Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5F3E87C2EC0411EE8DFFB068775412E6.roa
File: 5F3E87C2EC0411EE8DFFB068775412E6.roa (raw, json)
Hash identifier: UzI53JecotckUV6c1Pv9PGlWgTOZnujdC0KAMMpGaYU=
Subject key identifier: 9C:92:CA:7C:75:7F:38:C4:3C:75:78:DC:D3:8F:11:57:04:88:11:3B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A6B3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5F3E87C2EC0411EE8DFFB068775412E6.roa
Signing time: Wed 27 Mar 2024 06:36:42 +0000
ROA not before: Wed 27 Mar 2024 06:36:37 +0000
ROA not after: Wed 18 Sep 2024 06:36:37 +0000
asID: 2914
IP address blocks: 154.214.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42675 (0xa6b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 27 06:36:37 2024 GMT
Not After : Sep 18 06:36:37 2024 GMT
Subject: CN=6603be7a-82a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:5e:7a:a5:cd:f4:b2:6a:00:f5:64:93:30:1d:
08:dd:ca:2d:65:ea:b9:7c:c0:12:b1:b9:55:a1:e3:
98:82:79:7d:e7:be:dc:24:3b:29:f5:4c:bf:37:05:
de:a4:e3:3e:17:d3:11:e0:13:13:a9:4d:47:e6:72:
cd:45:58:46:59:64:07:9d:0d:04:8c:7e:e0:6c:dc:
8f:cb:d0:e6:71:2e:f1:10:05:19:51:7b:70:e8:23:
df:18:e0:71:24:43:f8:bc:35:ff:f4:28:30:b7:3d:
ea:b5:d0:0d:14:e9:c3:73:c0:ce:d7:f2:a7:28:48:
2c:c1:f8:60:eb:99:d9:f9:06:11:da:ec:98:72:bb:
12:36:a8:72:43:f1:26:5d:99:29:50:f1:ed:0c:69:
e0:60:a0:57:87:94:f8:78:f2:11:83:55:fc:8a:17:
e5:10:f7:05:d7:19:74:94:f3:36:71:a4:4c:ea:bd:
38:98:eb:c6:e6:07:b6:86:99:30:86:7d:b8:2d:53:
de:c2:d5:9a:0a:0a:60:d6:4b:32:bb:2b:17:a1:7c:
e1:3e:0a:79:b3:43:d8:fb:53:c2:8c:62:f0:fa:07:
b2:f9:4c:75:75:d8:db:42:62:5c:87:5e:04:97:f7:
b1:ad:d0:9a:3f:a3:13:8a:04:09:fe:1c:10:ba:26:
ce:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:92:CA:7C:75:7F:38:C4:3C:75:78:DC:D3:8F:11:57:04:88:11:3B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5F3E87C2EC0411EE8DFFB068775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.255.0/24
Signature Algorithm: sha256WithRSAEncryption
20:a3:d2:9f:54:a4:95:c8:49:0f:83:cb:f8:92:f0:3f:77:b1:
a0:39:3b:82:a2:62:ca:73:80:cd:c3:f0:0b:88:6b:5d:4d:f7:
8f:b4:04:19:23:f8:22:ac:e5:2b:f6:d7:df:5e:79:6b:73:08:
de:76:2e:4c:29:43:fb:ad:6d:35:47:4c:1c:d3:ff:8c:02:59:
06:18:1d:90:bb:7f:cc:fd:e6:16:f7:85:46:b6:42:e0:49:8d:
6c:4b:4b:09:6f:82:97:ac:14:d0:b0:fe:48:ff:21:4a:fa:39:
c3:ac:b0:52:17:1f:5e:37:2a:2e:59:13:c4:6e:b5:6c:35:79:
a2:58:0b:59:a1:2d:6c:ee:0f:22:e3:bd:02:81:c6:e8:b3:8b:
4c:65:03:df:6b:cf:80:b2:2a:c7:df:16:27:9c:53:99:75:59:
21:4b:51:e1:21:57:a3:80:8c:c3:10:c2:29:32:59:cf:41:a3:
a7:e1:19:21:3c:ee:7f:d2:68:fd:44:af:5c:f3:e1:1f:22:e3:
5b:38:5c:ad:ac:fb:1d:7f:7c:09:2f:2a:ad:72:8e:18:24:90:
35:e9:09:da:43:50:62:db:de:9f:c2:d0:bc:95:57:5c:2e:35:
01:aa:e3:cf:a3:6e:24:8f:68:6c:88:8e:67:13:af:22:98:2b:
00:25:36:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:10 2024 by rpki-client on console-ams.rpki-client.org