Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C311CAF0CCC111EEACE4F88A775412E6.roa
File: C311CAF0CCC111EEACE4F88A775412E6.roa (raw, json)
Hash identifier: r3cY6FshHLnCXmW2fPJ5tLfCUMQjjGWHYGVCaZsEYpg=
Subject key identifier: 9D:5A:10:55:35:DF:2B:BE:05:1B:8A:92:FC:2A:CC:92:55:71:9E:13
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8B11
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C311CAF0CCC111EEACE4F88A775412E6.roa
Signing time: Fri 16 Feb 2024 11:51:47 +0000
ROA not before: Fri 16 Feb 2024 11:51:43 +0000
ROA not after: Fri 26 Apr 2024 11:51:43 +0000
asID: 9009
IP address blocks: 154.216.248.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 11:51:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35601 (0x8b11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 11:51:43 2024 GMT
Not After : Apr 26 11:51:43 2024 GMT
Subject: CN=65cf4c53-9f41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:82:6e:8a:52:80:d2:ec:db:59:38:73:57:0f:
e9:2f:2e:27:9b:c5:63:04:3e:22:0c:19:46:88:f5:
7b:d1:e1:cf:5f:f6:86:00:27:b1:01:4d:84:42:b4:
8d:8e:f0:4d:06:68:d6:fb:2e:93:02:78:70:a6:09:
70:93:b8:08:6d:08:70:69:50:02:4a:35:36:66:64:
5f:80:f7:cc:96:e3:82:65:ca:3e:b2:a6:37:42:7b:
e8:68:ab:c8:62:5f:10:bd:49:f3:f3:7c:09:88:da:
18:de:5d:90:9c:7f:f2:ef:6a:8c:6d:ee:0a:fc:cf:
cb:1d:b5:c1:c3:eb:3d:eb:78:e3:1a:25:67:f3:7d:
0d:f8:16:51:be:91:9e:41:0b:f4:39:a6:7f:2d:b3:
68:fa:46:0a:da:2c:ac:41:af:26:0a:ab:a7:d9:a9:
31:d4:50:53:82:60:c8:ae:e2:f2:72:25:9f:d7:81:
c8:02:eb:aa:d6:3d:ef:4f:90:47:c1:4c:7f:90:b0:
ff:3b:3b:3f:e7:01:82:a0:05:ee:29:93:20:ea:08:
89:22:f2:3d:ac:70:86:80:08:17:2f:84:47:6a:a6:
c0:4d:93:2d:7b:7a:87:ac:8d:ef:fe:19:4a:19:cf:
43:85:8a:2a:23:e1:90:3b:a3:06:f9:ae:3f:ec:cd:
05:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:5A:10:55:35:DF:2B:BE:05:1B:8A:92:FC:2A:CC:92:55:71:9E:13
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C311CAF0CCC111EEACE4F88A775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.248.0/24
Signature Algorithm: sha256WithRSAEncryption
31:44:b7:b5:15:24:91:c5:ae:39:ac:21:9d:97:0a:c7:66:55:
cf:a3:73:08:bd:02:57:8b:bf:e3:cc:91:b2:d2:b1:5e:b7:6c:
07:c0:da:44:75:47:73:ed:9e:b1:2b:22:be:43:fd:be:fc:a1:
04:48:a2:4e:c6:75:69:96:db:72:9f:59:26:01:e3:2b:86:37:
f3:e6:b3:bd:32:fc:c2:4f:8e:66:2d:86:d1:9a:db:41:0e:29:
60:09:14:23:e5:34:1b:db:c7:ff:1c:eb:cf:d7:65:cb:4c:75:
73:71:db:c7:6b:28:dd:49:80:14:97:c7:d1:c7:3a:5b:1f:0f:
27:06:15:e4:55:13:bb:21:69:1b:1d:c4:06:47:26:60:3c:ce:
cc:b7:31:c9:9f:33:b3:4a:d5:ad:41:10:3a:97:18:9c:f0:0c:
02:80:50:fb:e1:b4:ca:26:9f:14:05:9b:37:f1:57:8d:79:7b:
32:c5:6b:eb:ce:f6:4d:2c:fb:31:89:9b:2f:d6:4f:f0:7d:d7:
71:6c:5d:72:c3:81:92:57:82:9a:a4:73:80:a0:0f:58:5b:f1:
7e:67:65:ff:d7:89:60:68:41:5d:21:39:a9:94:9a:ab:fe:8a:
43:0f:d3:a2:78:84:80:5a:dc:64:b0:79:94:d1:25:2b:be:0a:
58:18:74:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:48 2024 by rpki-client on console-ams.rpki-client.org