Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0A482A86E5C711EE829ED48D775412E6.roa
File: 0A482A86E5C711EE829ED48D775412E6.roa (raw, json)
Hash identifier: n40Mn3Ci4zVslkjB0Zi6NVkyIGnjz3f8QtomZMK3FOU=
Subject key identifier: EB:49:81:F3:64:95:73:17:0E:B7:17:F1:FF:97:FC:0D:A7:64:4B:1B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A316
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0A482A86E5C711EE829ED48D775412E6.roa
Signing time: Tue 19 Mar 2024 08:02:33 +0000
ROA not before: Tue 19 Mar 2024 08:02:27 +0000
ROA not after: Mon 22 Apr 2024 08:02:27 +0000
asID: 150698
IP address blocks: 154.197.119.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 22 Apr 2024 08:02:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41750 (0xa316)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 19 08:02:27 2024 GMT
Not After : Apr 22 08:02:27 2024 GMT
Subject: CN=65f94699-153c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:c7:16:49:f8:35:75:af:b2:6b:45:97:58:ad:
e3:b2:e8:71:ec:da:ae:63:27:6e:3b:78:32:55:a6:
cc:79:f6:5c:65:6a:a2:b5:c8:31:3d:ad:03:94:96:
75:28:56:c6:f7:cc:25:63:6e:4d:f1:ee:49:07:fd:
1a:a1:50:44:c7:2d:e7:92:1f:4f:f7:29:76:16:24:
4d:28:5c:39:94:0f:b3:64:62:e4:f1:e5:a4:d3:66:
e6:e9:4d:ee:03:08:e2:e1:0c:57:ae:82:a0:91:cc:
e1:80:8b:a6:11:4c:44:50:6b:34:28:2e:64:6a:fc:
d8:e6:6d:54:20:27:5e:3d:57:6b:26:ba:04:dd:b0:
1f:cb:ad:31:f2:20:d4:6d:3e:03:de:14:33:35:c7:
16:01:08:d8:4c:45:c0:87:da:6d:68:b6:0d:f0:dc:
fc:88:35:b1:4f:e8:f0:ea:9c:bf:e1:12:8d:b6:52:
6a:48:be:e1:d7:1a:d2:e5:89:8b:49:e2:ab:e7:97:
2e:a0:1c:0d:57:6f:43:be:82:4b:00:28:12:9f:7a:
3b:2e:88:a4:1d:71:a3:ec:a7:d9:74:ec:68:2f:0e:
f3:e8:ab:87:f5:67:b0:72:4f:69:38:4c:09:b9:9d:
e9:5b:ea:c6:00:b0:c6:c3:9a:81:64:98:f4:10:6f:
16:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:49:81:F3:64:95:73:17:0E:B7:17:F1:FF:97:FC:0D:A7:64:4B:1B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0A482A86E5C711EE829ED48D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.119.0/24
Signature Algorithm: sha256WithRSAEncryption
63:05:20:bd:25:26:71:f5:40:c4:7b:bb:0a:d4:7f:72:0d:e6:
06:ed:a0:41:f4:d9:7b:16:2e:9f:ac:44:60:95:70:5b:54:5b:
ad:e8:c8:02:27:a9:84:40:0a:ce:93:f9:be:c3:c8:69:f8:21:
93:9f:f2:8b:97:fa:37:09:48:34:98:55:8b:36:5e:f8:5a:32:
59:a4:91:5a:e3:86:b5:d5:4e:8c:d8:80:4a:d3:ae:e0:97:a2:
59:5e:c8:37:e9:81:80:7b:d6:26:92:74:81:5e:cb:d3:ba:89:
1f:7d:67:96:a1:f4:f5:d9:82:e4:7a:0a:01:df:69:00:ac:9c:
64:54:01:ea:8f:d6:5c:b5:a3:f4:95:15:ad:bf:77:52:f0:81:
2c:51:7f:76:f0:85:c1:36:a6:58:f9:0b:f5:64:26:5f:c0:a7:
cb:90:70:c7:f3:ee:7e:ce:d6:99:fd:98:f2:e9:a3:3d:ca:66:
eb:47:fc:e1:31:d6:74:21:f3:a8:22:7c:a0:e2:16:d7:fb:67:
21:6e:77:61:af:73:fb:7e:49:da:5e:2d:8b:84:b6:ab:e6:02:
34:b5:03:3a:d5:ff:9b:61:17:5b:9f:7c:9b:05:33:e9:01:d3:
da:58:ba:d1:cb:78:6a:b2:fd:67:55:f9:21:f5:6a:96:85:13:
f5:14:5f:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:12 2024 by rpki-client on console-fra.rpki-client.org