Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FBC77206CCC011EE8BFDD289775412E6.roa
File: FBC77206CCC011EE8BFDD289775412E6.roa (raw, json)
Hash identifier: 8V3y44KP1R1IO3lNZy0kKNJshjZqOAfBlNcTHQkR7T8=
Subject key identifier: 24:E3:B2:72:B4:86:81:15:E5:7E:EE:D7:56:68:32:8D:B4:82:1F:3B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8B09
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FBC77206CCC011EE8BFDD289775412E6.roa
Signing time: Fri 16 Feb 2024 11:46:12 +0000
ROA not before: Fri 16 Feb 2024 11:46:09 +0000
ROA not after: Fri 26 Apr 2024 11:46:09 +0000
asID: 9009
IP address blocks: 154.216.244.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 11:46:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35593 (0x8b09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 11:46:09 2024 GMT
Not After : Apr 26 11:46:09 2024 GMT
Subject: CN=65cf4b04-07ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:c2:5c:0f:99:07:07:f7:2d:d8:54:1c:cd:ce:
03:5f:db:88:5e:d9:ec:7d:e2:bf:86:ef:3d:7c:15:
87:b8:23:19:7b:6a:1a:26:eb:79:19:9a:b2:a7:ee:
8b:37:77:24:1b:eb:4a:db:f8:2f:6b:9c:9b:76:78:
51:28:44:8c:be:e1:04:17:2b:4c:c0:8f:a5:31:fc:
9e:b0:d1:93:c8:8f:0b:d5:6a:76:76:35:98:58:99:
d5:57:a1:45:cb:50:e7:71:ae:6f:c5:5b:01:fe:02:
9e:62:2c:b8:b2:85:b9:59:5a:1c:44:95:ed:77:4f:
79:27:99:d1:cc:1f:7d:90:28:f2:4f:a0:7d:f3:b0:
c0:e7:29:83:8c:94:9a:b8:8b:e7:db:24:fa:1d:81:
d8:0a:35:90:5f:7e:ec:a8:88:65:5f:74:97:df:ca:
96:16:61:dd:02:58:f8:6e:aa:8b:2c:c3:1b:c7:45:
b7:d3:c1:22:15:72:52:03:c2:f6:36:63:9a:65:d5:
15:54:5d:d5:76:2a:01:fb:03:11:5a:ea:8b:17:44:
4c:16:5a:36:d5:fe:f7:30:a9:77:78:7a:02:39:45:
fa:c5:48:29:ca:3e:a2:dd:72:13:7c:ff:5d:dd:ca:
63:d4:b7:4a:33:de:a8:39:8d:cf:0d:49:4b:3d:04:
8b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:E3:B2:72:B4:86:81:15:E5:7E:EE:D7:56:68:32:8D:B4:82:1F:3B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FBC77206CCC011EE8BFDD289775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.244.0/24
Signature Algorithm: sha256WithRSAEncryption
17:3b:fc:d2:c0:f1:f8:94:b0:b7:56:4c:4b:ff:3e:50:3f:5a:
b7:87:c9:f2:6d:c4:6c:e0:75:c3:b3:90:f3:28:e3:5e:6d:ee:
c8:0d:6a:d2:d1:4b:7f:6a:25:af:b2:6f:14:69:fd:bf:f3:87:
54:08:cd:d1:fc:db:df:96:1f:52:cd:ef:65:34:cc:93:32:1b:
9b:61:69:ee:d9:a8:78:4a:96:fe:a8:48:33:7c:ae:93:f4:2f:
fe:3f:4b:a6:a8:89:9b:76:fb:7b:e9:2f:96:34:02:f9:95:bc:
21:0a:5b:95:a6:0c:54:d0:6f:aa:18:29:c2:0f:1a:c9:d9:6e:
e6:5b:15:62:7b:6e:17:be:11:fb:6b:12:ea:8d:8f:5d:3b:91:
e4:9e:de:9e:71:10:67:71:d4:f8:db:db:10:b9:67:77:c0:d4:
a0:8d:b3:e1:ab:56:ab:7a:d8:da:f7:09:e2:3c:58:f7:c3:ff:
bf:a6:82:18:61:96:b7:7e:4e:7a:94:d0:c6:64:ae:e3:f3:bc:
62:30:5a:36:48:60:59:6b:1a:4e:a7:ac:89:70:be:13:7f:92:
f5:19:92:fb:09:95:f6:36:f0:38:a6:53:25:62:a2:fb:c9:0e:
c3:fe:de:a8:d0:64:8a:1f:c0:83:71:fe:31:94:7f:3e:1e:07:
46:80:46:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:50 2024 by rpki-client on console-ams.rpki-client.org