Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/40AB4BC8E28C11EE87EB41B6775412E6.roa
File: 40AB4BC8E28C11EE87EB41B6775412E6.roa (raw, json)
Hash identifier: 1Ky8WXJOyagrhRpGr4E0QxZYPw/M+hnTg9kM0Yp+LFg=
Subject key identifier: EF:38:46:E4:6F:FC:8F:BC:40:C2:80:B0:FC:A4:67:06:B3:31:32:2A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A18B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/40AB4BC8E28C11EE87EB41B6775412E6.roa
Signing time: Fri 15 Mar 2024 05:24:10 +0000
ROA not before: Fri 15 Mar 2024 05:24:07 +0000
ROA not after: Fri 20 Sep 2024 05:24:07 +0000
asID: 47890
IP address blocks: 154.214.212.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41355 (0xa18b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 15 05:24:07 2024 GMT
Not After : Sep 20 05:24:07 2024 GMT
Subject: CN=65f3db7a-d23a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:78:59:f9:43:6d:a9:1f:b6:1d:7e:9f:9b:21:
fe:d6:18:5a:52:c0:dc:0e:8f:84:93:2e:3d:60:ab:
de:54:b5:5f:3a:35:14:59:4b:02:e0:e7:14:91:59:
07:d5:dd:cc:78:5e:01:9d:27:d6:b7:a1:28:08:02:
6b:a6:fa:21:b6:27:d4:fa:5f:84:b1:07:7c:80:4d:
43:fe:8e:c0:68:75:50:34:94:53:8f:a0:66:b3:dd:
3e:dc:2f:f3:e7:16:d0:7f:bb:46:30:e7:0b:79:d3:
2d:da:5f:f8:38:c6:de:26:0e:d3:1e:13:c9:51:6c:
18:c4:3b:29:60:9b:70:09:4d:b5:e5:6b:48:37:d4:
4b:64:6c:46:79:eb:29:4c:3b:57:d0:8a:47:5a:bc:
6c:7b:bb:9b:45:4b:e5:8d:33:a3:e6:66:dd:64:50:
8e:e0:e7:c9:f1:ee:cd:ec:fe:62:67:3d:69:3e:b0:
b1:84:da:d2:3f:3e:9f:f9:cb:6d:48:2d:25:fd:e1:
11:33:ed:3f:6d:32:34:f5:c3:ac:72:2b:64:1c:8f:
e8:d9:e7:58:a7:d7:a5:c1:d8:e8:71:a6:6a:65:95:
67:4f:96:9b:a4:61:6d:12:c9:d1:e2:e6:34:1f:4a:
ba:54:0b:60:c6:61:33:31:a7:d4:29:97:e8:6c:c8:
2e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:38:46:E4:6F:FC:8F:BC:40:C2:80:B0:FC:A4:67:06:B3:31:32:2A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/40AB4BC8E28C11EE87EB41B6775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.212.0/24
Signature Algorithm: sha256WithRSAEncryption
46:a4:18:d6:3d:7e:cf:2f:b6:7f:c5:e3:e5:f5:f5:23:04:81:
0c:2b:1a:73:18:fb:3a:5f:0f:b7:60:eb:f3:0c:68:14:41:e9:
cf:b2:f3:9b:92:50:8a:e9:0f:91:b4:2a:b1:9f:31:00:a0:98:
b5:29:46:98:3b:9f:62:f6:52:f7:04:d8:d2:0d:c4:5e:d3:64:
97:75:53:8a:84:c0:c0:73:52:89:75:fb:8f:4e:64:92:c5:90:
05:d8:76:c6:17:6a:5c:40:80:53:ff:9c:d0:67:e4:30:ad:bd:
30:4a:f5:92:97:e8:f7:21:23:d5:aa:12:09:71:01:7b:24:c3:
fc:8b:54:95:f0:54:43:31:12:b7:fb:c7:1b:8d:1b:f0:bf:7a:
0c:b7:0a:92:d9:70:42:c5:62:7e:8f:58:49:63:47:7e:29:2f:
a8:35:89:8a:5e:a5:b0:3f:3e:ee:57:b7:70:1d:f6:3f:8c:ed:
8c:bf:39:fd:0c:d2:a7:84:47:e3:6d:d2:b2:8b:02:ae:08:04:
a5:87:7a:6d:ee:8c:85:88:5c:66:a0:d0:1a:e7:ca:af:15:98:
24:15:3b:c4:58:da:2e:76:94:ac:49:b8:22:c7:bf:2a:a0:70:
46:57:0c:0d:b6:53:4a:63:32:ee:4a:3b:f0:89:7f:b6:7c:17:
10:3f:cb:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:07 2024 by rpki-client on console-ams.rpki-client.org