Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ECC00008E20411EEAB1881C7775412E6.roa
File: ECC00008E20411EEAB1881C7775412E6.roa (raw, json)
Hash identifier: zOxcW5Yi5e4teXjRuK2mlFuaiyeKJFqNkwhg5Vk01iY=
Subject key identifier: FD:93:97:94:C5:0F:5E:DD:91:D2:84:2D:33:27:88:41:D1:B5:81:30
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A162
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ECC00008E20411EEAB1881C7775412E6.roa
Signing time: Thu 14 Mar 2024 13:15:28 +0000
ROA not before: Thu 14 Mar 2024 13:15:24 +0000
ROA not after: Fri 20 Sep 2024 13:15:24 +0000
asID: 2914
IP address blocks: 154.214.195.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41314 (0xa162)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 14 13:15:24 2024 GMT
Not After : Sep 20 13:15:24 2024 GMT
Subject: CN=65f2f870-2367
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:84:d0:08:54:2b:fa:ad:c7:88:0b:45:a7:1d:
e2:08:f8:06:81:b3:fa:d7:7a:cf:0c:59:7f:0c:6a:
b5:ad:4c:22:8c:0b:33:ab:54:5e:10:6e:b0:e9:88:
89:9c:23:d6:29:21:27:a6:29:8f:a9:95:ef:da:80:
b6:b2:a2:7a:e4:d4:2c:dd:eb:b0:fe:c7:98:8d:0b:
f5:1a:14:bd:50:15:98:b9:9c:6f:d6:50:da:7c:ff:
23:12:fc:55:50:91:8e:34:eb:92:a6:48:06:26:6c:
fc:e6:a7:8a:56:e1:9a:96:55:62:8a:78:c2:c7:87:
ae:71:16:71:b1:e9:00:1b:ad:68:7c:e8:d4:ca:32:
20:16:a9:2a:6e:e8:83:0d:31:67:58:82:ae:0d:d5:
ef:f4:88:2d:45:93:05:5d:cc:dc:15:60:b4:ea:6a:
7e:35:c1:a3:b2:7e:60:81:84:a4:19:4c:5a:d5:c3:
81:13:3d:19:4c:13:81:82:22:4e:73:cb:41:84:c5:
b3:bd:31:87:b9:8c:70:d1:2a:b0:48:7c:dc:ec:3e:
64:83:f8:a6:3a:49:a8:75:0c:07:02:1b:69:fa:73:
3e:31:71:a9:0e:a8:43:da:05:5b:eb:b2:c4:83:fa:
98:f7:9e:cc:a5:5f:92:5f:15:9d:db:86:2b:6f:17:
e0:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:93:97:94:C5:0F:5E:DD:91:D2:84:2D:33:27:88:41:D1:B5:81:30
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ECC00008E20411EEAB1881C7775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.195.0/24
Signature Algorithm: sha256WithRSAEncryption
54:38:fe:ee:df:15:87:7e:57:72:fe:46:8e:ca:20:f8:2e:b5:
d2:c0:65:ec:d0:ab:cd:eb:19:97:73:38:4f:98:28:10:c1:b9:
ca:63:34:33:9d:15:d1:30:a4:66:fe:5c:a3:dd:0d:8c:bf:5e:
b5:fd:17:ba:b0:03:6a:51:5c:1c:c6:d2:b8:29:eb:a7:31:f2:
85:d5:18:41:11:1a:52:56:31:d9:c7:99:e1:67:38:d5:67:d4:
a2:95:86:7e:6f:d5:0d:0d:e5:23:b5:7f:6c:86:bc:25:41:55:
54:05:d3:58:58:f7:d4:58:00:a4:31:93:93:1c:69:fd:f6:1e:
5f:7f:33:2b:57:1c:ec:6c:62:e3:1f:94:d9:b3:ab:30:9a:29:
49:89:58:0f:e3:ca:b1:fa:79:d2:31:c5:ff:b9:62:48:4d:c5:
10:10:85:ae:31:27:e6:03:19:e7:53:f6:6f:19:d7:b0:19:58:
00:42:40:ef:7b:12:04:b1:89:f3:bd:fd:be:84:05:55:24:26:
8a:87:24:30:e0:3c:ad:fd:ce:a3:42:8a:b7:8b:d7:27:f5:5e:
e8:cf:73:d8:13:5b:46:24:d5:b1:5e:20:a0:79:3b:c9:27:d3:
fa:bc:19:fd:1c:0b:ee:33:7e:43:95:55:82:93:54:4a:37:4b:
3e:71:5b:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:23 2024 by rpki-client on console-ams.rpki-client.org