Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3ECAB3FEF70211EEB8D3A271775412E6.roa
File: 3ECAB3FEF70211EEB8D3A271775412E6.roa (raw, json)
Hash identifier: 4aMokD7jG/8F+Cg5gcWjgAdC95iHRGB/lDFV1aOTfT8=
Subject key identifier: 6D:21:8F:8B:5B:57:EC:C0:E3:9A:5C:8B:8A:0E:D1:2B:C0:CF:B9:AE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AAB0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3ECAB3FEF70211EEB8D3A271775412E6.roa
Signing time: Wed 10 Apr 2024 06:19:11 +0000
ROA not before: Wed 10 Apr 2024 06:19:04 +0000
ROA not after: Sat 04 May 2024 06:19:04 +0000
asID: 45194
IP address blocks: 154.84.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 06:19:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43696 (0xaab0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 10 06:19:04 2024 GMT
Not After : May 4 06:19:04 2024 GMT
Subject: CN=66162f5f-efbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:04:60:e3:2d:79:20:1c:b6:d6:5f:79:40:ef:
60:1c:0a:0d:39:e1:c4:d5:9d:0e:00:de:2c:ed:ba:
e7:36:8e:28:cb:23:32:ba:cd:9e:3e:43:c0:d1:c1:
1f:44:00:91:2a:72:fc:f5:ca:0e:cb:f1:76:c3:83:
58:69:cb:ac:7f:a1:2f:86:aa:dc:85:e1:ad:47:f9:
99:d7:89:1c:15:53:ed:83:37:68:dd:f3:41:4b:6a:
2d:48:9b:d8:1e:3f:bf:94:ab:ba:6d:2e:64:bf:df:
73:6a:a1:cd:4f:30:c9:16:33:71:c1:86:ca:c1:47:
43:f1:fe:5e:32:79:58:7d:fb:f1:0a:a6:36:38:e7:
a3:90:d7:17:f3:f4:ed:07:bf:5c:25:0d:cb:1c:fe:
f4:e9:16:16:d8:25:71:77:4b:8c:2c:6f:db:a9:3a:
37:cc:67:37:6e:7d:16:02:fd:90:7e:36:88:0b:3d:
e8:11:50:60:a8:b3:c1:d7:e1:76:82:16:bd:37:24:
30:b0:5d:8a:05:a4:43:ba:6c:a7:2a:c2:45:83:c6:
4d:f3:89:78:f3:81:48:e0:03:7a:1b:c6:b0:c1:98:
1e:a9:e5:36:34:5b:f9:8b:ab:0f:95:88:90:cd:8b:
1f:8a:56:b6:3e:20:4d:4f:0d:32:76:4b:2d:a9:7d:
97:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:21:8F:8B:5B:57:EC:C0:E3:9A:5C:8B:8A:0E:D1:2B:C0:CF:B9:AE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3ECAB3FEF70211EEB8D3A271775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.192.0/18
Signature Algorithm: sha256WithRSAEncryption
9a:ce:1d:37:19:51:cc:29:38:16:91:61:f9:4f:f0:04:97:76:
e8:3d:b0:fe:52:30:9b:5d:47:e8:42:52:ba:7b:33:7b:70:31:
39:94:00:cb:79:31:4f:88:e1:d6:3d:0a:bb:9a:42:0a:e9:af:
fd:f8:61:c2:dc:6a:41:35:25:21:0a:91:3e:5f:ee:72:8d:1a:
47:d2:e4:eb:d8:8e:c8:32:70:7d:5a:a8:ae:fb:32:54:64:d2:
69:9f:f9:1f:d4:9d:ef:a9:c2:0b:bf:86:0d:ad:95:33:f9:e9:
3d:9c:a4:88:79:21:74:f0:a7:76:03:0c:89:5b:5b:7d:b5:30:
f9:06:96:ab:44:57:6b:b9:57:e7:07:e5:22:36:4d:a9:6a:7e:
74:4b:47:23:90:31:b7:d9:98:fd:b8:30:0b:e6:46:08:bd:8f:
7c:f3:fc:9f:cd:c5:b9:b4:cc:31:ff:d1:f6:f9:94:f7:a6:8f:
0d:4a:03:2a:c8:f5:7f:7d:b3:0f:12:59:de:43:b2:32:ae:ba:
04:85:63:de:c7:b8:fc:29:9b:d8:84:06:05:d4:5a:c7:61:b9:
9f:20:ed:ea:37:f0:3e:61:85:ed:50:ed:81:56:3e:95:57:16:
ec:ac:08:90:6c:fb:b2:33:39:8f:00:f7:e6:10:7e:4d:49:94:
ed:49:c1:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:10:18 2024 by rpki-client on console-ams.rpki-client.org