Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F44E1F74CDF711EE966E757B775412E6.roa
File: F44E1F74CDF711EE966E757B775412E6.roa (raw, json)
Hash identifier: 2X6s1IX6wY+WAlp1J9+uK5NXjUWRBiR+BYgOAma2zao=
Subject key identifier: E2:93:93:08:4C:60:1E:A1:1D:53:54:ED:9F:80:38:93:0C:CE:A5:DC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8B41
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F44E1F74CDF711EE966E757B775412E6.roa
Signing time: Sun 18 Feb 2024 00:52:13 +0000
ROA not before: Sun 18 Feb 2024 00:00:10 +0000
ROA not after: Mon 17 Feb 2025 00:00:10 +0000
asID: 262191
IP address blocks: 154.197.34.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35649 (0x8b41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 18 00:00:10 2024 GMT
Not After : Feb 17 00:00:10 2025 GMT
Subject: CN=65d154bd-a5bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f2:ca:a2:75:b6:4c:96:a4:61:b4:9e:52:ca:
07:0f:e1:bc:17:82:5c:36:08:f5:a5:0c:4f:bf:dd:
b7:46:3f:c6:ef:14:dc:54:5f:0f:ff:da:14:53:1f:
36:eb:9f:78:a2:97:a4:bc:9d:61:4c:72:9c:0f:65:
2a:b3:a9:f8:66:0b:e9:6c:29:66:35:37:3f:f9:44:
7c:7d:a0:bb:e7:9f:d4:db:a3:0b:19:cb:45:6d:17:
17:a4:df:0c:f2:14:c6:c4:9d:85:2c:c1:32:bd:3a:
09:3d:9a:9b:dc:52:fb:ce:51:d7:7f:d6:4f:36:23:
a4:99:bb:c1:42:39:2c:22:15:2b:4b:90:6b:d7:4b:
e0:98:df:81:15:57:b7:55:dd:c3:66:7e:3b:4e:ba:
22:44:34:0e:bc:04:32:8b:51:d3:20:73:d2:85:7d:
a8:17:ae:9e:33:81:59:d7:c0:89:e0:0d:3e:b4:7e:
6d:7d:29:89:25:21:c3:2e:03:98:cc:9d:0b:d6:42:
1a:66:bc:61:e0:c5:82:06:19:92:e0:89:96:fa:13:
e2:82:b1:07:42:83:45:45:a6:2c:68:3e:7b:fe:02:
03:83:50:2a:bb:08:76:87:38:cd:65:dd:bc:07:f1:
3e:bc:97:49:4f:c2:42:8b:a9:b8:fa:88:fd:39:77:
78:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:93:93:08:4C:60:1E:A1:1D:53:54:ED:9F:80:38:93:0C:CE:A5:DC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F44E1F74CDF711EE966E757B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.34.0/23
Signature Algorithm: sha256WithRSAEncryption
d1:1b:a2:f1:98:fc:d8:0a:73:44:2b:89:a3:92:38:aa:f7:16:
dc:21:7c:42:f8:1e:c5:b3:0f:b0:f3:56:ea:44:2a:6d:3d:b3:
59:fa:a4:8e:66:f4:91:62:b1:4a:46:d2:4e:4b:f1:d3:1c:fb:
6f:de:d3:41:d0:58:1e:41:8c:06:20:3a:d8:10:f8:55:04:66:
2f:8f:25:50:2b:a6:c9:ab:16:ce:3b:1d:80:e9:fa:47:11:c9:
2e:9e:f2:00:22:de:0f:40:e0:15:57:55:d4:e9:ba:44:2b:d2:
13:52:0d:32:77:d8:85:3e:1b:73:f8:75:7f:73:06:5a:cb:7f:
00:78:3a:13:7b:02:61:ea:ca:57:6b:54:12:02:43:c7:70:45:
b9:cb:e8:2e:69:f1:b7:d7:b3:14:4e:fd:94:2a:d7:5a:87:e2:
0e:87:59:ea:bd:77:d5:33:d5:d6:e9:aa:42:f1:3a:bb:70:d1:
1b:45:c8:c0:47:c5:02:74:c7:14:9b:41:47:e9:ea:83:ec:3a:
b3:8a:ea:35:8e:92:e5:b9:a8:5d:09:83:9a:21:b6:d4:be:89:
4e:a2:ef:51:eb:61:38:21:82:bd:f5:b0:ee:ea:c0:fe:9f:5d:
2e:13:0e:a8:ae:20:d7:b5:8b:ea:2b:2c:58:a6:b2:5b:0f:9b:
84:6b:48:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:24 2024 by rpki-client on console-ams.rpki-client.org