Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C0CF7D2E28A11EE9ABBC8A8775412E6.roa
File: 1C0CF7D2E28A11EE9ABBC8A8775412E6.roa (raw, json)
Hash identifier: J2ciuBNKYAw9B8H7GqgatULmyGO59Dva4jfvz0qtXiA=
Subject key identifier: 24:BE:9F:3E:70:A6:EC:45:E6:2A:3E:51:A5:B1:5A:1B:8E:EB:F4:00
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A173
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C0CF7D2E28A11EE9ABBC8A8775412E6.roa
Signing time: Fri 15 Mar 2024 05:08:50 +0000
ROA not before: Fri 15 Mar 2024 05:08:47 +0000
ROA not after: Fri 20 Sep 2024 05:08:47 +0000
asID: 2914
IP address blocks: 154.214.216.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41331 (0xa173)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 15 05:08:47 2024 GMT
Not After : Sep 20 05:08:47 2024 GMT
Subject: CN=65f3d7e2-6009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:c7:11:7a:04:b2:e2:92:70:89:3c:b6:a5:bc:
a8:e0:13:21:36:cb:90:0d:04:f7:86:a5:0d:eb:85:
e8:dc:e9:a8:1a:c2:24:ce:25:a3:31:aa:ec:85:31:
f8:4f:04:77:d8:34:3e:52:78:de:99:df:4c:0c:38:
8c:2b:9a:15:54:04:19:84:99:f6:6c:f8:4f:c3:86:
27:e5:d4:48:5d:a6:93:af:b6:5a:14:f6:67:3b:c3:
a2:3d:ca:6c:d6:1e:08:93:ef:dc:7a:f5:c5:fa:63:
33:1d:85:62:80:f9:4d:78:3e:93:77:20:d7:bc:34:
c5:69:9c:c7:a8:93:ef:8b:6c:04:bd:6d:0b:cd:d2:
f6:5f:dd:cb:54:35:c8:7b:2e:fe:8b:cd:7d:0d:d7:
2c:25:de:40:52:ce:0b:94:0d:a5:1d:19:b8:35:a8:
2a:6b:37:d9:d2:91:4b:81:af:ef:15:56:0d:b1:af:
2c:1b:9f:1c:a4:92:3c:c7:c7:72:08:e5:d4:a9:82:
24:42:09:1d:8a:02:78:08:fb:cf:bb:b3:34:37:43:
c8:17:5b:52:d5:33:f3:42:3c:c2:64:47:7b:2c:94:
07:24:ff:ee:58:30:6a:25:f4:29:2b:0e:ec:a2:23:
51:3e:41:a3:6f:70:f9:c1:20:41:c8:22:6d:c5:ea:
a4:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:BE:9F:3E:70:A6:EC:45:E6:2A:3E:51:A5:B1:5A:1B:8E:EB:F4:00
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C0CF7D2E28A11EE9ABBC8A8775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.216.0/24
Signature Algorithm: sha256WithRSAEncryption
86:1a:ee:6c:fa:d7:c7:f9:37:3b:46:d8:23:81:d3:80:57:ee:
11:b5:73:83:17:ca:98:c0:49:0f:e4:94:6c:e0:61:2f:c2:3a:
d8:e2:3a:6a:39:99:eb:7b:43:43:88:60:37:8a:54:e9:b9:66:
88:8c:99:7f:27:ab:e5:3b:5b:58:e5:98:e1:1c:8e:15:24:f4:
31:e0:bf:62:16:96:e4:b8:b3:f5:c8:30:3b:aa:a5:92:c3:fa:
c3:66:4d:da:35:fd:38:71:20:59:94:8e:49:54:e5:a4:98:9b:
c2:93:7b:1c:85:c5:c5:0a:33:3e:ce:b5:5f:cc:ce:9a:d7:ab:
04:62:46:f8:91:4d:55:02:8a:77:fb:ab:6c:bc:12:09:d0:4c:
1e:5d:f0:68:8e:81:27:fd:cc:5c:d6:9d:18:83:3c:ab:d9:57:
bb:3a:0a:be:ba:d2:32:b0:db:0d:9a:92:d4:9b:68:65:6a:c9:
8e:d1:4b:5a:c6:93:1e:e5:31:e1:87:16:12:99:00:6c:6a:39:
2b:cb:c8:1b:f1:5e:30:57:7a:df:8e:de:e7:c4:7e:e5:47:7b:
83:4b:d9:5e:1d:8d:e3:95:1b:36:fb:8f:2a:dd:82:e1:fa:87:
c2:d4:9a:6d:bb:95:e6:be:2b:59:bd:d0:77:6b:b6:fb:7f:cc:
79:f3:58:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:03 2024 by rpki-client on console-ams.rpki-client.org