Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/47AB6C84E28A11EE9122BEAA775412E6.roa
File: 47AB6C84E28A11EE9122BEAA775412E6.roa (raw, json)
Hash identifier: jSiQWSGwF+XT5N9yMmoFzEo2P40hiPKxAh1ZTGXa2/E=
Subject key identifier: F8:31:83:7E:3B:29:DA:C1:93:AE:F5:BC:54:BA:C8:7E:F0:2C:4D:63
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A175
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/47AB6C84E28A11EE9122BEAA775412E6.roa
Signing time: Fri 15 Mar 2024 05:10:03 +0000
ROA not before: Fri 15 Mar 2024 05:10:00 +0000
ROA not after: Fri 20 Sep 2024 05:10:00 +0000
asID: 2914
IP address blocks: 154.214.217.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41333 (0xa175)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 15 05:10:00 2024 GMT
Not After : Sep 20 05:10:00 2024 GMT
Subject: CN=65f3d82b-64d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:72:92:b5:39:3c:65:02:2c:4a:67:32:63:63:
04:05:43:50:ee:0e:b1:a5:59:90:61:dc:9e:3a:1f:
c2:4e:56:12:14:e2:d9:a2:10:e1:42:0a:d2:3b:6d:
da:0e:1b:62:f7:e0:a1:cd:96:6e:a1:46:f0:c3:5d:
2b:dc:f7:74:7f:f9:b8:d0:39:41:47:ac:58:ba:39:
7a:00:c6:a0:9d:a5:a8:bb:ae:a3:60:4b:8f:cc:0a:
86:b1:6e:1a:9d:bb:7d:d8:c5:ea:1e:f7:fc:34:6f:
7d:4a:7e:3f:f9:e0:91:f1:42:0e:f7:d6:73:23:83:
24:c9:1f:f9:61:81:20:13:b9:89:db:e5:16:8b:10:
23:6c:fc:cf:54:7f:d1:1b:a5:d0:0e:b0:4b:67:83:
45:51:4b:3f:de:7b:d8:15:e2:8d:de:3e:ab:f0:bd:
92:00:28:93:36:42:b4:9e:ab:cf:7b:a8:34:31:b5:
49:49:53:8a:c0:47:16:6f:fd:16:1e:19:1f:4f:8a:
70:b3:40:dc:5e:80:da:ca:74:21:76:27:e1:9e:5c:
c9:06:64:34:b3:df:ea:24:9a:bb:ea:28:c9:e8:a4:
60:7c:31:18:2c:b4:bf:21:e7:75:a3:1f:b4:18:7e:
38:fa:83:48:b2:69:71:aa:91:96:11:4a:f7:62:71:
ed:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:31:83:7E:3B:29:DA:C1:93:AE:F5:BC:54:BA:C8:7E:F0:2C:4D:63
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/47AB6C84E28A11EE9122BEAA775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.217.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:2e:23:b6:27:f9:04:26:8a:58:01:c5:0a:a9:6e:bb:9e:45:
7e:4f:bf:31:4f:3c:2f:74:db:a8:46:95:f9:64:33:d9:4c:fc:
d9:5c:43:c9:25:fd:2f:92:20:0d:7d:f1:eb:59:cd:8b:49:0a:
b4:73:bc:65:91:e0:25:a5:df:b4:25:98:53:45:95:bf:57:97:
20:d5:07:8a:b4:0d:aa:73:07:97:5c:44:a1:a8:f7:55:cb:36:
c2:b5:96:a0:52:e0:7f:b2:c0:17:aa:a1:77:82:41:4f:eb:59:
27:f7:cf:98:5c:33:ee:ad:b0:9b:6a:7b:39:49:3d:81:f8:48:
45:5f:5a:ea:5c:d7:73:a8:14:61:49:a4:96:a7:34:39:6c:8f:
25:f8:fb:2e:2b:64:a9:5c:ed:8f:f5:15:39:62:a2:9d:5f:74:
fa:fa:a7:af:f9:28:69:05:51:2c:b4:9f:53:39:8e:86:53:24:
dd:38:b5:81:9b:24:79:ea:4e:9c:2b:37:ca:d8:85:db:ab:ff:
32:9a:5c:68:9f:c6:35:63:e2:9c:14:f6:5a:77:ec:e9:a1:11:
a8:f9:bc:21:03:32:ac:3c:ae:23:ce:75:34:e0:20:89:11:9c:
d0:f7:be:9f:b6:ee:1e:64:b0:3f:c4:41:7f:3a:b9:4a:3f:11:
eb:d2:a3:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:08 2024 by rpki-client on console-ams.rpki-client.org