Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CD5918B8CCC311EEAE40508E775412E6.roa
File: CD5918B8CCC311EEAE40508E775412E6.roa (raw, json)
Hash identifier: 9Vd8BqdnDYPr0l15zmVbpbNCFXoNd6AzAvybugTZb1s=
Subject key identifier: 8B:0A:92:24:BC:79:B2:00:1C:BB:35:CF:8F:DC:49:03:05:1A:C0:1D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8B25
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CD5918B8CCC311EEAE40508E775412E6.roa
Signing time: Fri 16 Feb 2024 12:06:23 +0000
ROA not before: Fri 16 Feb 2024 12:06:20 +0000
ROA not after: Fri 26 Apr 2024 12:06:20 +0000
asID: 9009
IP address blocks: 154.218.194.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 12:06:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35621 (0x8b25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 12:06:20 2024 GMT
Not After : Apr 26 12:06:20 2024 GMT
Subject: CN=65cf4fbf-2f03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:0f:da:c6:79:fc:6c:01:f8:16:9c:57:da:57:
f3:a5:e5:f6:64:30:e1:d6:f7:f2:f1:1d:81:5c:74:
aa:3e:b2:8e:12:b9:86:d2:d4:92:c5:83:af:9e:ac:
c9:89:0a:9c:ff:61:c5:d7:5a:37:13:01:16:34:27:
3a:c5:42:ce:14:36:08:e6:b4:aa:ed:c1:a8:aa:20:
3c:1e:fb:89:ed:7b:57:c6:dd:fc:cb:b5:23:6e:0f:
25:fc:e1:ad:2f:ec:a1:b7:5d:cb:44:cb:0a:8f:c2:
ab:59:13:de:a0:3a:1f:aa:9e:b3:fa:c3:f4:ca:d3:
ca:3c:56:90:5e:cf:d5:6a:c2:2f:6f:97:11:9d:50:
9a:1b:36:27:80:01:b0:71:be:61:5a:ff:4a:5d:e3:
86:ed:e4:65:c9:3a:a9:ff:38:55:87:68:ac:2f:f2:
2c:30:35:67:23:15:04:5c:01:46:14:b2:0d:99:06:
e8:b7:f3:79:77:86:4e:9a:25:9c:5a:d0:23:60:ed:
e9:f2:f7:fe:19:6f:03:f4:43:86:51:ed:df:d5:e2:
66:ad:6f:81:12:26:1c:e8:89:41:72:b0:31:a4:29:
46:37:f9:c6:f7:c9:ba:1e:3d:1c:56:f0:1e:3e:3a:
70:45:e4:c4:06:33:df:b2:39:1e:67:62:90:fe:81:
2a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:0A:92:24:BC:79:B2:00:1C:BB:35:CF:8F:DC:49:03:05:1A:C0:1D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CD5918B8CCC311EEAE40508E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.194.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:b5:38:fe:97:f1:fb:6b:4a:fe:01:3a:c3:fd:f7:4d:51:8b:
c1:4e:2a:06:c0:33:a6:4d:e1:bb:42:1f:dc:92:56:96:80:6a:
8c:41:1b:cd:5f:80:43:dc:ff:0a:be:e0:0e:02:69:02:d3:56:
f5:f4:22:61:6d:48:a6:a0:66:ed:4f:e5:30:93:86:39:50:8e:
86:56:74:1f:9f:17:66:9b:0c:2a:25:68:f5:79:9f:9c:b6:4c:
c1:cb:27:16:54:62:19:e7:1f:70:72:be:dc:b5:ea:42:f2:84:
78:c5:62:f6:83:c2:2d:be:d1:8f:f8:1e:27:49:12:5a:91:b4:
21:3e:db:ba:64:5a:7b:cf:ca:a7:b6:50:92:39:e4:53:4c:b3:
2a:24:5c:f9:c7:8b:ce:42:38:f6:24:b0:d9:38:89:66:34:51:
55:26:c7:84:a1:91:4a:31:b6:6b:49:f8:ce:18:b9:e3:aa:16:
8a:b4:6b:e0:d2:09:83:f5:49:17:0a:fb:b1:72:d7:96:fd:39:
9a:2c:1a:9c:eb:a3:35:df:a3:f1:55:61:13:2f:fb:ff:9c:be:
01:0a:6a:d6:8d:2c:20:83:b8:cb:6d:df:85:19:89:24:d8:14:
01:60:b6:61:af:67:be:3a:97:d6:c4:fa:50:5e:42:ae:6d:cd:
a7:ed:6f:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:49 2024 by rpki-client on console-ams.rpki-client.org