Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E9C0384E28E11EEA6D931C5775412E6.roa
File: 8E9C0384E28E11EEA6D931C5775412E6.roa (raw, json)
Hash identifier: d7WspWByvhgmD7QjUiXeo40nPhHIhT0Chi9LqIqR2r4=
Subject key identifier: F0:69:6D:F4:77:EF:75:F1:7E:84:5E:AE:29:F6:68:C3:AF:89:B9:43
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A1A5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E9C0384E28E11EEA6D931C5775412E6.roa
Signing time: Fri 15 Mar 2024 05:40:40 +0000
ROA not before: Fri 15 Mar 2024 05:40:37 +0000
ROA not after: Fri 20 Sep 2024 05:40:37 +0000
asID: 47890
IP address blocks: 154.214.236.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41381 (0xa1a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 15 05:40:37 2024 GMT
Not After : Sep 20 05:40:37 2024 GMT
Subject: CN=65f3df58-2710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:f8:67:4d:0a:2a:a7:3e:0a:34:06:01:5a:b3:
6d:15:cd:0b:22:95:bf:d4:cb:3c:10:ec:74:f7:1d:
4a:02:c6:25:a2:60:ad:2f:11:67:54:7a:ba:bb:e5:
5a:6b:9c:dc:3a:a0:30:e6:9a:9c:d6:f6:4c:47:82:
bb:e5:bf:3f:02:b7:9e:63:27:0b:74:3d:87:df:32:
c1:4e:ba:1c:64:af:64:8c:1a:77:45:ac:33:fe:6a:
42:f4:51:2d:05:c5:5a:b6:ff:d4:62:b2:f7:06:b3:
da:51:65:76:e4:0f:9b:2b:63:38:cb:88:98:30:34:
a3:42:4a:70:79:5c:a0:96:98:d6:62:29:f1:4e:0f:
54:71:f0:90:12:18:da:49:1a:68:56:f4:fe:f3:46:
2a:2e:1d:5b:2f:40:64:8f:c4:d2:cd:c8:d1:5a:0e:
37:35:74:75:db:03:80:cd:cb:7b:54:42:79:ac:aa:
b3:68:ae:e3:74:f8:84:11:3f:61:aa:bd:35:e1:2f:
cc:d9:eb:86:cb:37:e3:f8:5a:bc:4a:d1:69:b1:e7:
03:ec:fc:74:79:02:a0:5a:1b:6f:ec:e2:7d:dd:de:
8a:ef:94:1c:05:02:0d:53:06:a2:e7:95:b8:c6:bb:
c1:42:f1:5c:7b:b2:b6:b2:9c:3d:71:28:ca:57:ed:
f9:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:69:6D:F4:77:EF:75:F1:7E:84:5E:AE:29:F6:68:C3:AF:89:B9:43
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E9C0384E28E11EEA6D931C5775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.236.0/23
Signature Algorithm: sha256WithRSAEncryption
79:98:85:bb:b8:59:81:b7:16:6b:16:33:86:60:8f:4d:1c:d9:
37:59:36:20:de:56:ff:d1:f4:e3:ed:70:85:aa:ff:65:cd:59:
cc:36:75:6c:94:d6:d7:14:2a:e5:fd:4e:29:2b:06:ba:e7:5f:
dd:91:fe:87:0b:f5:c6:8e:f7:00:95:82:fb:7b:e0:db:a6:fd:
db:ff:7a:08:7c:c0:7f:03:4d:ad:7a:d4:de:a7:4f:e6:70:9a:
b8:a3:e7:d4:c6:94:d5:71:0f:bb:d5:e1:dd:fd:be:0a:40:ee:
1e:bb:6c:15:e1:3c:f0:9a:ff:3a:5d:67:f7:6e:6f:48:18:b6:
6e:ba:25:d3:94:4b:9e:58:38:1f:aa:5c:8d:c1:96:60:87:ea:
72:39:36:d3:d6:79:d6:af:3a:93:12:51:a5:a6:a1:08:2c:81:
cb:a4:05:94:19:bd:98:ad:f4:c5:c0:c3:29:6c:48:bd:75:e8:
aa:65:63:5f:3b:25:ca:fd:7d:4f:9d:46:eb:da:39:ff:87:f5:
53:8a:5d:94:4f:02:4c:bb:94:a5:1c:26:5c:4a:da:4f:a2:50:
8b:a7:40:0a:d6:b1:c2:22:9f:12:4c:1e:c8:74:bb:98:3c:35:
47:f5:bb:5e:1e:4b:e3:6f:b2:b9:a1:14:32:cb:ce:e7:dc:b5:
be:0c:7c:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:15 2024 by rpki-client on console-ams.rpki-client.org