Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F6E1DD80E20511EEAC07B14F775412E6.roa
File: F6E1DD80E20511EEAC07B14F775412E6.roa (raw, json)
Hash identifier: X4EekciQZaTjh5pkrZO629i5Zg9n/Y6c+NmZyuLDwBo=
Subject key identifier: 40:6E:3C:5E:A3:B1:3C:74:F2:D3:0E:C6:39:39:23:F4:9F:05:98:3C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A16C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F6E1DD80E20511EEAC07B14F775412E6.roa
Signing time: Thu 14 Mar 2024 13:22:54 +0000
ROA not before: Thu 14 Mar 2024 13:22:50 +0000
ROA not after: Fri 20 Sep 2024 13:22:50 +0000
asID: 2914
IP address blocks: 154.214.208.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41324 (0xa16c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 14 13:22:50 2024 GMT
Not After : Sep 20 13:22:50 2024 GMT
Subject: CN=65f2fa2e-21b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c4:ed:61:fa:eb:c9:80:bc:71:d8:90:b7:fb:
e0:8d:04:36:26:5e:18:da:e9:1f:f3:02:78:df:9d:
35:c7:b7:57:2c:5e:f4:e8:11:fb:58:cd:dd:65:de:
a7:93:11:cf:6c:bb:c0:cb:c7:32:f3:76:15:2c:34:
99:3a:fb:65:22:1c:40:fd:8b:d4:31:ca:4f:09:58:
bb:14:df:84:9f:a6:3e:75:f3:6a:42:b9:39:d9:a3:
a2:53:78:ad:92:96:88:ce:59:1c:69:a1:12:8f:93:
39:cb:df:2a:36:b3:af:b3:24:41:09:2c:71:6b:f4:
c7:d8:06:64:e3:11:c9:c1:c5:38:ac:e2:6d:a7:9d:
dd:b3:57:0f:33:33:9a:5b:56:bd:74:54:f6:ae:6f:
ba:74:46:69:f4:08:2d:84:fc:15:1c:9e:a2:07:5b:
32:87:5e:2f:c6:fe:87:6e:86:d6:d7:eb:9a:aa:69:
83:83:bd:08:82:7e:72:9c:43:dc:e7:ac:8b:47:33:
7d:b9:e1:16:77:25:62:3b:18:24:18:a8:ad:36:8f:
9a:69:1c:d6:f4:88:98:48:eb:0e:d8:2d:a6:e8:15:
b0:65:06:4e:06:c7:a0:e4:e2:e8:7f:28:b4:46:47:
59:84:4e:c1:71:65:03:f9:41:3a:dc:e7:f7:bf:ba:
92:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:6E:3C:5E:A3:B1:3C:74:F2:D3:0E:C6:39:39:23:F4:9F:05:98:3C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F6E1DD80E20511EEAC07B14F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.208.0/24
Signature Algorithm: sha256WithRSAEncryption
af:78:da:f4:b0:c8:21:c2:3f:90:ec:1f:78:42:6e:6a:c8:bb:
da:86:98:03:3b:da:61:3f:ba:6d:f5:aa:7d:5f:39:ba:7a:0e:
93:30:2d:93:35:ef:d8:d4:9d:6a:1c:63:58:b9:43:9e:b8:6b:
e6:73:aa:79:81:4b:3a:7d:5b:a9:98:53:ca:31:f5:f5:d7:b8:
a9:45:d5:f3:5e:da:7a:9c:5f:f5:ef:1b:b1:92:6c:de:89:30:
a2:87:a0:57:4f:35:b3:33:78:51:d6:9d:41:7a:b8:22:91:ef:
6d:7f:16:c9:86:90:be:1d:c0:5a:58:5c:ca:4b:dc:19:5e:d2:
3d:99:27:98:a3:dc:81:99:e9:fc:39:07:5d:c2:59:81:c7:8e:
3e:9c:28:8b:a0:30:7e:d0:b8:99:00:9a:81:0b:ba:f2:ca:58:
a9:70:e1:e7:51:f4:08:92:ac:63:02:d8:a3:ed:22:8e:6a:7d:
df:41:b0:31:4e:6b:b6:b2:b7:dc:f8:00:ad:f8:4c:46:07:0b:
5b:02:ed:ff:36:8b:eb:a8:b5:31:d6:c2:48:96:d2:7a:00:8a:
e4:f9:f5:a6:bb:66:0a:a9:f5:ee:95:b2:be:b9:02:e4:f5:cb:
c4:5c:f5:be:99:12:f6:16:34:6d:d6:1f:fa:13:1d:cf:eb:21:
38:62:bc:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:43 2024 by rpki-client on console-fra.rpki-client.org