Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A4B78754F17211EEA4710A67775412E6.roa
File: A4B78754F17211EEA4710A67775412E6.roa (raw, json)
Hash identifier: 8fzpVoVFPLmGvSPg5dQpq7DPcJ3s4GwxQUdfMwK3390=
Subject key identifier: E8:A8:CA:5D:D8:09:DA:DD:81:43:49:F5:06:0F:53:CE:C2:54:2A:F7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A934
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A4B78754F17211EEA4710A67775412E6.roa
Signing time: Wed 03 Apr 2024 04:28:39 +0000
ROA not before: Wed 03 Apr 2024 04:28:35 +0000
ROA not after: Sat 04 May 2024 04:28:35 +0000
asID: 140869
IP address blocks: 154.81.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 04:28:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43316 (0xa934)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 3 04:28:35 2024 GMT
Not After : May 4 04:28:35 2024 GMT
Subject: CN=660cdaf7-3ed4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:63:62:ee:e7:7a:68:c0:c8:00:4b:c4:14:9e:
9f:b0:25:24:ad:3a:75:e8:2b:4e:1e:db:3f:99:ed:
0b:90:20:7f:a2:31:38:6a:e7:26:e4:c5:39:1b:79:
05:13:72:a8:29:f3:45:a5:1f:48:9a:0f:bf:d1:a1:
a1:78:a6:e7:5d:15:1b:32:5e:0a:3b:f0:5c:d2:84:
1c:59:2e:75:d3:81:f9:70:ac:5a:73:3f:56:fd:67:
5f:33:23:97:31:a5:d0:da:ee:38:b9:2b:6f:33:bd:
64:12:b6:62:23:3a:f9:41:e5:d9:80:b6:21:30:2b:
29:b9:3b:fe:d2:6e:d5:70:b4:e0:32:57:14:45:69:
45:98:ec:70:b6:1c:3b:15:85:bc:f8:14:04:22:6b:
02:f6:93:07:aa:f0:c7:81:b9:99:31:39:6a:35:31:
cc:70:35:3d:41:dd:90:ef:a8:74:68:45:8c:2c:2a:
4c:a2:cf:49:7f:40:27:19:fe:a2:69:50:d9:11:c0:
2a:d0:20:0a:76:94:d3:17:81:dd:3f:27:23:97:5a:
6f:6e:c1:81:41:9e:e9:0e:7a:11:af:29:b7:fc:bd:
7b:9d:c2:7d:37:7f:4f:7e:24:fe:8c:a1:af:28:4d:
03:88:d2:c3:d6:51:6b:55:bd:1d:2b:65:98:20:9f:
5b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:A8:CA:5D:D8:09:DA:DD:81:43:49:F5:06:0F:53:CE:C2:54:2A:F7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A4B78754F17211EEA4710A67775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.35.0/24
Signature Algorithm: sha256WithRSAEncryption
86:68:f3:d0:44:cb:69:3a:41:ee:5b:ce:d0:bb:ca:35:47:24:
f9:18:a0:80:96:a4:57:6d:fc:43:0c:01:37:6d:ce:9d:c6:1e:
f4:c9:a4:57:5f:27:b1:7b:1e:8a:40:ce:e5:f9:dd:0f:f9:7a:
0a:84:6c:77:58:d7:a8:69:5b:19:b5:cf:9a:0d:71:0c:d3:30:
85:3a:c0:7b:3e:39:03:5b:1f:c3:81:47:7a:29:7e:b6:95:f2:
b0:61:fd:b3:b8:78:86:ae:7b:94:a4:1b:d3:13:7a:6f:c2:38:
cb:69:0b:c5:7a:85:01:c7:8b:36:e7:11:01:3e:16:27:a2:3d:
65:98:60:54:ab:bc:9e:2a:ef:1d:7e:b8:da:b2:57:ee:e5:11:
0e:53:81:98:47:12:83:57:50:37:99:cb:66:63:52:cd:d0:21:
24:84:7a:f4:d2:75:ca:ed:fd:e1:ee:2b:ba:95:c9:75:2d:88:
6a:3f:b7:40:15:8a:ad:9d:db:08:09:75:42:91:59:ea:b8:85:
83:87:8b:95:c5:51:05:0f:ac:f1:3d:eb:ae:ec:c7:f6:a5:c3:
f1:35:65:18:24:46:27:ff:81:67:d3:74:bb:aa:49:4a:d1:6d:
69:73:fc:e7:1d:36:4f:f5:a4:29:e8:82:b4:1c:83:fc:73:d5:
66:31:f3:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:17 2024 by rpki-client on console-ams.rpki-client.org