Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C65595AE73F11EE8D854089775412E6.roa
File: 0C65595AE73F11EE8D854089775412E6.roa (raw, json)
Hash identifier: px72pxV82RN4vQNfvoDei46KoAmJ8SMv4JFO4qnv/+4=
Subject key identifier: CD:9E:51:89:D0:9D:ED:A9:A6:4A:41:22:4F:DD:21:76:73:37:3F:9B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A3C2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C65595AE73F11EE8D854089775412E6.roa
Signing time: Thu 21 Mar 2024 04:54:07 +0000
ROA not before: Thu 21 Mar 2024 04:54:04 +0000
ROA not after: Tue 23 Apr 2024 04:54:04 +0000
asID: 44559
IP address blocks: 154.221.216.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41922 (0xa3c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 04:54:04 2024 GMT
Not After : Apr 23 04:54:04 2024 GMT
Subject: CN=65fbbd6f-c4a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9d:62:f1:5d:93:bd:83:8b:90:94:0e:ec:bf:
19:54:7f:52:37:8e:93:3b:e4:d6:0d:86:d8:69:57:
e8:1a:a3:19:5a:f3:34:da:06:ab:03:fb:2b:97:56:
32:a9:52:8f:84:8e:98:18:45:fa:47:c6:77:6a:3a:
04:d1:fe:02:f8:ca:7b:b9:b8:3c:9b:59:1f:5a:d9:
42:78:3b:60:d1:d8:f0:2b:8b:a9:79:c3:9b:c1:76:
6d:8a:2c:a8:a2:a3:57:dc:82:86:34:16:a6:a3:2e:
be:1d:f7:33:c5:41:79:11:7d:87:51:ad:85:f8:49:
a7:83:6b:41:af:d1:f6:12:2e:09:e4:23:66:35:42:
b0:ae:c7:2a:01:42:0e:7f:88:0b:17:ba:dc:9c:9c:
7e:55:9d:ee:24:ff:a0:0b:bb:f6:12:88:b1:5c:c7:
a1:e6:19:b7:33:00:f6:2d:0d:75:f5:af:54:ea:b3:
98:87:b9:9c:96:12:11:0d:72:7a:ae:40:b6:4e:77:
57:ff:ff:7c:8a:3d:ab:fc:5f:f1:e0:d7:75:90:8b:
27:d8:bd:fc:0a:81:9e:7f:d3:de:b8:a3:54:92:f7:
61:6e:6b:d9:d3:d0:e5:fa:19:27:32:e1:ab:17:24:
97:5a:84:6b:85:76:8a:d8:9e:5b:10:85:56:ed:aa:
b4:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:9E:51:89:D0:9D:ED:A9:A6:4A:41:22:4F:DD:21:76:73:37:3F:9B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C65595AE73F11EE8D854089775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.216.0/24
Signature Algorithm: sha256WithRSAEncryption
59:51:56:f9:7d:9d:9f:25:29:14:0b:fd:98:f4:0d:04:20:fa:
b1:7e:63:13:20:6f:4a:1d:04:64:3d:3b:d6:bb:91:da:07:67:
09:e3:41:c1:73:37:e9:2d:39:52:7d:e7:e3:95:67:0b:f4:64:
42:f3:4e:ad:f6:24:ea:ad:5a:a8:e9:70:a6:a2:13:3f:9d:6d:
dd:0e:57:8a:90:af:db:ef:6e:4e:9d:21:52:d4:22:0f:90:bb:
87:2d:d7:8e:b9:fe:ef:a1:71:3e:72:2a:98:06:82:e6:05:e4:
8b:e0:82:c5:9e:42:f9:11:03:13:bb:b8:01:a5:fd:5c:ea:f7:
e9:07:a3:a9:80:a6:9d:7e:ac:34:fb:7d:67:46:f4:33:5c:55:
d3:e3:4b:e7:b0:ee:2f:69:fb:2d:8b:1f:4c:e7:8b:50:aa:72:
07:61:ad:85:9f:31:ba:cf:61:9f:06:da:82:8a:d9:4b:ee:62:
d7:8a:9b:a8:88:e8:13:41:9b:5e:1d:e2:f6:de:3c:d8:7c:9c:
38:2c:75:b8:cc:58:a3:88:b9:28:c8:0b:8f:49:1c:40:a9:e8:
ce:90:d1:4a:39:e3:9c:7b:61:98:06:60:0b:82:0a:fe:24:31:
b4:50:f7:fd:04:9c:b0:22:18:a1:84:e2:c2:d1:d4:3d:e1:6d:
33:f4:d7:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:12 2024 by rpki-client on console-fra.rpki-client.org