Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D301EB42C50611EE8D0F0CB6775412E6.roa
File: D301EB42C50611EE8D0F0CB6775412E6.roa (raw, json)
Hash identifier: sWiQulNbHo7C5adVP5qbbzQgEdjf/Ip/Qqpyuu+Jkxs=
Subject key identifier: E4:17:78:AD:9E:9A:E6:72:E9:50:39:FA:61:9D:87:B7:58:99:16:73
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8645
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D301EB42C50611EE8D0F0CB6775412E6.roa
Signing time: Tue 06 Feb 2024 15:46:00 +0000
ROA not before: Tue 06 Feb 2024 15:45:56 +0000
ROA not after: Thu 13 Jun 2024 15:45:56 +0000
asID: 212238
IP address blocks: 154.202.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 28 Apr 2024 11:49:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34373 (0x8645)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 6 15:45:56 2024 GMT
Not After : Jun 13 15:45:56 2024 GMT
Subject: CN=65c25437-9eef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:53:94:32:e5:b5:cf:82:eb:fd:7d:d3:ac:cf:
3d:d7:15:f6:27:43:04:37:a2:11:1b:ee:c8:91:d3:
09:0a:fb:b9:ca:87:4d:80:31:ba:7a:c8:28:1e:1f:
50:8a:eb:aa:93:a0:8c:9c:56:4c:27:cf:03:f8:4d:
45:c1:d9:54:a0:ae:03:5a:71:57:29:81:86:ca:f2:
6c:c6:dd:c5:bb:e3:c3:69:d1:eb:c3:9f:c9:d8:83:
38:6e:71:31:da:87:2f:f3:3a:96:0e:38:0c:a8:9c:
17:6c:ab:46:59:27:e9:9f:fd:68:63:6c:ef:85:8e:
4e:7b:cf:77:f7:9c:5c:ee:63:e1:24:ab:32:43:7b:
0d:6e:d0:8f:eb:04:ec:22:9b:7d:13:97:ba:1c:04:
ea:3e:8b:ba:f2:b0:bb:83:d1:ca:6e:0f:a2:ce:08:
bd:ca:b8:c4:26:8e:ef:b8:36:18:b1:00:3f:cd:25:
25:ac:2b:6f:52:ea:a7:bf:c1:39:68:56:50:31:12:
a1:27:7f:22:9b:0d:eb:90:89:75:2d:05:bc:be:ac:
f2:8b:bb:0e:60:54:e0:42:a6:bd:d1:3b:e1:95:39:
d7:dc:c5:6e:25:02:6d:4a:f9:3c:eb:51:8a:a6:c6:
fe:32:4d:dd:59:d9:4a:a9:0e:70:e0:88:2d:d4:ea:
f3:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:17:78:AD:9E:9A:E6:72:E9:50:39:FA:61:9D:87:B7:58:99:16:73
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D301EB42C50611EE8D0F0CB6775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.31.0/24
Signature Algorithm: sha256WithRSAEncryption
59:0c:16:3b:6c:26:22:c5:90:20:b0:56:24:42:41:41:b1:2a:
24:62:ee:b8:3d:27:d2:55:0e:31:51:5c:a8:79:f2:ba:ab:f9:
c9:fa:ef:d8:2d:59:f2:39:61:d9:70:85:1b:e6:b2:6d:f8:9e:
d2:54:e7:2d:80:6b:cc:63:dd:44:dc:8f:84:16:21:b8:54:e8:
14:40:64:c3:fa:02:50:9a:b1:35:d9:9b:2d:05:b1:83:a3:f6:
9c:36:51:aa:b9:9d:c4:ac:a9:b5:7a:cf:b6:38:9e:4f:67:17:
4d:8a:d1:29:bf:3e:99:2e:2f:d2:c1:95:0c:6c:a2:e2:02:97:
f5:35:3f:ec:c5:fb:d1:ac:f3:95:ef:c8:cd:16:84:81:9c:e0:
da:99:38:43:32:56:3a:2f:73:98:ae:24:0e:8d:6e:d7:d8:dd:
4b:00:11:bb:95:46:39:54:85:79:e2:75:81:37:f6:01:18:1c:
98:73:2a:24:80:04:b7:e6:d3:35:67:1e:7d:81:82:4b:3b:a2:
de:36:84:26:0d:16:a9:ab:a3:01:5c:05:1a:08:e7:dd:e9:e7:
61:81:6f:3b:5d:57:01:7b:95:05:b6:67:ff:7e:8d:f7:12:21:
6a:0a:ed:fc:61:a8:58:7e:24:59:e4:40:f8:15:9f:fe:e9:1c:
33:71:cf:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 27 13:33:58 2024 by rpki-client on console-ams.rpki-client.org