Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C9C62C4CCC111EE9F6F1B8A775412E6.roa
File: 2C9C62C4CCC111EE9F6F1B8A775412E6.roa (raw, json)
Hash identifier: imkijVFxKo/lLiKTwKxE+iCMqly6XV2rpFoE8E4clno=
Subject key identifier: 8D:81:12:C0:5B:10:37:B8:98:F4:FC:26:A2:34:DD:A1:13:D3:E8:7A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8B0B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C9C62C4CCC111EE9F6F1B8A775412E6.roa
Signing time: Fri 16 Feb 2024 11:47:34 +0000
ROA not before: Fri 16 Feb 2024 11:47:31 +0000
ROA not after: Fri 26 Apr 2024 11:47:31 +0000
asID: 9009
IP address blocks: 154.216.245.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 11:47:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35595 (0x8b0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 11:47:31 2024 GMT
Not After : Apr 26 11:47:31 2024 GMT
Subject: CN=65cf4b56-95c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c9:20:7b:21:f3:f2:d9:56:df:7a:22:ce:ce:
31:b4:a9:c2:79:d1:c3:50:83:a2:09:8f:7b:f0:24:
75:eb:29:35:5b:2d:99:d9:43:01:3f:a1:7b:89:56:
db:53:48:f7:ad:f9:80:ea:b0:16:ba:46:21:c4:36:
5d:91:4b:cc:0a:1c:fc:a3:ba:9c:cf:79:6f:5d:ea:
12:0f:52:7a:ce:52:22:7b:86:cd:53:c1:7b:4f:f7:
b0:9c:01:29:a9:78:8d:a9:13:8d:ca:2e:44:34:88:
7a:1f:13:0f:be:9a:6c:a3:05:30:7f:39:be:10:41:
5e:45:5f:dd:68:b1:26:64:54:57:97:48:73:a4:e3:
58:fc:16:c3:24:6e:f1:dd:fb:78:03:c9:85:4b:c1:
d1:e5:3e:54:bf:37:79:d8:5a:ee:b2:46:1b:e2:3e:
f0:45:3d:37:60:5e:f6:30:c3:5c:ab:09:d5:72:57:
82:40:ed:23:e1:69:46:c1:61:ce:03:c8:75:72:3b:
57:9e:f9:4e:b7:b9:8c:d2:4e:4d:d9:bd:2b:41:a2:
76:df:1d:fd:af:b4:72:dd:89:5e:95:10:e8:c2:db:
64:c9:25:13:1f:76:79:12:f8:af:c1:6f:96:d1:c5:
89:8e:16:cc:1a:e5:24:cd:e9:84:49:a2:fd:a2:fe:
a0:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:81:12:C0:5B:10:37:B8:98:F4:FC:26:A2:34:DD:A1:13:D3:E8:7A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C9C62C4CCC111EE9F6F1B8A775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.245.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:ac:b1:3a:9b:89:66:dc:ca:f4:44:c8:1c:97:41:00:2e:eb:
4d:62:79:10:0a:8d:9b:ab:86:1c:79:e6:ee:8c:7c:b7:ab:c1:
7a:a0:80:98:7d:a2:d5:b0:57:2c:b4:5d:a5:8b:6c:ce:17:9a:
8d:07:dc:3b:ea:c9:db:d9:1e:75:0f:7e:c9:d4:d3:a6:3e:b8:
04:79:ed:50:74:ca:99:6d:e2:11:09:2e:0a:1e:21:17:31:a5:
f4:c3:5d:3a:eb:23:50:a7:5b:fe:62:a3:85:ac:0f:dd:35:ff:
89:13:35:ea:91:4a:7d:b8:6e:05:bd:9d:d1:c3:a0:74:4f:13:
c4:e0:52:17:d8:3d:04:c2:59:9e:f1:61:30:35:18:48:a7:ea:
96:18:15:4d:4a:02:4c:d4:b6:08:04:42:75:e7:84:7a:97:c1:
50:68:37:3d:c9:ec:83:07:77:bb:ce:81:fd:35:20:5d:cf:65:
86:2f:7d:42:dc:45:fd:f2:bd:ad:01:0e:12:8a:56:ad:97:32:
f7:16:16:c2:07:67:94:86:ab:3f:20:bb:7a:13:6e:98:d8:d1:
83:db:5c:c7:2c:45:d2:4b:93:c4:5e:5f:e0:50:68:0b:2d:ef:
5b:f8:f3:6e:23:ec:cd:8a:6a:0a:f9:f8:76:33:a3:a8:72:17:
c6:ea:e5:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:32 2024 by rpki-client on console-ams.rpki-client.org