Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/505CB204E28D11EE82AA88BC775412E6.roa
File: 505CB204E28D11EE82AA88BC775412E6.roa (raw, json)
Hash identifier: r6OhZx/YeiIOvlFuqrUnd6VVSlC/g79BFW3yXST6Am0=
Subject key identifier: 24:4F:8B:77:B4:51:23:74:73:84:67:AB:67:BE:EE:C0:E2:4B:5E:BC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A197
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/505CB204E28D11EE82AA88BC775412E6.roa
Signing time: Fri 15 Mar 2024 05:31:46 +0000
ROA not before: Fri 15 Mar 2024 05:31:43 +0000
ROA not after: Fri 20 Sep 2024 05:31:43 +0000
asID: 47890
IP address blocks: 154.214.206.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41367 (0xa197)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 15 05:31:43 2024 GMT
Not After : Sep 20 05:31:43 2024 GMT
Subject: CN=65f3dd42-2995
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:e9:a7:bf:a9:97:6c:4e:b5:1f:e8:10:8b:b1:
29:f0:0f:8b:5f:07:fe:c0:e0:17:e3:5c:63:70:71:
6d:07:a8:a2:0c:b6:20:06:bb:3c:83:b1:cc:4c:37:
d6:57:c0:e2:29:ad:d9:53:3e:c6:41:42:76:6c:40:
71:ca:2b:8a:ba:1e:3c:af:2f:83:9a:8c:ce:fe:7c:
04:b6:3f:d6:61:d0:fb:4e:cc:80:4c:66:f7:3e:af:
62:c8:ba:62:52:3f:ad:15:47:3f:f2:b5:4e:2b:12:
3a:39:67:d5:63:c0:4c:cb:37:3e:ec:86:c2:9c:8b:
aa:7d:36:ad:37:30:56:32:ae:68:de:03:5d:53:85:
d4:e8:01:b7:b8:69:2c:4b:8e:4d:75:84:ac:31:cc:
35:30:7d:e8:04:09:b7:a3:ba:7a:b5:44:68:ac:2d:
6c:46:18:97:bf:aa:da:ce:7a:ed:f3:1a:3f:cd:ae:
e4:7a:55:3e:61:b9:9a:58:4b:6b:76:0c:36:ce:9c:
9e:0c:f3:e0:75:e3:92:28:e0:9e:39:21:cd:c7:e8:
b5:d4:71:c2:42:60:2d:9c:82:50:af:d3:4e:41:90:
40:08:a2:dd:0e:b9:74:6f:ea:fb:52:cd:a8:2c:60:
3a:67:61:1b:fb:78:65:21:1f:ae:dd:a7:ac:73:db:
ce:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:4F:8B:77:B4:51:23:74:73:84:67:AB:67:BE:EE:C0:E2:4B:5E:BC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/505CB204E28D11EE82AA88BC775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.206.0/24
Signature Algorithm: sha256WithRSAEncryption
59:fd:ee:2f:2c:8a:56:f1:66:31:d0:24:c4:f7:fa:24:62:64:
10:26:d9:6c:aa:bd:b0:e9:a1:b2:0b:fb:02:61:c6:5b:06:98:
0e:bc:b9:5e:06:67:9a:8f:93:0b:bb:73:f3:b3:33:78:8a:d6:
62:bd:0e:1b:d6:2c:47:46:5b:89:d3:6d:02:24:8c:b8:aa:51:
6d:a2:85:9c:34:da:79:09:2c:ec:d0:9e:74:e9:bd:41:a3:7b:
cd:05:70:f1:19:9b:ca:e2:cd:1e:ce:59:44:be:b1:c5:e8:16:
a8:9a:eb:92:27:06:c5:29:6f:47:5c:0f:28:fc:d0:35:23:e1:
71:2e:ac:a4:24:6c:98:c7:09:3a:c7:f6:76:90:25:3c:92:31:
ec:30:9b:6b:75:f8:40:4d:88:e6:5c:dd:d7:94:e3:8f:61:aa:
18:0a:ad:f8:be:53:f3:3d:4b:74:f3:5a:00:35:7e:35:b7:ee:
3f:e3:c9:bd:a0:49:35:5d:3d:c9:d7:51:28:54:50:f5:6c:ca:
dc:3c:fd:90:8d:f5:38:37:b3:c9:70:c7:fa:66:d6:23:6a:dd:
0b:90:a9:ed:8c:e2:6f:9d:0b:48:29:58:6b:8d:c1:de:e6:31:
ba:9a:6c:af:c2:f1:c2:0e:0e:ea:a8:94:ef:cc:df:e4:36:2d:
63:b0:20:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:08 2024 by rpki-client on console-ams.rpki-client.org