Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FE2CCAF2E28A11EEB1262BAF775412E6.roa
File: FE2CCAF2E28A11EEB1262BAF775412E6.roa (raw, json)
Hash identifier: 0cezQ+HNUvU3JbUj3QFssgemvuSE5gcnf3aOVBxHLa8=
Subject key identifier: 0A:A0:33:40:EF:D2:13:A3:3E:77:5E:32:57:D9:A0:B1:03:EA:33:E5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A17D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FE2CCAF2E28A11EEB1262BAF775412E6.roa
Signing time: Fri 15 Mar 2024 05:15:09 +0000
ROA not before: Fri 15 Mar 2024 05:15:04 +0000
ROA not after: Fri 20 Sep 2024 05:15:04 +0000
asID: 2914
IP address blocks: 154.214.221.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41341 (0xa17d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 15 05:15:04 2024 GMT
Not After : Sep 20 05:15:04 2024 GMT
Subject: CN=65f3d95d-70b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:58:85:9c:b0:22:3e:ee:df:69:3a:90:d1:da:
fa:27:05:04:38:a5:8c:4a:58:27:a9:38:65:30:57:
1c:22:6d:63:2f:bc:9a:3d:72:14:6a:2b:c2:6e:cc:
43:49:ba:be:51:52:81:30:7b:16:18:31:d6:51:25:
0f:62:1b:dd:ae:00:8b:e3:d5:88:ba:2d:f1:4f:f7:
26:79:35:6b:b7:b8:b5:3d:e6:9b:65:ba:46:82:09:
d9:47:8b:42:fc:6c:5d:e9:c0:06:6c:46:a7:bd:c3:
be:ea:3f:e4:f2:9a:71:61:68:a4:1f:34:a2:63:11:
39:c5:df:85:af:22:83:29:00:1d:4c:5b:4c:d1:0b:
6e:b5:a6:ec:25:1b:47:8f:4f:5d:59:71:80:9f:ae:
38:52:e4:0c:29:8a:c7:72:f2:7c:bb:e5:f1:d9:3f:
a1:8d:62:ca:3f:85:74:37:b2:d7:fc:56:c9:f1:00:
5e:8f:e7:a6:95:80:d9:fb:a2:47:82:75:dd:fe:2e:
34:05:94:fd:4f:79:33:b1:f5:f3:b6:95:25:90:97:
7b:8a:20:de:0b:ad:92:63:83:e3:8b:88:4c:36:61:
dd:35:68:26:64:6c:5e:a3:b9:eb:eb:b1:5c:ba:11:
a5:db:59:f0:ff:b8:ec:b6:c7:71:37:10:35:61:ec:
9f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:A0:33:40:EF:D2:13:A3:3E:77:5E:32:57:D9:A0:B1:03:EA:33:E5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FE2CCAF2E28A11EEB1262BAF775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.221.0/24
Signature Algorithm: sha256WithRSAEncryption
11:b6:82:77:58:6e:45:0b:86:06:7e:39:a7:ed:24:75:9e:b3:
b5:c3:61:3c:19:16:33:81:49:f9:21:95:03:df:7f:30:19:45:
78:d1:1b:4d:11:85:ca:e6:5f:12:75:f8:ad:82:cd:03:86:61:
db:a2:ec:85:54:9a:45:70:cd:e9:84:27:5d:07:3a:42:74:46:
1f:7e:f7:6f:8c:93:ef:d6:9d:ac:f3:ea:eb:51:7d:c9:a2:60:
ec:5c:d8:f5:a3:57:b4:3e:e3:b3:dc:eb:c2:15:13:e7:cf:f1:
e4:f4:68:49:ea:81:4c:b0:09:6e:c3:7f:72:42:5f:b7:b9:30:
74:c8:09:b2:05:6e:92:9c:89:ab:d2:a9:27:e2:5a:19:dc:2a:
ed:09:2a:88:c7:ec:4b:ba:d6:d9:c6:1e:f0:1a:fc:52:95:ba:
7e:a9:c3:b3:56:63:62:bd:d7:dc:7d:31:c0:b0:f0:e7:2a:aa:
b0:5e:8a:b7:05:5b:5f:bf:24:c5:c0:c7:70:a7:4f:10:34:1b:
eb:33:68:dd:8c:db:08:75:ee:69:b1:e7:19:aa:c6:3b:c3:ba:
f1:e4:24:17:b1:2d:56:8f:c8:63:7a:fd:57:25:86:fb:89:e1:
ff:1e:b9:a6:41:46:55:14:67:d4:ab:78:0c:f3:4f:18:d2:41:
37:3d:08:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:24 2024 by rpki-client on console-ams.rpki-client.org