Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C82AB17ECCC011EEBAF37D89775412E6.roa
File: C82AB17ECCC011EEBAF37D89775412E6.roa (raw, json)
Hash identifier: /Lh4dVBqX0z0cYVyVkn3PSylvz/ape6Qc3CwFEWyK6I=
Subject key identifier: BC:1E:36:08:36:86:C6:01:92:97:60:BB:13:60:A1:80:97:58:71:14
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8B07
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C82AB17ECCC011EEBAF37D89775412E6.roa
Signing time: Fri 16 Feb 2024 11:44:46 +0000
ROA not before: Fri 16 Feb 2024 11:44:43 +0000
ROA not after: Fri 26 Apr 2024 11:44:43 +0000
asID: 9009
IP address blocks: 154.216.243.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 11:44:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35591 (0x8b07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 11:44:43 2024 GMT
Not After : Apr 26 11:44:43 2024 GMT
Subject: CN=65cf4aae-eef7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f2:5c:7d:44:ca:9f:26:00:1c:4a:5b:13:2d:
83:78:90:26:11:27:94:3f:d1:c1:17:21:94:e3:6a:
62:68:16:4b:7a:b9:e9:e2:d0:e1:66:74:5f:58:17:
f4:bb:50:29:26:ca:86:a0:be:f7:39:ba:65:cd:bf:
fd:e9:b2:4c:18:00:94:4b:fa:b4:74:c7:0b:b3:2a:
12:e8:0f:65:fe:d0:65:63:dc:c2:d9:ad:8f:e4:1b:
03:11:90:3e:7d:75:b2:2b:58:51:48:ad:88:c1:73:
24:4c:63:9a:63:b1:ad:d4:f7:5d:a3:5e:b9:a5:37:
b2:d3:ff:d1:60:b1:70:e2:63:ac:95:8d:91:46:ca:
bf:b1:b3:77:ac:8a:c2:a8:a3:2b:3f:49:02:ef:58:
ad:64:43:6b:f4:6c:65:fe:bf:5c:6c:c9:6d:be:ce:
b0:cc:e4:de:56:f0:79:23:14:8a:fc:d5:4b:ee:ca:
d3:62:65:09:cf:95:c9:0f:61:c9:be:f9:98:cd:1b:
b7:20:58:07:75:9a:b8:2e:3a:04:4b:28:8b:78:4b:
9e:40:b1:fc:e5:f3:d2:db:ab:c1:e6:f2:ff:93:f1:
97:29:ce:ff:e7:16:4a:75:d7:2c:4a:d2:4d:55:37:
20:c5:4e:93:87:0b:9d:16:12:c1:b3:75:0c:bf:37:
cb:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:1E:36:08:36:86:C6:01:92:97:60:BB:13:60:A1:80:97:58:71:14
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C82AB17ECCC011EEBAF37D89775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.243.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:06:d8:0f:49:e8:9c:b0:b5:ab:d0:11:ee:42:f6:35:2f:66:
d1:46:58:f9:dc:44:96:59:7e:7d:c5:8e:aa:1f:d8:2e:5e:bf:
76:a1:45:20:02:69:14:bb:63:da:ec:c4:18:0d:ad:6a:f6:ea:
4d:58:3d:20:3a:46:23:c9:4d:63:1e:4b:0c:61:c2:fd:13:4d:
e0:96:ae:e7:2c:5e:67:71:82:34:66:a3:14:c7:bf:34:6b:38:
7d:c5:55:3d:91:ff:ce:db:f5:61:65:6b:9a:1d:86:a2:ac:87:
e2:c2:8e:8b:ef:02:fa:d1:da:a5:1d:9a:e2:f6:f7:ff:45:ff:
4c:c8:a2:3d:66:4a:81:6d:bd:df:08:72:b4:d2:5b:63:57:27:
c1:e6:11:86:59:4a:b3:6a:f5:22:47:55:8a:e2:47:69:63:5d:
fa:de:8e:bf:14:2b:96:11:59:7c:b8:f5:b5:e4:4b:76:99:8d:
ef:20:7a:80:eb:a5:fc:c2:fb:16:66:53:17:d8:fe:26:6b:b6:
61:57:8f:81:b1:a1:ea:ca:c5:0f:ba:f7:e8:f6:c5:65:2b:c7:
ee:d4:c2:27:21:3b:2f:73:50:2a:5f:bd:87:43:06:56:fe:1e:
8d:12:ae:c7:83:65:93:3f:ef:a2:c4:d4:1b:21:1e:0a:a0:d2:
78:27:ff:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:49 2024 by rpki-client on console-ams.rpki-client.org