Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FE835704A2FD11EEB4528913D25BE465.roa
File: FE835704A2FD11EEB4528913D25BE465.roa (raw, json)
Hash identifier: CDPzcTlxEDXER+JmbPXON10+YOH0eMp8rNhrO8hjXIM=
Subject key identifier: CE:84:EA:47:53:F4:21:89:C2:1D:1F:0B:A2:00:A9:E9:8F:03:B0:E7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 66F7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FE835704A2FD11EEB4528913D25BE465.roa
Signing time: Mon 25 Dec 2023 08:17:08 +0000
ROA not before: Mon 25 Dec 2023 08:17:04 +0000
ROA not after: Wed 26 Jun 2024 08:17:04 +0000
asID: 270157
IP address blocks: 154.208.130.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26359 (0x66f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 25 08:17:04 2023 GMT
Not After : Jun 26 08:17:04 2024 GMT
Subject: CN=65893a83-8cba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:20:83:81:45:c2:30:ea:70:28:bf:5b:53:f3:
ed:63:66:f9:18:8a:e9:3f:b9:e0:7d:88:fa:f8:af:
d0:66:52:24:2e:53:e4:30:fd:03:29:6d:43:58:43:
1d:45:17:77:7a:73:3c:a6:1b:23:d3:99:99:52:75:
2d:1a:95:d1:48:45:aa:57:28:8a:8b:e1:6d:c2:60:
c7:8c:97:f2:d4:65:cf:e7:72:f0:7b:2e:02:7d:94:
bf:1c:56:9a:aa:4a:4f:b6:03:b6:3c:b1:ec:59:53:
d6:cd:70:35:16:7c:b0:1e:d0:fe:25:47:ab:b4:f7:
f3:c0:3f:3b:de:1c:ac:5e:13:a9:4c:15:98:51:47:
10:d9:28:2c:c2:00:25:32:ca:ab:64:25:da:cf:5e:
eb:c7:84:96:aa:2b:1b:04:d0:69:e0:fe:c1:fd:a7:
6b:4a:85:e7:4e:74:98:bb:13:b7:a0:55:29:43:f0:
93:76:76:38:33:0a:3c:88:3b:5c:6b:1e:2d:ca:9b:
2c:4f:27:87:19:5a:fb:32:43:13:e3:21:e2:15:12:
07:81:6a:3c:95:c5:f9:cd:a2:9e:41:52:64:96:37:
8d:57:d5:f8:71:7e:a6:42:09:04:cb:14:bb:e4:08:
5a:7e:8b:bf:c7:5c:71:24:5b:a5:05:2a:9d:b8:06:
b9:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:84:EA:47:53:F4:21:89:C2:1D:1F:0B:A2:00:A9:E9:8F:03:B0:E7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FE835704A2FD11EEB4528913D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.130.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:0a:9d:de:98:1e:5d:64:c2:cd:18:be:9c:f4:28:68:a3:dc:
ce:73:a0:a3:e3:74:3a:36:4e:02:d7:36:05:30:73:cc:52:a1:
6c:b3:95:80:57:c0:c1:dd:e0:9b:67:c7:86:b2:84:c5:ce:a2:
28:bb:fe:7e:55:01:15:ee:de:f8:9f:79:6a:f9:39:f6:f3:b1:
41:3f:12:9b:84:ac:9f:06:dc:13:22:16:f2:16:53:bd:6a:6b:
24:3e:93:15:59:b7:6d:99:ed:e7:e3:4e:71:3e:a3:72:9c:94:
d8:eb:74:88:64:a4:1c:b4:f4:f9:67:77:a0:a0:be:e3:41:e5:
c0:66:6f:fc:ff:d4:e5:9c:32:79:a4:b1:2a:e4:ca:c3:e0:4b:
ab:8d:e3:41:1e:b0:2d:32:10:11:48:fb:04:ba:b3:d7:cd:60:
6c:38:33:72:43:df:63:fa:fa:4d:99:dd:c7:11:16:44:52:c2:
cf:68:47:36:cb:1d:80:fa:58:97:8b:f9:9e:5c:16:0c:5e:2f:
19:c2:cb:dc:95:dc:01:ba:2b:e4:a0:ec:8f:a2:e5:9e:22:7d:
e1:7d:3b:b5:11:bd:df:6f:87:76:b5:9e:dd:ed:f5:7b:56:b1:
d7:42:bc:7d:07:96:f7:6a:29:25:2a:dc:49:c6:06:82:05:9c:
c8:24:a3:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:24 2024 by rpki-client on console-ams.rpki-client.org