Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA62D13A060F11EFA52BB652017001B1.roa
File: EA62D13A060F11EFA52BB652017001B1.roa (raw, json)
Hash identifier: L0ON75F2PD3XcHpBnIuDJl8qnnfS1Sll+NOXsgY0oKc=
Subject key identifier: F3:70:26:F1:95:B9:04:FD:09:B0:65:1E:36:B8:C2:A5:50:38:AC:94
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B222
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA62D13A060F11EFA52BB652017001B1.roa
Signing time: Mon 29 Apr 2024 10:04:50 +0000
ROA not before: Mon 29 Apr 2024 10:04:46 +0000
ROA not after: Fri 07 Jun 2024 10:04:46 +0000
asID: 138915
IP address blocks: 154.223.21.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45602 (0xb222)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 10:04:46 2024 GMT
Not After : Jun 7 10:04:46 2024 GMT
Subject: CN=662f70c2-3771
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e3:0a:3f:25:2c:ee:c2:a0:75:c9:d9:2c:3b:
dc:2e:06:64:50:dc:3e:a6:6d:cb:81:99:12:af:ce:
ad:52:0e:34:4b:c2:c5:e9:fc:e4:fa:23:8d:8b:31:
1d:ba:66:f2:cd:5a:2d:cc:fb:f5:6d:ef:ec:d3:b2:
97:79:bd:a8:c1:40:5e:2a:bd:c1:81:2e:5b:cf:6c:
7d:7c:4f:a5:01:bf:43:27:4f:79:72:30:d6:a7:66:
0a:96:a4:55:56:dd:d0:c5:b1:4f:07:67:84:f6:8b:
34:8e:72:7d:0b:29:22:d9:7f:7f:77:ca:0c:d8:ce:
fd:c9:b6:95:bc:76:20:64:e4:9e:ba:76:80:4c:87:
c2:56:59:04:c8:e2:6e:1c:1d:9c:21:26:55:96:1d:
b6:28:8b:71:11:54:92:da:d1:6a:c6:06:cf:3b:08:
46:4c:b3:97:58:5e:73:a8:c7:4b:5b:c9:16:8a:d6:
7f:74:3e:9b:25:a4:35:49:7c:76:f9:ba:20:a6:f0:
8e:e7:43:4c:c4:ae:09:01:88:75:fc:a0:24:81:7c:
08:91:18:e7:1b:d1:c8:66:a0:9b:aa:e0:5c:74:70:
f9:c2:23:23:8a:0d:99:4b:15:4d:8d:34:ea:94:3a:
c9:66:b7:77:11:f8:0c:fe:79:52:c8:5b:23:17:14:
a4:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:70:26:F1:95:B9:04:FD:09:B0:65:1E:36:B8:C2:A5:50:38:AC:94
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA62D13A060F11EFA52BB652017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.21.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:f8:ea:d3:df:a0:fe:e7:81:44:fd:61:b0:d6:dd:3f:3d:a1:
a7:1b:3b:80:c5:e0:8e:03:b0:2d:f1:5e:26:06:64:b7:0b:30:
a4:5e:6d:b3:f8:18:1e:d8:64:bc:ee:7e:a3:e5:fa:32:f5:87:
d0:b3:3e:4e:0e:0a:d9:13:ea:94:99:15:d4:bf:a0:f7:68:ad:
d4:c9:61:5c:7f:93:f9:0b:fa:b9:5c:e5:0c:06:35:6f:20:41:
01:0b:1e:f8:c6:e5:75:c2:84:f9:5b:f8:db:46:36:57:a2:5f:
b3:fd:e4:a7:a0:ba:53:1a:d2:d8:79:fa:0e:4a:de:89:91:1c:
dd:2f:5d:63:a6:f5:c2:0f:82:53:fe:df:05:14:70:96:16:d6:
2d:3b:45:18:c9:5a:3a:c5:22:53:cb:d5:19:d5:bf:c7:45:d5:
43:da:02:d0:48:0f:a8:9c:6d:53:96:87:65:fa:35:95:ec:f1:
e0:43:8b:df:20:9b:cc:93:38:ae:fa:d8:cb:d7:4f:32:d7:3f:
4c:17:94:7e:35:25:c8:26:67:c4:fc:50:3a:70:91:c7:45:96:
6c:4e:15:a9:ab:eb:55:6a:4d:08:57:4e:f7:00:27:a1:75:cf:
c0:bd:5f:d7:42:e0:d3:6a:15:36:0a:20:4b:24:bf:33:98:a1:
3f:a4:0a:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:25 2024 by rpki-client on console-fra.rpki-client.org