Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/09A9C856E75611EE8FE058BC775412E6.roa
File: 09A9C856E75611EE8FE058BC775412E6.roa (raw, json)
Hash identifier: ijgVLfZFQHf0d8RAyBGRwarY00CMiI7SpiRd9Mhlq/M=
Subject key identifier: FA:BA:A5:14:83:91:50:7A:44:18:72:D5:09:13:B4:F7:0E:D4:2F:3D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A4A1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/09A9C856E75611EE8FE058BC775412E6.roa
Signing time: Thu 21 Mar 2024 07:38:41 +0000
ROA not before: Thu 21 Mar 2024 07:38:38 +0000
ROA not after: Tue 23 Apr 2024 07:38:38 +0000
asID: 44559
IP address blocks: 154.218.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42145 (0xa4a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 07:38:38 2024 GMT
Not After : Apr 23 07:38:38 2024 GMT
Subject: CN=65fbe401-cd3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:c6:ed:56:be:f2:32:28:1f:e0:d9:73:8a:00:
e6:a5:57:1a:20:47:a3:b0:3f:ce:32:8a:c6:3d:6d:
af:53:cc:ec:ba:c8:34:10:70:8f:69:0c:4c:26:34:
b3:d6:ed:1d:6e:b2:90:93:47:97:d2:c5:1e:e9:f8:
61:d3:a0:1b:92:fc:9d:2a:48:53:71:59:0b:75:e4:
14:6d:62:6d:b2:81:27:72:11:2e:5d:76:4a:10:f4:
1a:81:8c:f7:18:70:b4:6b:23:1f:05:65:1b:d1:a6:
16:ff:36:2c:1d:22:f0:b1:03:8b:aa:27:b1:69:bb:
67:1e:77:3b:38:2b:da:84:73:07:36:e4:87:08:13:
16:97:c9:17:ee:ec:7d:d0:07:0a:e0:81:2e:5e:aa:
cd:3c:25:87:99:4c:41:cd:c9:28:68:b9:c5:21:f9:
ff:73:47:52:2c:c5:7a:4d:66:76:f0:f5:35:87:af:
cf:e5:89:e0:21:a5:a6:6a:56:ad:7c:1d:49:53:b4:
7e:b9:39:03:5e:88:a0:88:0a:3b:b9:e9:07:21:14:
a0:f6:75:15:3a:1c:4d:75:5a:7e:c4:20:03:7f:e0:
73:92:78:99:5f:e3:04:60:c4:7b:12:01:75:3c:a9:
80:ea:2c:ae:ba:37:0e:ca:52:11:e0:8f:57:18:9f:
83:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:BA:A5:14:83:91:50:7A:44:18:72:D5:09:13:B4:F7:0E:D4:2F:3D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/09A9C856E75611EE8FE058BC775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.40.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:4c:7c:66:c0:e8:1a:41:bc:bb:2c:1e:b8:33:27:a6:82:c7:
ef:f8:7d:e2:75:7c:b0:31:9f:c1:4c:95:8a:57:57:f5:45:4a:
2b:67:d3:39:ef:3a:8b:81:67:68:06:dc:51:f1:20:5b:35:fe:
d2:8b:d1:79:2a:df:f4:4c:f8:e0:fd:89:2e:27:fa:24:7e:f3:
85:7e:93:1d:69:e2:ab:93:cd:c8:cf:44:5b:dd:4d:f9:90:d3:
3c:73:9f:89:20:3f:43:0b:cb:f8:42:12:f8:54:8a:00:d7:3f:
b8:c0:09:51:32:b3:ce:bd:de:2a:15:cd:07:16:69:6f:a9:99:
b6:99:42:8e:69:11:30:48:dd:13:a4:cc:3a:9c:ae:69:93:e1:
82:df:fa:80:d6:90:70:66:b4:87:8e:2f:e3:59:43:df:e6:6b:
97:b5:87:ed:15:30:83:b4:48:1e:a1:31:b5:d2:c4:c3:ca:d8:
6b:d2:5d:09:3d:14:c8:33:a6:70:14:80:e0:f5:4c:f0:ab:2a:
46:49:74:d9:db:f0:9c:a3:23:fb:a5:c1:b7:d7:bd:b7:bd:69:
6b:3f:59:4c:90:58:5f:f9:04:b2:e1:50:8d:64:c9:db:62:7a:
9c:9a:1b:74:c8:7a:58:c2:77:dd:f6:7e:8f:ca:c2:22:f2:1e:
58:d9:51:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:13 2024 by rpki-client on console-ams.rpki-client.org