Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C082290E69211EEAF87D0B8775412E6.roa
File: 2C082290E69211EEAF87D0B8775412E6.roa (raw, json)
Hash identifier: ijCCRUhJCKYD398P7Y5WJ6/pRwxorvEbY8Rx+aPYDXQ=
Subject key identifier: 51:2C:9A:71:DB:3B:68:20:B2:09:FD:60:31:24:14:9D:49:56:60:FB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A31F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C082290E69211EEAF87D0B8775412E6.roa
Signing time: Wed 20 Mar 2024 08:16:37 +0000
ROA not before: Wed 20 Mar 2024 08:16:31 +0000
ROA not after: Mon 22 Apr 2024 08:16:31 +0000
asID: 209242
IP address blocks: 154.197.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 22 Apr 2024 08:16:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41759 (0xa31f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 20 08:16:31 2024 GMT
Not After : Apr 22 08:16:31 2024 GMT
Subject: CN=65fa9b65-8b6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e9:c1:67:ef:84:af:5e:0d:5d:a5:c7:29:9e:
87:28:92:82:51:ae:cf:93:98:6c:54:45:cc:ae:c2:
27:e3:93:17:8d:4e:ff:10:cf:99:3d:43:af:bb:e3:
d4:31:b0:47:31:c9:1a:78:99:af:2a:6f:d3:81:2d:
fa:60:9e:1d:35:62:11:df:32:7d:e6:11:ed:cf:aa:
6c:c8:c1:a2:ee:10:5d:85:81:1b:1e:60:04:30:fc:
b4:da:57:42:7d:37:af:f9:95:6e:8e:0d:d7:c8:9d:
d2:85:aa:e2:ce:1f:8e:5d:f4:e8:b9:55:e5:17:93:
4e:fd:a4:f6:91:c8:d8:ba:39:04:64:5c:8b:8a:e6:
68:0e:c6:82:2c:e2:bd:de:a6:d2:37:98:53:e2:2d:
5f:92:70:e4:36:3a:c4:0a:1f:3d:78:20:35:fd:d5:
db:dd:47:67:b7:8d:c5:2c:aa:3c:b9:b7:b4:55:41:
b6:d8:aa:5e:9e:d4:f4:d1:2a:e6:6a:e1:b5:12:70:
d5:57:13:d9:8b:2d:e2:98:b5:06:0d:62:80:4a:33:
9b:fa:3d:70:fd:22:f5:9b:2d:07:62:91:45:82:97:
fc:89:b4:94:5e:b0:3d:84:42:32:16:bd:23:a9:1a:
af:99:9c:a1:ff:f9:9a:9a:95:ac:bc:ee:9c:f8:cb:
b3:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:2C:9A:71:DB:3B:68:20:B2:09:FD:60:31:24:14:9D:49:56:60:FB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C082290E69211EEAF87D0B8775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.64.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:f5:02:0b:79:1b:7f:bd:60:60:92:ce:b2:3f:01:80:af:ed:
c3:d7:2b:1b:15:44:0a:da:74:eb:13:54:31:8e:2c:07:e1:2e:
89:e5:67:db:86:fb:b0:51:da:27:59:2b:e4:3b:a4:74:ec:80:
34:59:1c:78:03:49:10:d3:1b:bf:3a:94:05:35:b6:84:a6:0e:
28:6e:e2:18:77:17:c4:71:27:d8:54:fb:b5:0d:48:55:63:b6:
19:19:ec:bf:34:d9:8e:fc:91:b6:54:af:de:89:e0:2f:b4:62:
5f:b7:e5:c4:90:cd:a6:f2:e1:04:a0:df:1b:10:0e:91:e2:38:
7d:c6:64:a7:50:9f:ad:11:2a:3a:b4:a8:35:ca:f0:41:f8:9d:
06:1f:ff:f5:97:29:e5:a4:66:4c:07:e9:8e:59:05:d8:07:c8:
e5:16:08:e6:8e:09:54:97:7d:e2:36:79:79:32:27:ca:42:7a:
c3:8c:9b:a2:e6:15:e0:dd:6e:6b:2a:2d:82:2d:53:82:d0:d2:
4b:5a:90:b7:92:05:a4:db:e5:c3:b9:d0:d4:5d:25:76:a4:cf:
a3:61:4b:c2:09:e4:de:80:bc:ac:73:da:90:a0:fb:fd:d0:c8:
95:9b:d1:c1:f4:0d:79:30:38:e9:9a:dd:62:99:67:c5:50:b1:
26:ab:3d:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:16 2024 by rpki-client on console-ams.rpki-client.org