Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7FABFC6CCC211EE9609CA8C775412E6.roa
File: C7FABFC6CCC211EE9609CA8C775412E6.roa (raw, json)
Hash identifier: Vu7M4RdNEk3dib5d0iLBWFr/TSPLAYCp3a13dIfnrmc=
Subject key identifier: A4:01:5D:F3:66:F0:DE:97:B6:C2:4E:FD:15:BF:4D:8D:8D:1B:6E:E4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8B1B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7FABFC6CCC211EE9609CA8C775412E6.roa
Signing time: Fri 16 Feb 2024 11:59:05 +0000
ROA not before: Fri 16 Feb 2024 11:59:01 +0000
ROA not after: Fri 26 Apr 2024 11:59:01 +0000
asID: 9009
IP address blocks: 154.216.253.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 11:59:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35611 (0x8b1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 11:59:01 2024 GMT
Not After : Apr 26 11:59:01 2024 GMT
Subject: CN=65cf4e08-dbad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2d:dc:c4:db:13:d4:9f:24:6f:28:d9:1a:c4:
0f:05:f4:8b:e0:9d:ad:00:12:05:9e:96:e3:59:73:
90:d5:9d:8c:25:0a:4a:92:a1:6e:d6:08:98:db:76:
9c:88:df:ba:bc:7e:5d:68:27:3b:1f:53:4e:bb:a1:
c2:0e:2f:62:69:61:05:72:68:c6:ac:b4:e1:23:02:
33:e2:e0:4d:a0:1f:f0:0b:78:6d:12:e6:ff:82:71:
48:24:60:06:77:63:04:a2:58:e9:8e:44:60:79:6a:
46:cb:25:05:61:9a:be:6d:0c:4d:a4:21:ca:ba:dc:
47:ec:e7:57:6f:f7:fe:72:46:15:f2:af:c7:98:c0:
9f:e0:be:18:85:1e:83:57:d7:c9:59:15:fe:9c:a0:
50:c5:bf:14:f5:93:b0:cd:e7:f7:c8:3a:9a:0c:f9:
dd:81:c7:33:ac:bb:d5:4e:06:1d:b9:8d:61:f7:48:
9e:f9:0b:a9:90:b0:e4:c6:6a:5f:a3:2b:3a:a8:fb:
e1:a5:6f:1d:2c:90:ab:c5:6d:d9:95:98:29:4f:df:
63:6e:04:42:01:1a:e9:4b:be:fe:d4:fe:17:e1:af:
0a:01:cc:27:c2:ed:de:f3:32:10:df:38:88:e0:22:
c2:16:e8:ca:c9:c6:be:40:67:11:ce:8f:90:e3:01:
3b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:01:5D:F3:66:F0:DE:97:B6:C2:4E:FD:15:BF:4D:8D:8D:1B:6E:E4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7FABFC6CCC211EE9609CA8C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.253.0/24
Signature Algorithm: sha256WithRSAEncryption
18:5b:79:f7:12:b4:a3:9b:4a:63:41:eb:07:ec:2b:3b:85:2d:
d7:11:cf:79:18:d4:cd:a0:21:b5:2a:cf:e4:8b:a4:1a:b0:63:
f0:de:e3:71:05:ea:a3:2f:9a:b5:89:d9:03:78:f7:80:3f:43:
b5:1b:ed:6a:74:ee:0f:b1:61:16:28:b6:b2:f0:d2:a0:c9:c5:
4c:18:f3:2a:4d:8d:4d:38:ca:1b:b3:57:10:ac:f4:40:3b:9d:
3c:ea:35:3e:d7:cf:1d:4b:29:ce:6b:6e:07:ef:d7:7f:74:93:
46:ed:cc:ae:72:06:2e:76:6e:12:37:77:1c:7f:df:60:b7:7f:
84:a0:2c:a6:6e:11:02:0c:d3:17:2d:71:1d:e2:a9:8f:90:5d:
0a:7f:89:40:c5:fc:7a:fc:52:33:38:54:eb:04:55:db:e2:18:
98:d5:d3:da:ad:2e:c6:55:15:17:c7:98:49:6f:a2:92:69:d2:
e7:8d:b6:45:07:27:b7:80:ab:52:3d:a8:c2:85:63:6d:02:d4:
53:91:35:80:96:43:7f:f0:5a:75:ab:9c:dc:3e:42:96:06:66:
c0:ea:ff:6d:97:bd:6e:7c:78:ac:89:eb:b8:9f:32:ab:78:f1:
dc:3e:9c:33:c6:f3:e6:ce:a6:d9:a9:c1:ec:d2:f8:aa:1a:89:
ef:dc:66:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:48 2024 by rpki-client on console-ams.rpki-client.org