Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EDE8616EEC0411EEB71FAD6D775412E6.roa
File: EDE8616EEC0411EEB71FAD6D775412E6.roa (raw, json)
Hash identifier: u+zwtJyarb1rq3PaT8y/D3ov1o6AOUy4rcjzBRl1SiQ=
Subject key identifier: 64:B8:D4:EB:46:3A:46:F4:37:06:BE:2B:42:1A:44:AB:D3:DC:DD:6C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A6B9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EDE8616EEC0411EEB71FAD6D775412E6.roa
Signing time: Wed 27 Mar 2024 06:40:41 +0000
ROA not before: Wed 27 Mar 2024 06:40:38 +0000
ROA not after: Wed 18 Sep 2024 06:40:38 +0000
asID: 2914
IP address blocks: 154.214.252.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42681 (0xa6b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 27 06:40:38 2024 GMT
Not After : Sep 18 06:40:38 2024 GMT
Subject: CN=6603bf69-20a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:eb:43:42:59:56:02:5a:dc:19:35:53:92:db:
80:dd:8d:63:82:71:d3:02:7e:61:08:34:cd:3e:82:
a5:69:c4:4f:e2:3c:14:df:15:ec:cb:35:d8:fa:ce:
63:bd:14:a4:c7:09:50:e1:98:c6:5f:4d:eb:71:cd:
14:f7:cd:3f:1f:43:63:35:fd:93:d6:01:ac:cb:f7:
4b:34:9e:b7:d2:f8:f5:18:52:07:6f:a4:33:99:6a:
31:b4:dd:cd:42:5e:c3:76:d2:f9:80:81:cb:6a:49:
fa:d7:de:95:c1:94:82:49:5a:ef:fb:c3:45:7b:f3:
70:f1:0b:68:e7:6b:ef:30:23:75:6e:c3:a8:77:80:
9a:5c:76:c1:67:ce:5c:fe:96:00:93:57:d7:42:c6:
ee:b4:4a:ce:95:8c:3d:11:81:23:a4:3a:3a:65:7e:
92:e9:1f:b2:c4:45:9a:e6:9e:63:88:53:18:42:d4:
68:d2:0d:7b:ae:36:c6:a1:e0:0a:c9:35:54:e7:42:
99:c4:61:25:df:40:55:8c:3d:70:f5:21:c4:b3:fa:
d4:c5:e0:fc:25:b8:ff:e3:43:43:1d:16:a2:fb:f8:
10:19:c6:18:23:81:12:e6:e9:62:f4:a6:ae:31:94:
98:ee:00:8b:66:d6:40:b9:7c:91:3f:11:1a:95:e6:
51:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:B8:D4:EB:46:3A:46:F4:37:06:BE:2B:42:1A:44:AB:D3:DC:DD:6C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EDE8616EEC0411EEB71FAD6D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.252.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:35:84:d8:ef:f1:0c:7a:81:3d:b0:5c:30:1b:56:04:ee:33:
64:5b:25:9a:06:df:ae:7a:9c:9e:9f:fc:d2:44:fe:1e:70:bc:
c1:f6:91:a5:ff:33:eb:a9:7f:10:84:3f:28:42:54:a3:f4:33:
f0:06:da:b8:40:c5:c7:6d:cb:9f:5e:cd:71:ce:4e:e8:b8:a2:
e6:7b:4c:f6:8c:4e:d4:bb:e8:1f:8a:fc:5c:d2:91:ca:1a:dc:
ff:6e:47:51:a9:23:05:9a:89:a5:7c:b2:4a:aa:87:2c:5e:1b:
8a:01:e8:67:9f:16:a1:16:4a:97:a0:e0:03:2d:e6:8b:4a:5e:
8e:c2:27:70:cf:ef:10:bc:bd:40:2f:10:3e:ff:d3:4e:93:93:
2e:17:8b:64:ca:57:95:0f:92:9d:1b:e5:ae:e0:38:1d:14:7f:
07:19:ff:c0:d1:1b:0a:e8:e9:c0:c9:b1:53:53:89:9c:d7:a3:
a3:46:d3:06:ab:70:6b:07:a3:be:f8:1b:96:c5:de:dd:22:98:
65:ce:f2:c2:1d:14:91:7f:5c:29:f3:8c:b1:31:df:9e:3b:8a:
18:8a:b4:dc:19:2e:70:df:d0:1d:2d:0f:59:37:ee:0b:c9:22:
5b:3d:18:30:af:c9:47:48:8b:c4:0e:45:12:cf:4d:02:f5:73:
c4:48:3b:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:23 2024 by rpki-client on console-ams.rpki-client.org