Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C035F9E0E28911EE816187A6775412E6.roa
File: C035F9E0E28911EE816187A6775412E6.roa (raw, json)
Hash identifier: zCMxuZZorNyaQkZmsrOdfc7c8DiyjcrmQ20sKW6CgTU=
Subject key identifier: EA:FE:74:01:38:2C:5B:E0:94:73:BE:6F:91:0C:28:F2:FD:96:4D:66
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A16F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C035F9E0E28911EE816187A6775412E6.roa
Signing time: Fri 15 Mar 2024 05:06:16 +0000
ROA not before: Fri 15 Mar 2024 05:06:10 +0000
ROA not after: Fri 20 Sep 2024 05:06:10 +0000
asID: 2914
IP address blocks: 154.214.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41327 (0xa16f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 15 05:06:10 2024 GMT
Not After : Sep 20 05:06:10 2024 GMT
Subject: CN=65f3d748-aa6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:62:61:f3:1e:34:58:6a:15:87:ba:2c:aa:f8:
f4:fd:0e:ed:ce:25:c3:86:bd:fd:a7:06:16:6a:52:
a2:50:7d:cc:30:fb:cd:30:b9:be:49:dd:e8:9b:34:
91:f7:d0:d0:8d:a7:5f:1b:61:9d:f8:2a:25:41:07:
a4:db:c2:24:d1:4e:26:b6:c3:13:eb:d2:88:65:0d:
1c:63:2b:d2:fc:01:ac:fe:35:9d:8e:7a:ca:d6:37:
da:1b:c6:81:07:b0:e9:19:41:5c:11:a0:c5:ee:60:
66:0e:2a:bf:a4:2f:53:38:d0:4e:27:4d:d8:4f:69:
24:6e:fb:2a:62:d4:c0:c2:8a:c2:a1:f7:bb:0c:f3:
19:5f:e1:10:e5:4e:c0:37:a7:9f:de:4d:27:a1:d7:
6b:bc:cc:67:85:72:3d:c7:68:0c:03:4a:48:4c:d1:
4e:c2:b3:a6:16:6d:e8:24:f9:1e:8c:30:bd:ee:c3:
5d:24:00:f0:6b:8e:ae:a2:0c:40:80:d5:d2:67:4e:
83:c6:db:51:b2:bf:2b:17:06:20:81:e1:61:9e:c7:
02:8b:fc:0c:a1:3d:6b:57:c4:1a:1b:9b:f9:83:90:
4a:e0:c3:40:e3:a0:9a:f9:0e:33:84:a2:6a:7e:bb:
44:b7:d6:84:93:7b:17:28:fb:46:b6:b2:12:e5:e4:
e9:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:FE:74:01:38:2C:5B:E0:94:73:BE:6F:91:0C:28:F2:FD:96:4D:66
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C035F9E0E28911EE816187A6775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.210.0/24
Signature Algorithm: sha256WithRSAEncryption
46:de:c4:cf:5a:8d:b2:3f:11:2f:2e:3c:6e:21:49:49:93:0c:
69:32:95:e7:0d:9c:2f:7c:84:2a:4c:b7:5d:56:5e:d8:f4:41:
66:6d:b2:e4:8b:58:8a:c0:df:cb:03:68:55:64:3d:05:fb:e3:
2a:bd:88:62:15:fe:14:6b:c5:41:3b:56:f2:9d:d5:79:d4:4f:
5c:60:95:b1:9b:67:4f:da:23:14:18:b8:e2:ab:85:91:99:c4:
e0:52:8b:dd:cc:1a:18:91:ba:27:59:d4:f0:fe:34:da:7c:00:
64:de:68:b0:ea:5e:a1:eb:46:53:38:4a:f6:93:e6:81:18:c6:
be:88:de:65:21:85:4a:1f:7c:cc:4f:bb:33:d1:5f:5c:c8:ff:
3e:d7:c0:35:0a:0b:8c:5f:d2:4b:d8:15:9a:89:be:90:c1:b7:
2f:8f:3c:49:c7:2f:97:b6:b5:cd:ee:91:25:4d:1a:1d:29:74:
e1:a3:cc:00:87:70:68:4a:78:38:18:b3:32:ac:a7:33:e2:7f:
97:a0:5d:21:bc:61:de:ec:fb:68:bf:b6:fe:5a:6d:2b:41:45:
5d:db:6d:1e:d3:2e:43:6f:0e:50:3a:60:4c:13:bc:2f:28:0c:
cb:f1:aa:cd:ea:9e:22:14:3f:ec:d6:cb:22:f1:ec:88:6e:df:
9e:37:d2:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:19 2024 by rpki-client on console-ams.rpki-client.org