:97:d9:1c:85:2b:28:f6:ed:2a:66:1a:ff:f7:3f:fc:0b:
d5:e8:e0:c7:4d:81:5d:1c:dd:2c:ae:b6:31:3a:04:2e:40:43:
56:d2:af:d7:d1:08:a9:6d:c7:27:00:1a:d0:c9:e4:46:b6:a3:
e2:eb:91:59:4b:ca:b1:30:97:2a:e8:2d:23:3b:d8:3f:08:07:
eb:4f:87:8f:df:f8:40:27:94:a7:9d:ba:23:86:51:db:51:e4:
1b:d8:c8:88:ae:a4:41:8c:98:3d:a2:a4:44:38:a5:1a:27:5e:
9a:84:57:1d:9f:2d:1d:cd:22:34:64:28:f6:9a:98:01:a6:45:
91:6d:0e:a0:dd:df:e0:69:3e:48:84:0d:4b:1e:22:1e:1a:6e:
8a:f1:bc:bf:6f:1e:73:c3:5c:5c:d5:89:2f:20:32:8d:a3:e5:
38:bf:b3:cf:a2:8e:4b:af:f1:cf:ce:30:b4:44:b4:8f:00:70:
02:05:4b:cb:85:a9:90:87:89:38:60:af:fe:02:d2:43:a9:a6:
ae:03:85:d3:c9:f8:e8:55:4f:83:65:84:3e:98:70:31:bc:ed:
8c:24:69:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:28 2024 by rpki-client on console-ams.rpki-client.org