Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/42BD89B8CCA611EE94C16B5F775412E6.roa
File: 42BD89B8CCA611EE94C16B5F775412E6.roa (raw, json)
Hash identifier: Rc92qrj04V42PyjPqJARcL0b3ZYI3xtMxZRLjOn8WFE=
Subject key identifier: 96:48:6F:D3:92:45:A3:55:BC:4F:CE:FB:11:F6:8C:4D:13:29:3D:21
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A37
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/42BD89B8CCA611EE94C16B5F775412E6.roa
Signing time: Fri 16 Feb 2024 08:34:55 +0000
ROA not before: Fri 16 Feb 2024 08:34:52 +0000
ROA not after: Fri 26 Apr 2024 08:34:52 +0000
asID: 9009
IP address blocks: 154.218.203.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 08:34:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35383 (0x8a37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 08:34:52 2024 GMT
Not After : Apr 26 08:34:52 2024 GMT
Subject: CN=65cf1e2f-5a18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:01:a0:53:c3:60:3e:d9:70:a9:6c:56:1b:0b:
01:cf:e3:64:b0:f6:84:d4:7c:f8:ea:69:81:08:b2:
56:13:6d:6f:bd:02:b5:b0:71:ac:52:96:a0:30:a7:
18:bd:d5:02:c8:33:96:25:5e:99:36:4e:c1:c0:70:
1b:7e:22:7d:00:b2:bf:1d:40:43:5b:fd:ea:6a:95:
49:7c:f1:3d:c2:c3:1e:c0:10:f2:c3:1d:af:76:7e:
e8:96:b9:04:75:7c:3d:f8:a0:c6:fd:f3:42:9a:79:
d5:a6:e8:1e:2f:69:8c:86:2e:92:80:5c:99:3d:94:
5e:40:62:6c:b6:0d:de:23:39:c8:96:98:63:be:69:
ca:4a:34:5e:6b:c6:0e:73:19:a4:1f:45:96:4e:cd:
39:f9:d7:14:77:41:51:63:6e:97:a3:5c:2e:70:4d:
a6:61:6d:e3:bd:b7:0e:d6:00:20:c4:63:a3:94:84:
06:7a:55:42:69:03:bb:f1:bb:6f:bb:10:58:36:02:
e3:b9:aa:a9:25:bf:54:ca:fe:6a:7a:f7:27:ca:3e:
5d:65:94:63:ba:18:60:32:0c:4b:5a:b6:c1:0f:86:
7a:b9:31:24:8f:1e:93:d2:b1:fe:cf:7a:5f:8a:84:
cb:cb:20:75:87:ac:c8:3e:ec:02:95:8e:2b:17:da:
2c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:48:6F:D3:92:45:A3:55:BC:4F:CE:FB:11:F6:8C:4D:13:29:3D:21
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/42BD89B8CCA611EE94C16B5F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.203.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:79:44:e0:ed:dc:6d:0a:43:30:bf:4b:75:f1:dd:28:7a:24:
f1:57:4a:20:8e:64:32:92:9e:da:64:ef:f2:2f:d4:b3:a1:47:
d5:cc:81:36:d8:d5:db:de:59:37:ed:a0:47:f0:2d:80:7d:ab:
d4:9c:26:9d:e9:18:28:61:ed:8d:79:9a:b4:8d:dd:c1:ed:40:
f2:c0:d8:3d:cd:09:2a:3a:4e:45:38:0a:36:65:68:33:69:59:
fa:25:67:bd:f8:5f:46:2e:d5:ec:93:86:fd:12:6a:34:05:5c:
74:37:8d:ed:1c:6c:02:9d:29:8e:4f:2c:2c:b5:93:dc:81:32:
6a:5b:e0:53:d8:8b:83:ca:76:8b:4d:d6:f0:95:38:7c:66:9e:
01:d6:a7:64:df:42:95:4c:5e:f8:01:53:13:75:67:64:08:00:
b0:82:c5:3d:de:9c:df:a9:a3:48:e6:30:cc:64:25:c3:67:da:
40:b8:44:bc:a4:02:e6:7c:c0:57:b6:96:c1:19:bb:8b:fa:ec:
d6:43:03:90:d9:6c:62:51:90:13:d0:57:1e:a7:b0:fb:4d:93:
5d:47:ae:3e:0a:32:f9:af:12:83:e7:8e:f8:14:99:8e:ba:cc:
c4:54:c0:fd:b8:24:06:94:53:05:e3:9d:71:58:26:73:b0:90:
e7:64:21:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:33:30 2024 by rpki-client on console-fra.rpki-client.org