Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/307A7DF0062C11EFB6179E35017001B1.roa
File: 307A7DF0062C11EFB6179E35017001B1.roa (raw, json)
Hash identifier: TjqzAP3meahchPCSymyL2LY8t9Da/Ya9TgWUuRvDf+A=
Subject key identifier: 05:CF:B1:EB:EB:1C:9D:DA:BA:09:DD:25:58:63:4F:32:12:E0:B3:DD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B270
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/307A7DF0062C11EFB6179E35017001B1.roa
Signing time: Mon 29 Apr 2024 13:27:13 +0000
ROA not before: Mon 29 Apr 2024 13:27:10 +0000
ROA not after: Fri 07 Jun 2024 13:27:10 +0000
asID: 138915
IP address blocks: 154.223.44.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45680 (0xb270)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 13:27:10 2024 GMT
Not After : Jun 7 13:27:10 2024 GMT
Subject: CN=662fa031-6878
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:3e:55:fa:74:62:cb:5a:56:83:96:9e:14:c3:
78:d4:3a:b0:1a:b2:55:64:de:af:d5:e1:d2:5d:61:
19:05:c6:97:4d:0e:de:41:04:67:1b:ef:b8:48:61:
ee:13:ff:c2:d2:ba:4a:44:3f:34:da:26:6c:2c:f7:
19:2b:54:e1:6c:ea:b2:64:e6:0c:dd:7c:c6:5f:cc:
61:cf:59:ef:e8:8b:e8:4c:59:1e:3f:64:e8:37:0c:
5f:ca:30:57:16:be:89:c9:4f:c6:fb:59:f1:9b:59:
a0:47:5d:fd:85:bf:5c:e7:1a:cd:a7:07:87:0c:6a:
c9:54:4d:64:55:a0:f6:ec:aa:f4:f6:a3:f2:94:4c:
67:92:d0:98:fd:48:46:42:a9:78:14:54:74:97:68:
93:7f:5b:a9:55:e9:27:4e:75:52:ab:4b:a8:89:2e:
76:62:0e:49:e6:a2:f3:61:00:9b:db:a4:53:cb:cb:
82:d8:0a:5e:86:3b:76:c6:5e:ba:3c:d1:28:76:63:
cc:75:02:25:39:c3:2a:81:40:e3:6d:8e:42:0b:10:
35:9e:20:cb:3e:cf:e4:d2:78:54:a8:a0:9a:5e:eb:
8c:c8:83:8d:01:a3:38:44:bd:07:5f:3d:34:73:fb:
1b:f8:a6:cc:4a:1a:e7:7b:c5:b7:60:29:c3:3a:2b:
f0:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:CF:B1:EB:EB:1C:9D:DA:BA:09:DD:25:58:63:4F:32:12:E0:B3:DD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/307A7DF0062C11EFB6179E35017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.44.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:81:57:69:02:69:91:69:d6:c8:0c:7e:33:9b:fe:a3:0d:f4:
bb:d1:84:b7:c5:4b:38:33:9a:8b:65:a2:6c:2b:70:a1:36:37:
b4:8c:fa:fa:03:81:1d:63:23:26:fb:3f:45:af:bf:76:b1:e5:
34:d1:16:2f:9c:57:46:71:a4:ec:7b:e6:b1:2f:9a:b1:49:91:
01:40:93:7a:d1:f2:94:06:5c:62:f0:1b:c2:55:f3:0a:41:8e:
2a:a0:f9:94:df:34:75:fa:48:58:c0:a3:38:a6:a7:c2:20:ec:
e3:ae:69:e0:2e:a9:bf:48:02:af:d6:03:00:d4:3c:69:95:9e:
4b:15:96:4e:c9:d6:4a:ad:37:72:be:76:ea:0f:ad:7e:5c:33:
d0:93:74:35:50:47:6e:3d:7d:b5:65:49:b3:48:80:00:e9:69:
76:ea:b7:d6:39:0a:75:e3:3e:8c:fa:d9:d2:8c:bf:0b:04:ff:
a8:3d:d8:7c:6c:ab:f8:df:59:e4:d2:67:9c:5f:2e:71:f7:08:
0d:33:af:80:32:a3:ca:f9:a8:76:4e:06:d8:eb:75:74:99:43:
dc:67:36:2c:ab:19:b1:79:0b:17:e6:08:43:82:96:3a:d3:c8:
0c:5e:9d:67:13:d1:ae:24:a8:1e:6d:48:9d:1f:f8:f7:34:07:
08:76:6c:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:13 2024 by rpki-client on console-fra.rpki-client.org