Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DEC1DAB6E1FB11EEB5B9FB8E775412E6.roa
File: DEC1DAB6E1FB11EEB5B9FB8E775412E6.roa (raw, json)
Hash identifier: 3Xr0a1cK/tbvKD7DdzTqH2gVGuOkNbAS1mOTUQGKVho=
Subject key identifier: 35:80:AB:FE:7C:BC:71:64:FB:E3:F7:A0:12:00:9E:11:11:3C:70:A2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A142
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DEC1DAB6E1FB11EEB5B9FB8E775412E6.roa
Signing time: Thu 14 Mar 2024 12:10:39 +0000
ROA not before: Thu 14 Mar 2024 12:10:31 +0000
ROA not after: Mon 10 Mar 2025 12:10:31 +0000
asID: 55720
IP address blocks: 154.216.2.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41282 (0xa142)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 14 12:10:31 2024 GMT
Not After : Mar 10 12:10:31 2025 GMT
Subject: CN=65f2e93e-49aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:33:ee:7b:43:d5:a6:9d:a5:f3:bd:ef:90:a7:
40:52:29:5f:b4:cb:c3:b4:11:26:32:dd:9b:01:0f:
e8:da:27:ea:b5:6d:7e:21:57:fb:12:d3:3c:c5:f7:
83:04:d2:c9:8d:67:61:fa:0c:1a:e9:90:7f:15:72:
13:cc:71:08:25:1b:96:c0:8a:b7:1d:b0:cb:c1:3c:
46:a7:03:d7:74:5b:17:87:a7:9b:ef:66:90:b7:e0:
3e:ad:04:b6:b6:b2:8b:a7:06:bc:ee:88:00:74:09:
6b:d4:1a:c1:23:ea:8c:94:16:d3:93:6c:41:1d:f3:
35:1b:ec:e3:3d:be:27:51:86:ea:b0:90:f0:53:79:
c2:3b:02:51:fe:32:40:da:6f:84:72:f1:6a:92:0f:
e2:8a:af:dd:12:0e:d8:ed:cb:4e:8c:4f:10:34:f0:
90:22:31:bd:f2:d2:6a:20:a4:ad:92:7e:f4:03:3c:
51:b5:9b:b3:9b:bd:8d:a8:c8:bd:da:33:e3:1e:3a:
50:72:34:64:60:98:db:b9:e8:e0:92:63:60:4a:c2:
6e:ab:f5:ea:78:c4:9d:2c:09:c1:da:95:d6:1e:fe:
92:ba:97:61:3a:ae:83:2e:9d:fd:6f:a3:60:5e:ec:
e2:4e:e2:c0:06:4b:91:b2:07:ec:96:25:6c:61:53:
9f:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:80:AB:FE:7C:BC:71:64:FB:E3:F7:A0:12:00:9E:11:11:3C:70:A2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DEC1DAB6E1FB11EEB5B9FB8E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.2.0/23
Signature Algorithm: sha256WithRSAEncryption
b4:c6:1b:6c:22:07:18:8b:57:03:e2:61:96:44:1d:31:d6:af:
5e:16:2d:de:c7:55:9a:41:96:33:73:ca:ea:f3:ed:d6:a8:01:
27:01:b2:28:53:38:e6:aa:c9:6b:39:67:f8:0c:68:5d:d3:22:
e0:ff:32:ed:61:ba:be:00:d5:6f:2e:f9:5c:7f:81:5f:75:1f:
b6:51:72:58:85:44:34:a9:10:77:fa:78:3d:12:4f:a9:68:9e:
42:1a:49:93:57:dc:cd:27:03:3b:c6:9f:cf:ef:b6:a9:d8:70:
d6:68:04:46:38:c5:39:0e:e3:03:84:0e:55:78:02:4e:88:ed:
84:14:96:37:08:40:c7:91:8d:7b:a5:4f:01:4d:65:4d:b4:03:
90:b8:a4:27:59:0c:7b:e1:9f:2c:de:bd:7c:d2:a4:5d:98:21:
9e:eb:77:4d:c4:6b:d4:36:62:fc:bc:94:eb:10:af:a0:3a:35:
0c:7e:fc:c9:4b:05:11:71:b8:4a:a3:73:15:04:cf:1e:e3:1f:
ad:15:5f:21:93:9e:78:53:2f:9a:57:56:69:63:5d:e2:6d:07:
a4:41:6a:ca:fe:15:53:f0:5f:1a:2a:aa:22:63:73:ce:30:d7:
fd:50:3c:40:43:1e:5b:16:18:12:3b:ec:5b:a9:80:b6:17:9c:
42:37:9c:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:31 2024 by rpki-client on console-ams.rpki-client.org