Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/094492D6E77B11EEAC850C5F775412E6.roa
File: 094492D6E77B11EEAC850C5F775412E6.roa (raw, json)
Hash identifier: sJ4xh7wEGmFjsACnmD4316zc2cIXQ7pOjhGZp8zHOgc=
Subject key identifier: 17:A2:EF:DD:FF:06:D8:DA:3C:C1:6E:5E:B8:CA:CD:CA:71:7E:9B:DF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A547
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/094492D6E77B11EEAC850C5F775412E6.roa
Signing time: Thu 21 Mar 2024 12:03:32 +0000
ROA not before: Thu 21 Mar 2024 12:03:27 +0000
ROA not after: Tue 23 Apr 2024 12:03:27 +0000
asID: 44559
IP address blocks: 154.210.121.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42311 (0xa547)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 12:03:27 2024 GMT
Not After : Apr 23 12:03:27 2024 GMT
Subject: CN=65fc2214-4f0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:66:0a:19:b6:57:e9:54:a1:c3:aa:5a:4d:ec:
0c:43:4d:41:a3:3f:03:ab:ea:be:91:ea:1f:32:d9:
94:3d:79:ca:cb:6b:63:53:8c:66:1f:b3:72:e1:e9:
f3:12:a6:41:a1:d0:91:81:3c:08:ee:b6:e4:68:09:
ef:f0:4d:48:8e:c3:e8:a8:50:94:3c:0c:0e:d6:e7:
44:fa:76:41:2c:30:4b:44:aa:a7:43:a7:ec:a6:4f:
64:79:e7:0a:7f:4a:e5:74:0b:98:49:de:45:0d:4c:
2b:4a:be:38:6c:a7:97:5d:ca:dd:54:94:53:32:a4:
c6:a9:7b:31:83:1f:5b:7e:c9:39:92:2e:d0:83:bb:
8b:48:fa:e3:60:72:64:df:94:1e:14:60:71:bf:4a:
65:da:73:09:32:27:a4:61:e6:81:46:20:46:a4:f0:
af:ad:6e:a1:d4:3e:33:3b:33:c8:b4:0f:64:22:fa:
e9:a9:7d:f6:ef:e9:c2:04:03:8a:2d:7a:96:d5:13:
75:de:6e:12:e6:d9:b6:5a:31:e5:10:0b:a2:8d:b0:
99:da:21:a9:61:7c:93:6e:7d:cc:c1:16:96:b3:5e:
9f:c0:06:8a:ba:94:a8:15:ae:bb:be:5c:e3:24:23:
b9:e8:a9:c3:f8:dc:c4:b7:52:61:8d:24:aa:6b:e5:
ac:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:A2:EF:DD:FF:06:D8:DA:3C:C1:6E:5E:B8:CA:CD:CA:71:7E:9B:DF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/094492D6E77B11EEAC850C5F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.121.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:86:d5:5e:fe:ed:c5:2e:5e:32:9d:01:28:07:bf:42:70:7c:
75:f5:09:9c:47:d8:17:4e:c8:68:1f:d8:fa:5f:95:93:53:d0:
0c:a5:57:5a:9e:a3:06:93:d6:bc:f3:6f:bc:d6:3b:9b:52:d9:
9b:1b:37:ae:dc:51:b7:5f:a7:fa:f2:58:2a:a4:7f:0d:b5:98:
15:31:db:ff:50:96:da:03:e6:8f:9c:2c:9e:f0:64:6c:bb:69:
cb:03:a7:bc:2c:f0:39:de:b6:59:4a:c7:3e:6c:84:ce:3c:a9:
06:f0:38:0c:b6:6b:bf:0f:7a:bc:5c:61:d1:44:6c:17:48:c9:
41:45:a8:a9:ed:87:c3:8a:3f:bf:ba:71:23:5c:42:6c:68:e2:
46:64:ae:86:cb:f7:c4:77:9d:34:4a:9b:f3:d5:4b:2f:42:4f:
8a:32:50:51:6f:a2:35:88:e3:44:6d:c9:c9:c7:37:66:81:e6:
1b:4d:24:7b:30:a4:b9:53:5f:3a:19:7f:41:84:89:3e:99:58:
f5:01:ed:bb:24:1f:9a:8c:5e:83:6c:38:84:f9:86:92:e2:95:
f5:a5:cd:36:bb:9c:e1:23:88:95:e2:8b:0a:90:bb:d5:50:7c:
21:90:9d:d9:ac:d5:92:36:75:3c:49:00:21:18:cc:ad:32:a0:
4b:b0:d8:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:12 2024 by rpki-client on console-fra.rpki-client.org