Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8FAB5914CCC211EE93D5508C775412E6.roa
File: 8FAB5914CCC211EE93D5508C775412E6.roa (raw, json)
Hash identifier: cH7SRGxiVAI++2jKRlWlUXzeVCcuhuqHz89HkZRDuS8=
Subject key identifier: 5E:70:55:F8:FB:E8:78:A0:22:6B:EF:37:E7:0F:D4:9C:38:F1:CF:2D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8B19
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8FAB5914CCC211EE93D5508C775412E6.roa
Signing time: Fri 16 Feb 2024 11:57:30 +0000
ROA not before: Fri 16 Feb 2024 11:57:27 +0000
ROA not after: Fri 26 Apr 2024 11:57:27 +0000
asID: 9009
IP address blocks: 154.216.252.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 11:57:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35609 (0x8b19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 11:57:27 2024 GMT
Not After : Apr 26 11:57:27 2024 GMT
Subject: CN=65cf4daa-a0ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:7d:00:81:90:46:73:b2:d9:ba:05:f3:c5:9a:
11:3e:53:0f:9e:c0:14:21:cb:be:ce:8a:4d:b2:fc:
1d:3e:56:2a:90:d8:2d:ec:f5:55:30:0a:cc:13:76:
22:53:03:3d:9b:bc:cb:ab:cc:8a:b3:ec:60:f1:98:
2a:3f:a8:01:b1:69:88:b6:20:38:b7:04:ce:45:bc:
4c:e7:27:03:25:5c:ce:43:32:3e:37:43:6d:c4:5e:
82:c5:6c:de:e7:7c:7d:38:60:3a:eb:cd:2c:f7:cd:
17:42:82:4e:8a:20:a7:35:2a:dc:23:f8:d0:bd:ca:
f2:d8:f5:c8:b4:c6:a7:05:2e:da:a9:1b:a0:f0:72:
59:d6:2f:54:ea:68:3c:47:c9:06:c0:99:7f:cc:fd:
ab:ae:c5:57:92:8f:a2:8b:3d:86:4a:d0:63:b3:a0:
03:8e:16:bb:d1:26:5d:44:46:fb:14:f7:77:92:c0:
89:5e:ef:10:ab:75:23:0c:ea:48:c4:ac:82:de:20:
3c:88:0d:60:a2:a3:83:c8:16:8b:01:6f:de:57:7f:
c8:b2:7c:e8:d6:0b:6c:04:89:43:2d:05:4c:c7:e7:
64:9d:2b:51:26:1a:41:ce:c0:ff:e8:38:28:46:7a:
59:8a:bb:02:22:65:95:9a:85:c6:c4:19:1c:f0:d2:
c5:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:70:55:F8:FB:E8:78:A0:22:6B:EF:37:E7:0F:D4:9C:38:F1:CF:2D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8FAB5914CCC211EE93D5508C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.252.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:0a:cc:2d:0d:46:53:72:a1:b4:ff:da:31:ef:89:37:26:3d:
fd:1d:28:c4:ee:b7:f2:10:16:26:27:85:07:e5:e5:58:55:94:
ee:1b:9e:ca:9a:8c:63:c1:c3:3b:2f:42:41:f8:e8:0a:a7:70:
6f:e9:73:9c:0f:29:42:d2:6c:d2:5b:bd:5a:76:d5:95:8d:f7:
77:3a:85:64:d6:ee:bd:0e:d3:a3:78:fe:00:03:fd:63:85:4f:
5e:a3:d2:38:a1:65:98:36:74:a2:11:e8:42:01:f2:ce:39:b5:
b6:1f:50:95:4d:c6:45:ab:96:82:35:f5:34:c7:44:4b:21:3f:
8f:cb:39:80:09:35:0c:d6:68:f1:29:83:d7:bf:03:37:86:2e:
2a:41:12:4f:70:f2:c7:29:7e:9a:8d:7d:8d:ae:29:62:8b:77:
a3:a4:fa:67:03:19:aa:8d:16:c6:c4:2e:fc:db:de:b8:61:94:
ca:b8:2a:c4:85:8f:47:a7:38:80:92:ac:9d:51:8f:c9:ed:2a:
1d:7e:ba:13:de:15:04:c7:7d:43:56:65:c8:2f:d8:f9:52:65:
2a:93:92:68:ef:8c:5a:0c:93:22:73:be:12:91:45:2b:bd:8c:
c3:8e:81:25:49:69:e9:25:13:12:2c:8c:db:e9:ba:ac:8e:32:
82:c5:de:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:42 2024 by rpki-client on console-ams.rpki-client.org