Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/240DEE50EDB611EE9FC06EA2775412E6.roa
File: 240DEE50EDB611EE9FC06EA2775412E6.roa (raw, json)
Hash identifier: pjm8azRwWdMj5tvuE/mfQdpPRFB5CNEjHLL7L2u4hvM=
Subject key identifier: 8C:F0:85:64:BD:FD:00:2A:BF:86:30:33:89:69:05:22:73:8C:D3:64
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A725
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/240DEE50EDB611EE9FC06EA2775412E6.roa
Signing time: Fri 29 Mar 2024 10:21:44 +0000
ROA not before: Fri 29 Mar 2024 10:21:40 +0000
ROA not after: Sat 04 May 2024 10:21:40 +0000
asID: 142062
IP address blocks: 154.86.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 10:21:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42789 (0xa725)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 29 10:21:40 2024 GMT
Not After : May 4 10:21:40 2024 GMT
Subject: CN=66069638-5537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5d:3c:60:f4:58:60:f8:62:ab:0e:7e:74:88:
fb:8c:b9:e1:7e:28:5e:51:6a:ca:a4:dc:02:5a:f8:
a8:e7:d5:40:47:a2:23:ec:80:75:58:44:22:09:56:
c7:a2:ab:65:85:cf:df:80:57:bb:ba:14:e4:57:c0:
22:66:a5:ee:92:1f:9c:d7:c1:d4:1e:dc:d7:96:ba:
8c:c6:2c:e4:43:fe:ec:7b:e4:d1:d1:50:9d:a3:a0:
e2:63:b0:d5:e1:38:7b:5f:20:fd:bf:22:06:a3:08:
80:52:04:37:e7:3d:ff:41:8f:07:1a:74:ed:09:01:
29:dc:73:ca:aa:03:d1:19:76:6e:94:36:b4:0b:57:
ad:ad:4e:64:e8:21:fd:c4:4f:eb:a8:18:b6:a7:4d:
13:bc:e1:64:4c:f2:ef:c7:f3:fe:cd:69:18:2f:9e:
4f:e6:4a:dc:9d:a1:19:48:7b:43:3d:1d:e4:d4:b2:
8e:26:d7:89:5d:70:c9:9b:8b:15:0f:01:bd:c8:16:
b0:37:79:8f:03:d3:6b:ee:ef:70:74:2e:7c:c4:9a:
99:8a:04:5d:7f:c6:47:ca:26:6a:28:66:d9:e7:2e:
55:9d:ea:be:87:79:6a:5b:b6:a6:f2:24:40:b4:7b:
61:cc:f2:03:a5:96:3c:88:17:43:da:65:f5:cc:fa:
f0:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:F0:85:64:BD:FD:00:2A:BF:86:30:33:89:69:05:22:73:8C:D3:64
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/240DEE50EDB611EE9FC06EA2775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.81.0/24
Signature Algorithm: sha256WithRSAEncryption
70:69:a6:ed:d7:b5:58:4d:fd:0e:dd:13:53:a2:63:26:de:4d:
48:d0:bf:61:91:4e:07:61:01:4e:07:ed:2d:b3:04:16:17:19:
dd:57:7f:b2:d2:f2:5f:a4:29:ca:67:66:7c:55:f5:73:c4:fd:
ab:0a:c6:75:ea:e4:78:5c:86:45:b5:db:5a:76:50:7e:f4:81:
5f:66:59:d9:ad:d3:35:40:9b:5c:82:dc:b1:3d:7a:c2:47:3c:
be:6c:e2:99:6c:53:f2:b3:d3:b4:50:d9:d5:9e:43:2a:f3:25:
b3:13:db:1a:e0:34:f8:6c:68:db:11:98:56:61:38:a9:52:c7:
cb:ff:0c:99:52:bb:9b:c1:cb:12:ef:8f:55:e1:dd:7e:61:ed:
ca:b1:2f:d9:69:a8:09:f0:56:a3:f9:45:c1:26:03:14:b9:5c:
6a:20:38:24:73:34:87:61:57:8e:45:ca:f6:cc:35:17:c5:b4:
a2:59:33:7e:ca:0a:2b:e4:e1:6c:c8:bf:f4:46:96:ee:ca:aa:
61:48:9d:f1:4f:69:60:e5:e1:f3:02:58:1a:05:42:4f:40:5f:
00:3b:f4:08:fa:8d:be:45:91:97:07:76:ce:04:27:ac:cd:0e:
e6:48:21:92:ec:d6:50:00:41:fd:0e:d1:59:c6:45:9b:9f:29:
a8:83:d4:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:04 2024 by rpki-client on console-ams.rpki-client.org