Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/89FEBBC8CCBD11EE93B94984775412E6.roa
File: 89FEBBC8CCBD11EE93B94984775412E6.roa (raw, json)
Hash identifier: R0A9nVHhrwvui+0/vftQdL0gNuUpgy7dQbMlBWlkl0A=
Subject key identifier: 73:3C:70:BB:F2:C8:81:9D:32:A3:4A:73:36:66:5D:16:83:D7:9D:00
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8AED
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/89FEBBC8CCBD11EE93B94984775412E6.roa
Signing time: Fri 16 Feb 2024 11:21:33 +0000
ROA not before: Fri 16 Feb 2024 11:21:30 +0000
ROA not after: Fri 26 Apr 2024 11:21:30 +0000
asID: 9009
IP address blocks: 154.216.230.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 11:21:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35565 (0x8aed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 11:21:30 2024 GMT
Not After : Apr 26 11:21:30 2024 GMT
Subject: CN=65cf453d-2999
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5b:06:55:69:e2:fb:81:1a:1e:a7:b0:37:b1:
e6:78:79:c0:f7:bb:26:b8:bb:e3:a5:af:c9:4c:10:
37:f4:91:67:03:72:23:f2:e4:87:92:f7:72:f2:73:
64:a4:70:e5:98:1b:cb:5c:34:88:08:d0:43:34:97:
d3:b9:bf:ee:6b:c5:b4:51:a4:2b:dc:20:28:ce:56:
fc:45:bc:01:8b:e6:0a:9c:4a:18:3f:83:ea:71:27:
07:8e:50:f9:d3:51:81:ae:50:e3:ad:e5:6f:0d:93:
cf:aa:01:85:bf:16:1b:4f:fc:62:78:b1:9c:dc:6b:
10:40:85:0d:70:98:06:05:a1:d2:9d:4f:e2:09:88:
e2:34:a7:7c:21:05:02:5a:b9:46:82:b5:18:cf:65:
ea:3c:e7:14:74:6a:5c:29:c2:f0:24:ed:fe:41:5d:
f3:ec:d3:2f:24:96:a7:5f:d8:25:f4:49:c4:65:e6:
21:36:49:e1:9b:cf:1d:d2:85:88:10:68:bd:1f:04:
52:96:b9:87:b9:26:6a:c7:56:d2:0c:22:41:08:2d:
ef:aa:0d:63:17:f2:97:03:6d:e7:b6:ba:08:f3:f3:
34:b6:3a:f1:93:ad:87:d9:99:f6:7f:39:58:93:30:
29:5f:7d:0c:14:ec:7e:83:6d:b8:21:0d:bf:f6:7e:
ba:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:3C:70:BB:F2:C8:81:9D:32:A3:4A:73:36:66:5D:16:83:D7:9D:00
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/89FEBBC8CCBD11EE93B94984775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.230.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:0d:45:09:1e:c9:d6:1b:a6:9c:4d:71:01:3a:3d:e3:0a:ef:
49:a3:c9:8d:2a:f9:f0:dd:ff:75:2b:ad:31:de:1a:15:54:ee:
24:a3:e4:ce:38:c8:0e:a8:02:5d:83:6e:d4:39:42:49:ae:57:
a3:24:22:d9:87:8b:9b:9d:53:36:9a:b8:44:12:7e:df:23:b6:
16:99:ef:a6:b6:fd:cc:95:ee:a3:40:3a:10:c7:79:dd:6c:eb:
37:61:45:12:16:60:6b:33:cd:15:34:47:7b:41:2b:00:dd:6d:
6d:1f:95:7c:e9:27:66:28:b3:09:ed:4b:00:db:75:18:b0:08:
a2:61:85:88:f4:92:67:4a:f1:bd:17:e9:dd:16:bc:12:09:89:
2f:3e:c6:df:fb:b8:44:9a:54:8d:1d:61:71:9e:40:c4:78:b6:
28:07:99:7c:c4:0b:aa:55:1f:da:2d:01:90:85:1b:2e:0c:f6:
38:ed:16:1f:9f:8e:db:78:8a:98:9d:e3:7c:7c:fa:de:d4:39:
7a:00:40:aa:0a:f4:19:3b:b0:b1:62:e9:7e:87:5d:0f:73:2b:
7f:bb:bd:db:02:24:c3:b5:5a:15:7f:81:78:2c:77:18:67:d7:
69:5b:a4:02:26:de:64:6b:cf:59:ee:3d:04:6c:e0:6a:df:01:
47:eb:b7:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:41 2024 by rpki-client on console-ams.rpki-client.org