Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3E7BBBAECCBF11EEB1D82187775412E6.roa
File: 3E7BBBAECCBF11EEB1D82187775412E6.roa (raw, json)
Hash identifier: 1L5u7rPABZNkF26zL1rp8RyzURnMqsSy5W/9brggovc=
Subject key identifier: 31:BF:F8:D4:02:10:C5:E6:EB:80:3E:C2:02:AA:C5:2F:F0:FC:5F:61
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8AF7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3E7BBBAECCBF11EEB1D82187775412E6.roa
Signing time: Fri 16 Feb 2024 11:33:45 +0000
ROA not before: Fri 16 Feb 2024 11:33:42 +0000
ROA not after: Fri 26 Apr 2024 11:33:42 +0000
asID: 9009
IP address blocks: 154.216.235.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 11:33:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35575 (0x8af7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 11:33:42 2024 GMT
Not After : Apr 26 11:33:42 2024 GMT
Subject: CN=65cf4819-769c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a7:a9:b8:74:87:26:8d:b4:9f:d8:4a:df:13:
c9:aa:15:7f:6d:5e:2a:39:d6:3a:55:48:74:2c:c9:
05:12:0c:8b:f3:0b:3f:80:3b:5a:e8:8e:e3:2f:9a:
5d:33:8c:70:1f:0e:d9:78:98:27:48:dc:30:96:7b:
0a:79:a3:52:2f:28:31:ea:19:9c:29:95:98:a1:f1:
74:dd:25:0f:37:ad:67:ca:41:94:99:4e:81:a5:df:
02:2d:3f:4b:c4:f3:68:a2:b0:f7:8a:32:2d:24:07:
b3:6d:57:d4:ff:7d:3b:17:a7:34:95:fc:1e:93:1a:
3d:89:24:77:c1:46:86:d1:1c:e0:91:e8:bb:83:ec:
2f:e2:ad:7c:d2:fc:9d:a6:b4:75:e8:4f:dd:cf:a7:
e8:64:8e:90:d9:0d:1a:28:fc:13:f2:81:da:e4:26:
b6:18:39:8e:aa:29:ee:78:8e:36:e4:26:bc:2d:23:
f0:00:64:23:61:9c:78:67:76:52:0d:22:e4:49:17:
30:48:2f:a0:0c:9f:c0:dd:12:e7:86:53:bd:26:cc:
31:bc:88:de:17:a5:80:fa:5a:fe:c4:a5:d1:91:dc:
98:21:bf:94:59:14:62:d8:e2:b4:a0:92:18:c9:a9:
60:7e:31:90:55:0a:d4:06:94:db:3d:9a:e2:ed:39:
d3:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:BF:F8:D4:02:10:C5:E6:EB:80:3E:C2:02:AA:C5:2F:F0:FC:5F:61
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3E7BBBAECCBF11EEB1D82187775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.235.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:bd:fb:40:65:62:e7:90:31:36:d9:70:6d:77:2e:46:f9:79:
11:64:cb:c5:ca:1c:d1:7a:bb:ae:f5:12:e9:16:c6:b4:6e:3b:
b0:24:ec:48:db:c7:17:ff:d0:7e:b0:94:41:f0:43:a0:5c:90:
6a:4b:58:51:36:4c:0c:fa:84:e6:5f:10:e3:4c:c2:b9:8e:88:
54:7e:29:94:e8:a9:20:48:66:6e:dc:ae:ad:af:a4:b6:e8:52:
42:8b:07:cb:14:56:a0:d0:7d:9a:65:71:43:c3:8f:81:f2:34:
fc:48:d3:e2:71:8a:4b:ff:7b:7b:66:f7:31:b4:67:03:f0:ac:
07:f3:d3:07:f9:63:20:8f:66:14:5c:bb:b6:45:0a:8c:95:fa:
38:6c:32:da:f9:a2:d4:b3:c3:b6:0c:68:c9:51:36:a7:ca:b6:
10:03:4e:7e:33:53:83:92:52:58:5d:a5:f1:64:bd:c9:74:49:
35:19:47:58:5c:32:26:ae:a2:16:60:f5:c2:d3:aa:19:a7:32:
71:7f:43:de:c5:21:cc:01:27:cf:48:fd:5f:24:aa:0e:78:c6:
06:81:a3:0f:c6:26:70:3e:ee:8c:d6:bf:da:d8:2a:f1:33:94:
3b:eb:c0:ea:78:91:cb:83:2a:ae:5c:57:86:d7:7a:de:c3:b3:
92:3a:ac:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:33 2024 by rpki-client on console-ams.rpki-client.org