Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2266F8F67EB911EE9D6DD75A4AD9E6FC.roa
File: 2266F8F67EB911EE9D6DD75A4AD9E6FC.roa (raw, json)
Hash identifier: 0gqbh0ox5iyQ0mzZNn/lPMRPq3o6hw/PksFlmt3EHg8=
Subject key identifier: CF:5F:A6:AF:C2:E9:71:38:C0:30:D5:EE:6C:91:53:39:97:85:1B:7C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4DBB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2266F8F67EB911EE9D6DD75A4AD9E6FC.roa
Signing time: Thu 09 Nov 2023 04:33:31 +0000
ROA not before: Thu 09 Nov 2023 04:33:27 +0000
ROA not after: Thu 08 Aug 2024 04:33:27 +0000
asID: 133861
IP address blocks: 154.204.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19899 (0x4dbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 9 04:33:27 2023 GMT
Not After : Aug 8 04:33:27 2024 GMT
Subject: CN=654c611b-8956
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:fb:35:e3:4a:e2:87:1b:e4:33:25:84:a1:d3:
a8:2d:67:8a:fd:98:39:7f:82:46:de:ea:05:02:03:
08:e4:63:8d:5a:1c:f5:11:ac:97:30:28:19:78:ce:
90:f3:37:03:fe:ff:ab:df:12:01:0f:4d:69:40:92:
2c:ba:4b:fb:e0:a2:2e:ae:a2:6c:5b:60:21:aa:83:
35:b5:b7:4d:a8:b7:e2:02:11:c9:a7:6b:dc:95:ef:
42:5c:75:5d:08:0c:d4:e0:a2:8d:dd:06:18:88:a3:
46:24:74:46:4a:fb:48:e0:f6:57:4e:f3:e0:76:8d:
7d:cd:b8:77:39:d0:13:a4:1a:8a:ec:db:16:bb:c6:
f2:a0:e7:2e:18:9a:35:a3:a2:33:e5:74:5b:4e:2e:
9f:c4:f6:bb:e2:9b:02:33:75:0a:e3:f0:dc:10:6e:
32:1f:d5:35:52:a1:d1:d7:24:6c:66:fb:83:c5:6f:
85:eb:88:67:c9:04:e1:fb:2e:3f:b7:9a:a4:c4:76:
86:86:8a:98:93:7f:a5:48:51:31:eb:9b:9c:eb:23:
b6:36:27:01:08:2b:8e:cf:bc:00:d8:a5:21:d5:98:
f3:b3:64:5d:d2:98:0d:5e:9d:92:1d:16:c5:eb:5a:
e2:9b:01:f2:4e:b4:1e:55:aa:cf:4f:0d:57:76:0d:
4d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:5F:A6:AF:C2:E9:71:38:C0:30:D5:EE:6C:91:53:39:97:85:1B:7C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2266F8F67EB911EE9D6DD75A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.35.0/24
Signature Algorithm: sha256WithRSAEncryption
04:a0:94:bf:8a:81:e6:9c:85:6e:07:12:c7:35:11:10:1d:3f:
98:b6:c4:e7:1f:6a:00:b3:3a:df:b2:51:7f:ea:5e:4c:d3:86:
00:1f:fd:97:8d:a2:03:d0:43:8d:13:7c:89:11:e0:67:df:39:
60:ef:11:0e:48:d9:41:a8:63:f1:88:26:8d:e2:4a:0a:8b:38:
fd:60:f7:11:c7:72:be:0c:c4:8b:06:f0:cd:3d:10:cb:05:0c:
09:0e:ff:8f:72:c9:8b:76:62:5f:56:97:17:00:06:35:8f:c4:
7a:b2:1e:58:4e:6d:c8:72:83:12:6b:c1:2f:5b:ca:20:b6:e5:
a5:8c:02:29:2a:38:81:4e:7e:b7:b3:79:24:40:95:48:87:b9:
c3:98:84:ab:39:55:47:69:f7:7d:95:2e:0a:c4:9f:11:c5:69:
f2:10:e3:bd:f1:07:c3:91:7c:6b:9b:a2:7d:19:54:91:a6:f3:
0b:20:04:6f:39:1a:ec:d5:db:74:c2:fb:88:30:d2:09:cf:51:
8e:a4:e4:5b:2d:48:9f:d6:ce:21:b1:20:7e:4b:b8:7e:5d:6f:
5d:9a:e1:e5:00:f3:aa:c0:dd:78:13:0d:89:63:1f:a5:60:80:
a4:93:0c:e1:14:68:44:eb:4f:75:31:a4:3e:ec:a2:1d:78:8f:
f6:ef:0d:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:04 2024 by rpki-client on console-ams.rpki-client.org