Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5CF3C6C8CCC211EEB78B088C775412E6.roa
File: 5CF3C6C8CCC211EEB78B088C775412E6.roa (raw, json)
Hash identifier: muMKduPW8/vMoHRDZPqDFng3X4zzeC4zIjnfGBEYdvA=
Subject key identifier: 02:8E:C3:09:63:9F:21:9F:61:4E:59:59:64:7A:5C:86:40:E4:59:1A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8B17
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5CF3C6C8CCC211EEB78B088C775412E6.roa
Signing time: Fri 16 Feb 2024 11:56:05 +0000
ROA not before: Fri 16 Feb 2024 11:56:01 +0000
ROA not after: Fri 26 Apr 2024 11:56:01 +0000
asID: 9009
IP address blocks: 154.216.251.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 11:56:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35607 (0x8b17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 11:56:01 2024 GMT
Not After : Apr 26 11:56:01 2024 GMT
Subject: CN=65cf4d55-8cd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:14:b6:ba:2f:ae:4e:f5:aa:47:5c:c0:cb:86:
b6:32:0c:78:6d:d6:fa:d8:bd:c5:f5:a0:a6:ed:f4:
09:1a:b8:59:cb:62:45:4a:2e:0f:96:c8:81:26:86:
c3:4e:f6:05:24:5c:40:40:63:cb:eb:cf:59:ff:3c:
07:c2:f3:1c:15:cc:44:39:1a:6e:49:ab:0f:21:a1:
da:8b:c2:8b:9e:fb:07:e0:a8:66:8e:98:6c:11:b4:
e4:ab:f1:fa:c2:15:65:4b:20:c5:9a:0d:ed:70:c2:
bb:d4:23:77:93:8d:10:4b:16:b8:6c:c2:f4:91:7b:
1c:de:a3:10:b8:8e:99:d2:48:3e:1f:51:e6:9f:e3:
60:37:89:d2:07:78:2b:7b:6a:d7:79:1d:28:23:5b:
a8:a2:ea:65:fc:db:5b:86:81:a3:bd:85:ac:63:49:
65:cc:d7:ef:c4:f9:0a:79:46:9c:3a:48:85:86:7e:
d5:2a:da:88:c9:74:8e:8c:3d:8e:26:70:45:ec:12:
52:4b:a0:f4:39:49:c8:4e:38:6e:d5:89:74:48:21:
09:9a:e4:d0:f0:87:45:90:6f:ec:d3:af:92:bf:9a:
18:8b:3a:82:63:be:84:dc:f3:55:8e:e4:74:16:34:
6f:96:46:b6:c5:e1:ea:de:ac:fc:7d:b8:d8:80:1a:
a1:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:8E:C3:09:63:9F:21:9F:61:4E:59:59:64:7A:5C:86:40:E4:59:1A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5CF3C6C8CCC211EEB78B088C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.251.0/24
Signature Algorithm: sha256WithRSAEncryption
86:fa:86:04:b1:db:c8:1c:7d:88:9c:0e:3e:11:32:5a:6f:ec:
94:0d:01:ca:48:89:ec:35:b4:6b:a5:6b:cc:4b:19:9e:b0:91:
4e:62:23:aa:c3:b8:ef:9b:7b:06:c2:e9:d8:74:d6:d9:07:f7:
1f:86:48:c9:26:0c:03:55:6e:f7:e9:90:01:b2:71:e1:0f:ea:
82:13:21:d9:f3:82:a8:44:b9:12:ce:e4:19:16:2a:64:db:1f:
31:72:d5:fc:00:79:39:70:51:b2:72:82:87:b6:bb:85:4b:6a:
0d:80:bd:5d:eb:f8:42:8e:ef:e0:14:e3:5f:8a:ad:db:c8:bf:
c2:41:d8:46:bc:9a:d7:16:dd:f2:30:5f:dd:f0:bb:99:24:31:
49:3b:9e:fa:7d:af:d6:4c:a6:2a:b5:2c:d1:48:4a:4c:40:47:
a1:c1:33:80:b3:3b:a8:bc:72:80:6e:3c:fc:8a:c6:04:59:f6:
c2:ad:ae:cb:da:15:12:98:0c:26:43:af:bd:99:42:3d:7a:dd:
db:50:51:2a:22:16:eb:3c:42:31:31:34:d5:85:15:00:52:06:
e8:b1:d8:6c:ad:08:f3:e5:1c:43:38:82:cb:a4:f4:40:9a:8b:
98:a4:b6:08:84:d5:89:0e:c6:ec:d8:e3:52:f1:9b:4e:a3:d4:
22:f4:52:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:37 2024 by rpki-client on console-ams.rpki-client.org