Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C86A6CDAEB5911EE832966AD775412E6.roa
File: C86A6CDAEB5911EE832966AD775412E6.roa (raw, json)
Hash identifier: iAbm1KZYpYrYYFJguAnSrYqqENPhJnS/NIDBCmrdG8I=
Subject key identifier: 7C:EF:43:F9:2E:91:18:0C:60:60:55:D0:5E:0D:96:C5:B2:C5:94:D2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A6AC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C86A6CDAEB5911EE832966AD775412E6.roa
Signing time: Tue 26 Mar 2024 10:15:34 +0000
ROA not before: Tue 26 Mar 2024 10:15:31 +0000
ROA not after: Fri 03 May 2024 10:15:31 +0000
asID: 328608
IP address blocks: 154.194.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 03 May 2024 00:04:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42668 (0xa6ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 26 10:15:31 2024 GMT
Not After : May 3 10:15:31 2024 GMT
Subject: CN=6602a046-0095
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:34:af:50:75:68:13:ed:1a:8b:07:fa:8a:fe:
42:4e:f5:e9:39:cd:dc:ca:81:8e:07:a0:3a:3e:6d:
a4:d1:7c:e4:5c:28:30:41:9e:c5:ec:11:ee:e6:5f:
5b:2c:4c:25:a1:53:51:a8:aa:ff:e4:c5:19:b4:40:
85:a2:e2:64:85:16:06:48:da:47:8b:4b:b7:72:09:
10:b6:0a:78:43:a2:2f:45:1a:4a:b4:ae:7c:72:11:
5f:76:09:3c:05:27:67:c2:61:62:59:f9:4b:43:4b:
68:f2:5e:ee:8f:48:68:9b:f8:40:79:7f:f4:5f:1a:
b3:1c:db:6b:5d:11:59:98:fd:55:80:d6:ab:b0:4b:
12:2b:40:a5:46:9d:ec:a7:1c:54:92:0b:50:d8:42:
64:ce:e3:7b:3c:7e:c6:f3:ab:b3:20:6c:21:31:9d:
be:4c:f8:27:c9:fd:db:bb:ed:5d:0e:6c:6d:3f:19:
c7:86:77:d9:f2:d3:be:04:d1:43:8e:76:f5:04:98:
ec:40:e9:fe:4a:d5:f9:9b:e8:fa:2f:9b:5a:90:ee:
f3:dd:70:ab:dd:9f:d7:f7:d8:59:34:69:b0:c8:49:
a6:53:72:59:b1:88:92:3a:45:e0:84:96:54:2a:68:
5a:c2:62:8f:8b:37:8b:41:0f:f9:c7:96:13:6b:05:
90:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:EF:43:F9:2E:91:18:0C:60:60:55:D0:5E:0D:96:C5:B2:C5:94:D2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C86A6CDAEB5911EE832966AD775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.6.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:e7:47:88:ff:06:d6:e2:2a:4d:4c:12:95:24:ca:c2:b4:68:
63:1a:13:77:fc:b1:e3:34:2c:bc:27:a1:e1:d6:db:e6:90:3d:
7b:a8:52:99:18:63:b9:6b:f9:b5:2e:72:5b:f9:6d:e6:c0:d2:
fe:0b:cb:d0:20:6a:47:6b:3a:6d:95:56:6f:9a:e0:7c:9c:fc:
49:01:0b:ff:f9:22:19:bb:f1:0d:b6:78:b2:60:55:e0:8d:66:
d4:78:21:af:75:ed:5d:d4:05:74:e7:49:52:cb:77:cc:39:c7:
5b:c6:b6:d6:a9:46:1b:59:f5:0d:37:f8:26:ce:93:0f:fb:5e:
9c:e4:d8:f8:a5:16:a9:46:45:66:6a:fc:08:45:96:6b:b8:c3:
40:80:b6:c7:3f:93:3c:62:e6:1f:a6:a5:28:86:0d:6d:94:d4:
fc:7f:9e:4c:53:2f:b7:93:6d:b3:3a:83:67:0b:fd:dc:8c:c1:
3d:7d:73:3e:b2:12:ea:b5:8e:b6:03:d6:0b:74:f8:2b:f5:7f:
54:ab:4b:78:f4:3a:ce:f8:15:43:1e:a2:a7:c5:91:e5:bd:64:
0e:2a:b5:8b:ed:c9:25:fc:81:ff:3f:05:c5:2e:51:74:c1:90:
5b:d5:d5:21:1c:9e:93:54:1b:24:52:6a:f0:38:de:fb:79:62:
80:a0:47:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 13:25:05 2024 by rpki-client on console-ams.rpki-client.org