Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8928D9F2EDB711EEA35717AD775412E6.roa
File: 8928D9F2EDB711EEA35717AD775412E6.roa (raw, json)
Hash identifier: AooWhcNhn6xf1ZCvzboVJExDX9XXc1C4QIWyPQ+bq9E=
Subject key identifier: 95:FD:54:2D:E0:2C:DC:00:CE:6A:DA:2C:93:AC:9A:1D:AE:91:56:ED
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A72D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8928D9F2EDB711EEA35717AD775412E6.roa
Signing time: Fri 29 Mar 2024 10:31:43 +0000
ROA not before: Fri 29 Mar 2024 10:31:40 +0000
ROA not after: Sat 04 May 2024 10:31:40 +0000
asID: 142062
IP address blocks: 154.86.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 10:31:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42797 (0xa72d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 29 10:31:40 2024 GMT
Not After : May 4 10:31:40 2024 GMT
Subject: CN=6606988f-5d79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b2:35:d4:7f:94:b5:8f:8a:92:a7:95:61:1b:
47:c6:11:c8:bd:3d:c1:f3:b3:01:7e:50:8c:d2:61:
e5:25:b9:f4:37:fc:df:f1:7e:18:d9:35:a3:b7:01:
17:e0:25:46:76:cc:a4:2e:1c:6b:02:19:fd:58:df:
54:d3:a3:31:bd:e4:b1:07:86:19:23:cf:17:ed:50:
6d:54:1e:84:22:ef:9a:74:e1:3e:0c:f9:b8:ce:48:
b2:59:9a:a8:54:6d:7c:8c:ac:87:2b:c0:43:b8:98:
84:2e:28:c6:fd:b7:c7:4b:7a:96:e2:2b:51:76:c8:
04:03:29:f3:da:bd:f8:e4:ad:0e:72:b0:c9:f9:5e:
06:5b:07:17:41:6c:6f:5d:5b:ec:6c:3c:73:5e:63:
24:9d:fe:f7:fc:98:cc:a6:2c:d3:92:85:93:8b:3e:
d7:95:58:8f:49:74:2d:01:d1:b7:55:a1:73:2a:01:
c2:05:49:82:e3:35:f2:d3:73:d7:3f:41:b2:f4:8e:
4f:7d:22:0c:b4:b8:77:5f:90:9b:da:7b:76:97:09:
7e:52:ed:78:04:82:5f:97:31:36:b0:76:b4:e9:7f:
3b:c3:f7:77:b2:0b:37:cf:6b:2e:10:b8:ff:c5:b5:
e3:53:dc:40:30:69:73:a3:12:39:9f:7f:67:6b:84:
0c:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:FD:54:2D:E0:2C:DC:00:CE:6A:DA:2C:93:AC:9A:1D:AE:91:56:ED
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8928D9F2EDB711EEA35717AD775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.80.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:a6:41:10:a8:0f:16:ce:a4:2f:d6:19:12:bf:88:22:7b:c3:
22:32:e4:25:52:53:b0:95:1c:a6:52:1b:50:6a:65:8e:d7:6a:
42:ad:f9:fa:37:06:17:c2:20:6e:f8:75:7a:e4:81:f6:b1:0f:
46:65:68:9d:59:bc:7f:5a:25:13:57:a8:26:c1:3c:74:05:b6:
be:18:57:f9:f0:73:16:e4:6d:fd:d5:2e:75:22:a9:bf:f4:86:
2b:a5:35:6e:21:da:f1:81:d3:c0:58:77:2f:62:1b:3f:da:a5:
99:69:0b:c9:e2:ea:2b:5f:ac:b7:4a:1e:d5:83:fa:88:6a:a3:
a7:88:21:af:06:fb:c0:8d:0e:94:bf:3e:4d:b3:1e:70:f8:3a:
eb:67:52:a9:ba:63:07:1e:31:0c:b9:6a:e3:c2:25:83:3f:3c:
6d:90:58:f5:33:a8:67:ac:13:86:65:d8:b9:0e:6d:ab:66:8f:
2f:91:6b:b8:54:6e:2c:48:e1:a1:b6:49:2a:59:1b:1d:cd:eb:
e7:6d:dc:4e:6c:dc:a5:3c:f5:1d:ac:2f:61:d8:6f:c0:62:38:
a3:65:8d:09:f5:1d:44:f0:f4:57:f8:92:31:56:1f:29:3d:83:
07:b2:24:1a:67:7e:63:ca:21:a1:d4:e7:44:c9:9d:7f:38:78:
1c:c7:c0:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:14 2024 by rpki-client on console-ams.rpki-client.org