Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E73E216ACCBE11EEB0698286775412E6.roa
File: E73E216ACCBE11EEB0698286775412E6.roa (raw, json)
Hash identifier: Qpo7K9LkbK5fgp9r5PrYkuHkXHBkMPvczAwatKWilh4=
Subject key identifier: C3:C4:1F:5E:86:EA:82:12:71:BF:40:E0:33:AE:61:97:76:4F:6A:8E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8AF5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E73E216ACCBE11EEB0698286775412E6.roa
Signing time: Fri 16 Feb 2024 11:31:19 +0000
ROA not before: Fri 16 Feb 2024 11:31:16 +0000
ROA not after: Fri 26 Apr 2024 11:31:16 +0000
asID: 9009
IP address blocks: 154.216.234.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 11:31:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35573 (0x8af5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 11:31:16 2024 GMT
Not After : Apr 26 11:31:16 2024 GMT
Subject: CN=65cf4787-1afb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:ea:07:ac:1c:d2:d5:ed:b2:bb:ad:4d:1f:ca:
ad:0b:3e:ec:32:ee:77:85:8e:05:34:9c:4c:ff:72:
de:81:c6:4f:f8:19:b7:10:1d:a4:64:11:9a:5a:c1:
16:ef:7a:89:58:7e:68:59:bf:c2:82:ff:c4:8b:24:
b1:28:b0:16:60:ee:42:c3:1f:de:7f:11:b1:02:70:
ff:6a:8c:95:36:6f:6e:07:23:5b:53:35:8b:58:14:
61:d3:bc:65:13:a2:36:4e:53:59:56:62:d1:03:60:
3b:db:b3:96:31:40:63:10:b1:7b:7b:81:ba:f3:61:
f8:f9:68:fa:2e:31:ee:d6:66:4a:19:1c:4f:ab:89:
dd:e9:8b:ca:18:04:58:69:6e:a1:ac:02:63:76:34:
c4:bf:2b:57:ba:e9:6e:e1:a5:c2:94:62:33:67:d6:
fa:23:91:c9:56:30:8b:52:27:de:3b:9f:0b:d5:bb:
0d:08:cb:f0:f0:f0:5c:91:28:74:62:17:90:d0:8e:
e9:c6:ba:98:fb:5c:42:d0:25:ee:65:91:5d:d0:9f:
ca:0b:f2:81:6d:2f:a8:b7:2e:56:d2:e4:16:70:af:
be:f6:ac:64:e2:8f:92:3a:6c:20:19:72:25:2f:a8:
24:f2:1c:3b:13:81:c6:30:7f:d3:a4:c2:02:ae:7d:
48:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:C4:1F:5E:86:EA:82:12:71:BF:40:E0:33:AE:61:97:76:4F:6A:8E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E73E216ACCBE11EEB0698286775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.234.0/24
Signature Algorithm: sha256WithRSAEncryption
77:9d:86:c6:07:ba:37:eb:94:4a:2f:8c:ca:69:d2:ea:8b:57:
13:5a:e8:76:91:5a:8f:4d:ca:68:a1:7a:76:f1:a5:07:eb:6c:
4f:97:76:64:ba:b2:66:f7:4a:1f:70:d2:81:8b:53:45:51:60:
fb:21:96:ea:18:8b:a7:09:07:6d:ca:1f:84:1d:9f:7f:bc:cf:
43:87:b3:fc:a2:7e:8f:e1:2e:96:86:dc:21:24:54:c0:a2:a5:
97:0a:31:5f:fa:7c:c3:6d:d6:c2:bb:b6:22:02:4b:62:fd:d1:
92:71:2e:28:af:32:c2:cf:a3:ea:b6:47:71:db:d8:79:ac:c8:
e8:bb:a7:9b:d4:93:a8:a7:ed:88:82:56:b1:91:45:10:7c:16:
1a:05:d6:da:cf:f2:21:99:e9:e6:33:40:e5:4e:de:8d:42:5d:
52:79:8a:e2:26:0d:14:fe:74:71:dc:6e:b8:e3:33:16:57:f6:
07:da:4b:bb:08:7b:ba:2e:ce:bf:2c:a6:f6:93:18:8d:f6:76:
8d:26:2a:a4:7c:2a:e9:83:12:be:3d:eb:ba:d8:db:36:02:5d:
a0:3e:e2:da:b8:f2:e1:44:c7:b1:d2:cb:cf:31:c0:f9:4e:e9:
1b:b4:0a:71:05:26:48:af:1f:a9:fb:75:6b:03:a8:30:15:55:
ac:4f:d2:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:49 2024 by rpki-client on console-ams.rpki-client.org