Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E8B7058E77F11EEA9C37F7F775412E6.roa
File: 5E8B7058E77F11EEA9C37F7F775412E6.roa (raw, json)
Hash identifier: ZYOb/NzgF7avciJU6gLosDspneNftie3QDtib38Qyjw=
Subject key identifier: 31:2C:11:66:FF:23:C0:C4:93:E0:44:4B:30:9D:2B:CE:65:BC:68:8E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A55F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E8B7058E77F11EEA9C37F7F775412E6.roa
Signing time: Thu 21 Mar 2024 12:34:33 +0000
ROA not before: Thu 21 Mar 2024 12:34:29 +0000
ROA not after: Tue 23 Apr 2024 12:34:29 +0000
asID: 44559
IP address blocks: 154.210.109.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42335 (0xa55f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 12:34:29 2024 GMT
Not After : Apr 23 12:34:29 2024 GMT
Subject: CN=65fc2959-38c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:55:aa:4c:b5:af:4f:09:b7:c9:30:2d:82:d0:
c6:a5:48:89:4e:22:41:61:7f:cd:7e:fe:99:7e:3d:
b8:83:1d:5c:79:8f:4a:cf:a1:68:dc:b8:82:05:c2:
ef:11:ac:7e:ed:b6:11:be:e9:f8:2c:50:84:0b:95:
64:62:91:52:28:0c:2e:b0:e8:ca:fa:28:43:59:cf:
be:c3:e6:89:95:2b:18:6a:08:23:ea:01:e9:a1:e2:
88:eb:79:aa:ba:4b:5a:93:0c:50:1b:01:7e:df:99:
d9:b8:cb:fa:9b:ce:d6:62:57:ac:6a:3c:7e:be:83:
32:fb:42:fd:eb:99:a7:56:c1:c4:b3:67:98:f1:c5:
7e:af:a8:f9:2d:45:f2:ea:2a:07:76:b0:e7:f8:13:
8b:f1:2b:e3:f3:84:72:28:92:c8:57:af:5a:64:f5:
31:c1:21:df:5a:d5:a7:fd:bd:f3:39:50:1f:01:24:
08:34:12:a1:6b:71:1c:0a:11:f5:a9:b8:d2:a2:c1:
eb:f9:e0:f2:2c:5f:ea:84:60:82:94:3b:95:50:c5:
9a:94:b2:96:43:0e:9d:ea:72:e4:da:42:49:fd:7a:
ff:49:e6:7e:66:61:b1:c4:04:e3:a0:34:8f:14:95:
31:19:99:19:74:73:e2:90:a7:79:11:41:7f:1d:31:
70:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:2C:11:66:FF:23:C0:C4:93:E0:44:4B:30:9D:2B:CE:65:BC:68:8E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E8B7058E77F11EEA9C37F7F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.109.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:09:ba:5d:03:2f:c2:67:17:03:48:b0:9d:dd:64:34:d3:b7:
c2:ad:53:b0:f3:3f:a3:40:eb:6c:b5:48:40:9a:9c:94:49:1a:
2d:79:03:28:d9:c6:3d:3e:a1:23:ef:ff:f9:95:0a:28:e4:0b:
20:51:34:54:fd:a0:4a:68:98:ba:b1:54:fc:31:a8:09:74:10:
c6:58:ba:b0:b0:3c:2c:78:67:d7:49:b8:d0:93:e4:76:fe:de:
30:d9:44:1d:47:a0:d8:2a:e7:a6:67:9f:4a:bb:3f:cf:87:1a:
cc:f0:f3:62:99:09:b0:b5:9a:2b:11:af:2a:5e:47:ac:dc:e8:
1b:5b:1c:8e:5f:4c:2f:e8:9e:8c:7b:47:65:a1:0f:37:a9:cf:
08:07:a2:18:a6:a8:40:a6:ae:0e:12:43:36:5f:c7:05:92:e7:
2f:26:61:95:3e:b4:86:21:ca:8e:25:af:f8:57:a2:26:bf:a6:
6d:8f:94:8d:c0:eb:83:38:0e:69:92:bd:14:f6:15:67:4d:a1:
49:08:c0:70:ff:b4:61:9d:ed:4e:a1:4b:d6:b9:f9:03:d9:fd:
0a:51:6f:29:87:8b:1e:2e:a7:f6:b6:d5:18:a7:7d:15:34:39:
cd:49:0f:46:4e:bf:bd:e1:39:76:c1:81:53:0e:22:8d:89:d6:
bc:a9:e0:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:21 2024 by rpki-client on console-ams.rpki-client.org