Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A447719CF47B11EEA2911D9B775412E6.roa
File: A447719CF47B11EEA2911D9B775412E6.roa (raw, json)
Hash identifier: 2VDiduwjlPgxUIinGwfWFbLPgJO/FcCW0qpxRVVDjhA=
Subject key identifier: 0B:F3:24:D4:D3:6E:E6:B8:31:73:C2:EE:C4:0D:A2:C3:D1:D9:0E:0D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A97C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A447719CF47B11EEA2911D9B775412E6.roa
Signing time: Sun 07 Apr 2024 01:10:37 +0000
ROA not before: Sun 07 Apr 2024 01:10:33 +0000
ROA not after: Thu 09 May 2024 01:10:33 +0000
asID: 174
IP address blocks: 154.197.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:58:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43388 (0xa97c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 01:10:33 2024 GMT
Not After : May 9 01:10:33 2024 GMT
Subject: CN=6611f28d-21cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:32:86:7e:c8:3d:6b:e2:51:07:08:46:f9:09:
88:7d:44:20:b6:99:9a:09:df:95:25:cb:76:e1:d8:
92:61:25:d1:59:7a:ec:22:18:87:f8:ba:eb:a7:af:
cc:ce:1a:2d:a2:af:e8:e8:35:09:3d:dd:7e:37:74:
ef:ce:ad:fe:fb:45:52:57:69:88:f7:25:70:0b:d1:
60:d7:81:28:d1:39:ce:ee:3c:4a:82:48:ab:f2:22:
cb:10:71:8b:5c:10:9f:b8:81:a0:ab:af:54:19:b3:
bf:cd:a0:c3:d7:25:f0:2a:3e:b9:ef:d7:2e:f8:e7:
8c:96:c7:ee:21:8d:c8:da:24:4e:60:78:80:b1:a7:
07:53:6e:e3:8c:d4:5e:8c:15:f1:02:9c:40:40:a4:
0a:bd:d9:75:1b:55:df:5d:71:3b:3c:ee:b8:bc:ee:
d7:f1:c4:66:d5:ed:1c:44:10:b5:47:7a:33:be:ee:
2b:fd:a4:9d:e7:49:81:a7:ac:5f:ef:53:33:38:cf:
bc:54:cd:4a:69:10:c8:1b:33:af:25:6d:0c:93:c3:
47:1d:01:6a:b4:ee:09:2a:bb:d7:ac:98:47:83:e4:
57:10:0a:53:48:e8:df:c5:21:7e:00:99:be:89:e9:
1b:08:87:51:db:8f:9b:cb:6f:b3:8f:c5:2a:99:fd:
0e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:F3:24:D4:D3:6E:E6:B8:31:73:C2:EE:C4:0D:A2:C3:D1:D9:0E:0D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A447719CF47B11EEA2911D9B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.78.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:83:0e:57:0c:76:e1:40:5d:13:6a:ac:19:e8:b2:40:9c:d0:
ec:f1:21:5a:21:f4:c6:2c:b6:08:45:31:44:84:a1:3d:78:7c:
f9:70:96:c3:ac:0f:34:ee:3b:eb:3c:bf:f0:e9:d2:f2:95:6f:
1f:ff:3c:99:20:4c:d3:d1:5e:64:e2:82:92:f4:f9:8c:57:da:
c4:e6:36:08:34:74:7f:67:67:1c:ae:fa:8c:ca:19:b1:51:14:
b6:b2:43:69:a7:41:1f:b2:a5:24:92:dc:99:0b:fd:e6:6f:97:
a9:2f:10:89:1d:9e:7e:75:53:b4:f5:35:fe:aa:6f:f2:bb:b8:
da:a8:a2:9a:dd:67:8d:49:3c:8e:a6:83:fa:b8:53:53:d3:e2:
53:5d:49:1e:73:ec:f2:91:55:af:9f:e1:3c:4d:d1:a5:96:e4:
a8:10:f7:25:4e:9d:95:c9:5e:cd:e8:87:a3:a5:3f:d1:42:45:
0b:8b:b6:fc:30:73:7c:09:46:e7:f3:72:05:c3:fd:40:a5:47:
5d:b8:80:98:3c:7b:c7:22:de:81:e0:b9:1a:a6:b7:68:c3:79:
59:ce:26:8c:96:bd:13:58:a5:b2:bb:d4:a1:09:76:ba:14:84:
c4:e6:b0:11:e4:24:65:f0:4a:58:58:d9:b5:4c:69:c4:3f:ba:
ed:81:02:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 14:34:03 2024 by rpki-client on console-fra.rpki-client.org