Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/298818B2F17411EE82ED1C72775412E6.roa
File: 298818B2F17411EE82ED1C72775412E6.roa (raw, json)
Hash identifier: 5Sv4StaoikzeVH3dEqzF1CxiunJps1LHAaq57agDtYc=
Subject key identifier: B5:5F:78:4D:7F:A7:7F:5A:77:E0:FE:6D:A5:45:E2:E7:DD:7A:0E:75
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A940
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/298818B2F17411EE82ED1C72775412E6.roa
Signing time: Wed 03 Apr 2024 04:39:31 +0000
ROA not before: Wed 03 Apr 2024 04:39:27 +0000
ROA not after: Sat 04 May 2024 04:39:27 +0000
asID: 216047
IP address blocks: 154.81.38.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 04:39:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43328 (0xa940)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 3 04:39:27 2024 GMT
Not After : May 4 04:39:27 2024 GMT
Subject: CN=660cdd83-85f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d2:52:d0:89:d8:7c:fe:39:ae:e6:1d:31:8d:
49:50:4d:6d:19:4f:89:2f:04:cb:9a:de:bb:8b:63:
c1:6e:b4:04:e4:de:d4:c8:94:1a:98:05:4f:8a:95:
61:1b:af:68:28:f1:90:e3:bb:26:51:9d:57:c7:09:
9d:06:24:76:90:ab:03:97:3d:60:1a:b6:81:c9:ce:
e6:0d:ad:65:e3:77:e2:00:80:a5:b9:df:bd:92:d2:
19:89:05:4e:85:db:19:56:46:bd:a7:7a:90:16:48:
7f:d1:86:39:3c:09:68:0a:ba:af:c2:7f:d5:ca:f3:
e3:02:76:87:13:3d:09:46:08:7a:a6:d8:71:0c:87:
94:82:04:8b:34:29:0c:82:62:6c:39:41:e5:62:0b:
5e:5a:11:0d:10:3a:00:74:42:e3:d6:17:43:7c:c6:
7e:0c:02:4e:df:e9:64:a6:81:f0:00:7a:37:a2:5a:
7a:44:9c:8b:d3:66:f0:c9:e4:c9:11:64:0f:63:9a:
57:6f:a7:d3:02:97:7f:c2:25:97:e2:0d:12:17:cd:
ea:51:b3:85:1c:56:d2:cf:b7:6f:15:b5:85:94:ac:
97:6e:79:21:2a:73:65:94:52:65:28:9d:58:60:24:
ba:5c:28:95:6a:1f:f7:12:bc:50:a0:0f:ca:96:93:
56:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:5F:78:4D:7F:A7:7F:5A:77:E0:FE:6D:A5:45:E2:E7:DD:7A:0E:75
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/298818B2F17411EE82ED1C72775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.38.0/24
Signature Algorithm: sha256WithRSAEncryption
be:ef:f4:e7:b2:08:f0:5e:2e:90:71:54:32:11:95:4d:2c:19:
39:d5:be:c5:99:42:0b:7c:a6:57:1d:5c:1f:c6:c2:8a:7c:60:
76:60:6f:2d:76:49:ac:3f:0a:6f:8f:48:2d:11:7e:f5:e4:81:
ee:99:f6:c2:3f:34:dd:a9:06:9b:de:60:dd:4c:8c:a8:67:6a:
cd:ed:93:32:db:ec:c0:fa:d4:4f:44:5e:62:42:85:02:c7:b5:
14:9c:86:52:28:83:87:4d:3b:e4:85:5b:5f:0a:dc:d5:5b:47:
45:70:3d:23:5f:ba:eb:24:3e:f4:af:60:1c:9e:79:7c:78:90:
e9:3a:d7:c5:3a:75:93:3c:fd:5d:b8:92:a5:98:37:58:10:1c:
36:e4:0c:9c:9e:5b:91:fe:68:ed:91:f6:a0:81:8b:a3:3d:4c:
d9:52:ed:6a:45:6f:48:70:93:14:fc:38:f1:e5:85:96:55:78:
26:bb:31:2a:61:62:a6:7e:54:7c:4e:00:9d:38:68:7c:93:2e:
7b:95:f5:49:fc:61:e6:21:4b:6c:05:20:96:8d:d1:9d:4e:ca:
25:0b:f0:7a:cb:a9:0e:fc:1a:d4:35:27:de:d9:1c:ed:33:7e:
2a:da:e3:86:1c:2f:92:59:bf:4f:cd:92:cf:14:7b:b5:fa:d4:
e7:42:11:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:04 2024 by rpki-client on console-ams.rpki-client.org