Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/005A734AE76011EEBBBA798C775412E6.roa
File: 005A734AE76011EEBBBA798C775412E6.roa (raw, json)
Hash identifier: 60Adca1dG5lAtZhKxiajqy6q6O7nxf+eSnFFp4PeLEk=
Subject key identifier: C5:73:49:CE:5A:44:49:5B:9F:F2:4A:DC:7C:7B:6B:AF:8E:5D:D0:5C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A501
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/005A734AE76011EEBBBA798C775412E6.roa
Signing time: Thu 21 Mar 2024 08:50:00 +0000
ROA not before: Thu 21 Mar 2024 08:49:57 +0000
ROA not after: Tue 23 Apr 2024 08:49:57 +0000
asID: 44559
IP address blocks: 154.222.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42241 (0xa501)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 08:49:57 2024 GMT
Not After : Apr 23 08:49:57 2024 GMT
Subject: CN=65fbf4b8-73a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:50:cd:fc:1b:a6:aa:6a:a3:4e:8d:f6:9d:dc:
e3:e5:7d:a8:14:b7:51:a2:12:eb:22:ac:34:ab:d8:
55:d4:ea:54:44:a1:88:50:3f:22:7e:91:ec:a8:7d:
e2:f5:58:a4:31:38:8e:a8:5b:c3:6a:e8:e8:82:de:
12:d3:68:14:0b:9b:22:24:4f:43:8a:b5:b3:e0:9e:
44:ed:7c:13:55:97:d2:3b:fa:30:93:c5:97:79:d6:
6f:89:25:32:bd:e3:8c:ee:0d:95:87:22:3d:98:43:
f8:7a:09:86:0f:0b:9b:f8:dc:a9:c0:97:10:c9:cc:
e0:c7:68:01:cb:cf:4d:94:ed:fe:c9:b5:da:24:43:
fc:30:a0:0d:11:cc:41:3e:a1:88:58:6f:b5:02:f1:
1f:e3:96:8d:cc:19:29:67:62:59:91:ee:3b:51:6d:
fd:27:19:ea:7b:40:2f:c6:5d:5a:4f:98:d9:60:54:
af:7d:cb:be:a0:09:2c:49:52:a1:c7:43:06:e0:ad:
b3:3d:00:22:f1:2a:44:c7:67:80:a6:4f:c0:56:54:
4b:c7:7f:f9:a2:d2:51:7f:c3:6f:5f:00:c2:fe:39:
df:80:b4:e5:b7:fa:47:86:0f:82:6d:8f:5d:1d:7d:
c2:f6:2e:39:98:6f:33:a6:10:8d:10:97:32:2d:b3:
30:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:73:49:CE:5A:44:49:5B:9F:F2:4A:DC:7C:7B:6B:AF:8E:5D:D0:5C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/005A734AE76011EEBBBA798C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.24.0/24
Signature Algorithm: sha256WithRSAEncryption
81:c8:87:0e:2f:81:7d:7a:c1:9f:71:89:e3:47:5c:e1:db:5f:
ce:d2:b0:84:b1:c1:55:5f:5f:3e:4d:18:22:e3:e7:73:db:54:
2b:21:5a:09:27:40:d1:e5:0e:b2:39:20:7d:ce:74:70:04:2f:
29:8d:3a:e3:6a:8b:7d:5b:33:a8:5e:22:ef:ce:c5:05:7f:d8:
ff:dd:b5:b2:41:c0:70:e1:0a:c0:c7:ff:cd:5c:99:dc:c9:dc:
2a:7a:9b:91:7b:56:ef:14:af:f5:b2:db:a6:d1:cd:e8:8a:3a:
9b:79:6c:f2:e9:a9:86:00:47:31:28:07:3e:02:1b:97:f6:69:
28:40:ae:fc:54:3a:7f:0a:08:62:a5:a8:ed:81:a6:60:5f:2e:
6b:d5:09:06:e3:88:fe:f4:f2:51:48:c3:c4:8f:e0:f1:f3:cf:
6f:4c:35:f9:e4:bc:91:23:c1:63:81:ab:51:ca:ee:4b:9a:31:
4f:95:cf:35:4a:71:93:ec:4e:f6:1d:e2:87:82:c7:d0:3d:f1:
e6:fc:c6:57:3a:79:fa:e7:3d:5a:06:67:8f:41:ff:33:8d:a5:
ba:14:18:fe:87:70:38:bd:8e:f1:1c:9a:59:0b:09:e5:a9:c2:
95:9a:46:04:69:b2:f7:31:b3:ca:ba:4c:a6:fb:c7:41:67:8b:
a5:76:b4:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:12 2024 by rpki-client on console-fra.rpki-client.org