Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/70980650E28C11EE9669F8B7775412E6.roa
File: 70980650E28C11EE9669F8B7775412E6.roa (raw, json)
Hash identifier: m6IjIDfqD4fGJW8zdlPKpUXf3gC9qgKGbhhNSjHmz5A=
Subject key identifier: 3C:DB:8D:C9:25:F6:BF:65:64:59:8E:12:34:59:10:AB:1A:BA:99:AB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A18D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/70980650E28C11EE9669F8B7775412E6.roa
Signing time: Fri 15 Mar 2024 05:25:31 +0000
ROA not before: Fri 15 Mar 2024 05:25:20 +0000
ROA not after: Fri 20 Sep 2024 05:25:20 +0000
asID: 47890
IP address blocks: 154.214.213.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41357 (0xa18d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 15 05:25:20 2024 GMT
Not After : Sep 20 05:25:20 2024 GMT
Subject: CN=65f3dbcb-1250
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2d:e0:22:fa:c0:8a:a6:e6:bb:f4:f2:2d:8a:
1f:e3:4d:ef:86:4f:d0:46:45:ad:c8:a1:a1:92:77:
89:ef:a5:df:11:a5:21:02:2f:f3:f1:5e:60:46:43:
a8:65:f4:af:ab:b0:79:bb:20:b7:b8:f8:e6:0d:ee:
53:09:6d:21:60:49:e4:04:31:5c:77:50:d4:a6:fe:
ef:c8:23:80:b4:5a:78:e0:51:6b:27:95:0c:63:16:
c9:16:7e:ea:3e:6a:0b:5c:a1:7a:7a:e4:d6:a0:19:
e0:9a:a4:b9:81:83:67:83:c4:37:20:bc:8a:85:9e:
e9:a0:6a:83:c3:98:cd:81:15:b1:4e:6e:b3:a2:fd:
28:91:29:79:8f:3a:f4:8c:06:ab:ea:07:bc:c8:d9:
55:d3:0d:58:c4:b8:b9:2f:62:22:d0:00:cf:44:37:
88:ac:07:f9:7e:f1:8e:77:87:0b:12:a3:83:51:09:
4a:77:6f:31:ac:53:f5:b2:f1:9e:5c:f1:12:14:1b:
2c:63:ec:39:53:82:81:6e:35:47:69:25:37:eb:ea:
57:7a:95:da:4b:21:33:00:9e:84:7e:3d:d7:d3:56:
99:e7:9e:ea:b3:13:28:eb:3d:02:b6:43:e6:25:d1:
62:d0:b8:b0:55:b5:98:c7:6c:29:6b:b3:90:b5:ff:
87:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:DB:8D:C9:25:F6:BF:65:64:59:8E:12:34:59:10:AB:1A:BA:99:AB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/70980650E28C11EE9669F8B7775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.213.0/24
Signature Algorithm: sha256WithRSAEncryption
59:db:d3:87:d9:87:95:e9:b9:5d:81:d6:92:2e:f3:18:bb:03:
c5:fb:c0:59:48:cb:34:9b:2f:5c:56:64:b3:2c:0f:84:83:45:
ef:16:84:45:a4:e4:d2:b9:7f:19:3d:e3:36:8b:54:2d:e3:7a:
a6:4f:40:af:c2:a6:08:69:76:37:dc:de:0d:40:ae:45:c2:41:
3a:7c:1e:ce:c1:79:3b:77:29:00:a3:a2:00:68:43:9f:f1:93:
87:94:70:f8:2b:07:81:0f:fc:b6:b6:0a:1a:99:fd:a9:b0:81:
65:70:06:ef:0c:ac:f6:4d:7a:1d:73:bc:da:64:1a:89:a6:53:
87:b3:eb:38:a2:b9:2d:da:1f:da:17:80:2f:b0:43:5a:89:9e:
93:d4:56:f6:3c:b4:3c:32:0a:b1:36:16:c9:02:b2:4d:15:9f:
e0:dd:60:58:05:00:4e:11:b8:a5:09:2f:60:5e:e8:83:3c:78:
53:3c:1d:e5:f6:d9:d4:64:9c:4c:3b:e3:d6:99:02:13:c8:b4:
72:a7:14:22:a5:f4:05:f5:36:5c:3d:a7:2d:ee:2b:b8:e6:1b:
41:bd:d1:1e:d1:e7:0f:1e:8e:bd:0e:f6:85:71:93:28:17:b1:
f0:4c:8a:52:6f:39:f0:5e:ce:96:f6:78:66:4e:ea:4f:e8:16:
41:4d:7f:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:12 2024 by rpki-client on console-ams.rpki-client.org