Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C9EEA9BCE69111EEB90516B6775412E6.roa
File: C9EEA9BCE69111EEB90516B6775412E6.roa (raw, json)
Hash identifier: Yv3aY6vCeSugPtfvcrFtzkYVG8nXt8y345JPD0HQMFI=
Subject key identifier: 5E:A4:65:12:E7:3D:F1:EC:00:B3:2F:5D:73:7E:17:4F:06:1D:20:0B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A31B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C9EEA9BCE69111EEB90516B6775412E6.roa
Signing time: Wed 20 Mar 2024 08:13:53 +0000
ROA not before: Wed 20 Mar 2024 08:13:49 +0000
ROA not after: Wed 18 Sep 2024 08:13:49 +0000
asID: 2914
IP address blocks: 154.214.209.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41755 (0xa31b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 20 08:13:49 2024 GMT
Not After : Sep 18 08:13:49 2024 GMT
Subject: CN=65fa9ac1-0518
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:cf:ac:85:68:59:3b:35:da:96:df:aa:eb:73:
76:83:32:3d:07:2d:c6:1a:e7:28:41:93:c9:7c:8b:
29:35:05:9b:eb:f0:b7:92:77:97:24:04:b4:4c:06:
c2:ea:af:b3:f0:e9:c5:3d:c4:c3:18:e8:f2:99:91:
50:1c:15:c9:3e:2a:b8:85:26:6f:1e:0b:13:41:18:
84:8b:c7:4e:e8:dc:56:90:25:a6:42:12:a7:d2:6f:
0b:81:20:42:b1:7f:46:fc:29:e3:f9:4e:21:96:fb:
52:c9:40:6b:db:0e:42:36:7d:99:d9:43:11:75:84:
3f:02:67:6e:1f:1c:59:9b:10:0d:71:87:00:95:48:
b0:ea:2a:87:85:a6:ca:b2:f4:46:0d:34:8f:5f:57:
b5:d1:31:a6:82:71:a4:9e:23:ae:c4:5b:b4:d9:1d:
0f:99:c7:a1:be:38:87:dd:82:a7:a6:82:d3:93:a6:
36:c2:b1:da:ed:6e:27:a8:b8:9c:52:81:3b:79:93:
b3:89:f1:0e:a2:b6:29:ba:4f:b4:55:a4:cc:08:9c:
97:11:dd:93:e3:28:9a:ae:16:97:cd:fe:88:5c:35:
19:3e:c7:cd:c7:94:24:62:9b:2a:39:a9:39:69:d8:
64:ea:61:99:67:40:4f:57:c1:f5:55:a0:5b:1c:f0:
53:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:A4:65:12:E7:3D:F1:EC:00:B3:2F:5D:73:7E:17:4F:06:1D:20:0B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C9EEA9BCE69111EEB90516B6775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.209.0/24
Signature Algorithm: sha256WithRSAEncryption
77:ab:63:1e:70:db:0b:2e:60:38:2d:25:25:d8:ec:5a:34:66:
cd:79:36:32:d9:17:5a:4b:9b:84:f4:d5:fc:d1:a0:82:0d:ec:
72:2e:76:a5:4d:a2:8f:94:17:d6:12:4c:b6:22:66:50:9b:e6:
f1:07:4f:1b:88:5e:75:f3:89:a5:96:cc:9a:21:ed:c3:71:12:
ca:87:be:f7:6f:4c:c6:6d:1f:18:58:fb:78:e2:74:db:e5:fe:
27:41:3c:25:72:d0:21:58:fb:14:8e:bb:e5:89:7b:36:27:3a:
c2:91:f4:84:af:c5:35:15:e7:ac:90:ae:1f:91:c1:1d:fe:ce:
47:d3:32:a8:78:7d:72:31:7d:2d:ea:4d:7f:44:13:97:9f:f4:
2a:3a:7c:a5:56:46:fc:e5:72:87:6e:45:27:44:4b:70:92:e6:
7c:bf:91:73:36:4d:1a:a8:df:33:7b:47:cf:0e:8a:f3:aa:1e:
06:c3:f2:ca:0d:17:9a:55:bf:e7:ed:88:45:96:99:b6:5b:9d:
68:81:b6:0e:98:f6:25:3c:df:ac:d5:df:b8:77:74:99:d2:71:
cc:38:32:f0:d9:17:10:76:3f:85:62:a6:38:26:85:14:f4:16:
dc:8c:6c:dd:8e:e6:ef:c0:d5:22:0d:8f:d2:49:8b:7c:c4:f4:
78:4b:fe:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:38 2024 by rpki-client on console-fra.rpki-client.org