Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6039FB7EB66811EE901E21B0775412E6.roa
File: 6039FB7EB66811EE901E21B0775412E6.roa (raw, json)
Hash identifier: NiVPYCEoN+sXAKFKPcYO4et7wpnZj7LJBBYCgI4aZwo=
Subject key identifier: 3C:41:F8:34:33:9A:11:FD:67:6F:5C:49:3F:29:B4:F5:7F:EF:27:60
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 77FC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6039FB7EB66811EE901E21B0775412E6.roa
Signing time: Fri 19 Jan 2024 01:16:30 +0000
ROA not before: Fri 19 Jan 2024 01:16:27 +0000
ROA not after: Tue 12 Nov 2024 01:16:27 +0000
asID: 141167
IP address blocks: 154.212.140.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30716 (0x77fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 19 01:16:27 2024 GMT
Not After : Nov 12 01:16:27 2024 GMT
Subject: CN=65a9cd6e-c23a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:6c:2c:1c:a0:5a:c0:7e:21:42:ce:0c:4b:35:
aa:d0:1a:c1:46:27:ef:b2:e3:2d:01:f7:33:59:25:
a3:62:f5:e2:46:da:ae:b1:41:ae:e4:3c:50:67:20:
a6:cb:a1:91:04:1f:6b:a1:fb:dd:66:4e:f7:ef:62:
70:95:4d:38:92:ab:5d:06:11:cb:5b:68:c2:b0:c1:
c0:7f:dd:b2:45:96:a4:43:83:48:bb:d5:2e:f4:b4:
f1:9c:6f:4e:61:2e:ea:05:c8:33:a6:80:7a:2b:c7:
64:20:4d:4c:09:7d:6b:f0:0b:29:ef:d4:0d:b6:e2:
45:e6:2c:22:fa:ed:b0:f7:9c:c9:ae:8e:37:30:1d:
7b:36:f3:95:e1:32:49:39:b3:0a:59:fc:a1:c9:d4:
3f:97:e1:a7:2b:6d:f0:27:f1:7e:92:22:ea:2c:df:
95:90:8f:af:f6:e6:95:c7:e9:06:35:72:ce:58:a1:
32:13:34:2d:4e:fd:4b:5a:7a:82:55:89:5a:b0:45:
2b:d6:f5:ed:6e:bd:17:4c:cf:99:59:44:43:4a:42:
c6:28:9a:ef:f0:bc:d0:21:17:87:43:82:c5:f6:45:
95:0f:6c:c5:8a:ad:80:1f:33:ac:89:2f:9a:1d:87:
30:9a:29:22:b4:ad:00:7b:f9:a4:23:73:b7:d5:3e:
1e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:41:F8:34:33:9A:11:FD:67:6F:5C:49:3F:29:B4:F5:7F:EF:27:60
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6039FB7EB66811EE901E21B0775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.140.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:37:f0:56:b1:27:9b:c7:30:74:27:10:32:fa:7d:fc:4b:8f:
29:69:4c:4c:ad:00:d5:44:4e:e5:be:46:a6:ae:13:f5:ad:f5:
2e:f8:78:75:00:ff:cc:8c:b1:64:4c:a3:b2:09:b0:e6:a8:97:
5d:cc:52:c8:c1:3e:af:8f:a0:12:5e:e2:5b:b3:63:96:a3:c3:
c8:99:3e:ae:aa:22:bf:3d:e5:f3:7b:34:4c:d1:11:cb:f4:cf:
19:60:6f:49:89:0a:c5:25:a3:03:83:59:7d:49:32:e7:4c:da:
84:9b:60:23:da:5f:65:8c:04:aa:6f:1e:c8:d3:c4:46:c8:c8:
2b:b0:14:25:30:4c:45:5b:a0:5f:be:5f:e8:b2:71:21:44:73:
bb:8a:b3:50:2b:be:3d:bb:2c:e7:a1:1b:8a:fa:39:96:67:aa:
31:e1:27:47:10:30:7b:9e:44:60:bf:10:aa:75:d9:0f:a8:c6:
e7:3f:cc:5b:22:ce:1b:02:ec:3c:d0:bd:03:38:4c:14:69:06:
61:56:e8:bc:2b:7b:d9:e1:cc:23:03:11:61:21:f3:f2:50:da:
47:55:c0:64:57:bb:0f:10:b8:93:76:26:39:66:93:34:27:bb:
96:f5:da:72:c4:9d:b3:22:b6:54:65:57:77:d8:df:38:2e:c3:
7f:ba:9e:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:10 2024 by rpki-client on console-ams.rpki-client.org