Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/106BA87AE75C11EE936A086C775412E6.roa
File: 106BA87AE75C11EE936A086C775412E6.roa (raw, json)
Hash identifier: 90cWLfLymxLObONVHv5+/aq6kSrlaVt4xKM8zhb6IH4=
Subject key identifier: C1:6D:71:F1:B3:89:12:7D:C1:D8:7F:35:87:92:9B:26:B7:47:4F:BA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A4DB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/106BA87AE75C11EE936A086C775412E6.roa
Signing time: Thu 21 Mar 2024 08:21:49 +0000
ROA not before: Thu 21 Mar 2024 08:21:46 +0000
ROA not after: Tue 23 Apr 2024 08:21:46 +0000
asID: 44559
IP address blocks: 154.211.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42203 (0xa4db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 08:21:46 2024 GMT
Not After : Apr 23 08:21:46 2024 GMT
Subject: CN=65fbee1d-3d2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fc:6c:bf:8a:59:23:1f:bf:a7:33:ef:d2:a3:
f7:8c:2d:d5:bb:e6:ed:b0:23:69:5b:a0:96:3e:d0:
a3:3c:c9:73:35:63:36:5b:a1:19:f7:14:c6:0c:f6:
46:63:59:50:2d:70:5e:8b:5f:0e:7d:1c:78:f5:cf:
f5:d4:51:6d:87:5a:d1:0b:15:6e:9b:1d:eb:65:f8:
ff:c7:c7:1e:9a:16:1e:13:16:f2:4e:1e:70:a3:0b:
26:28:46:ab:1f:93:3c:05:e9:e6:ff:0f:12:f8:6d:
25:5f:ce:14:9f:66:fd:54:9e:e3:50:86:d2:b5:60:
d7:7b:96:85:c2:f4:9d:c8:31:94:e1:5c:5e:19:23:
b3:5e:7c:bf:90:3f:51:45:c9:0a:93:f2:1f:e2:05:
1b:23:27:b8:cf:56:b3:3d:c5:3f:51:65:63:33:a6:
3d:01:29:55:ba:7d:c2:a5:43:25:42:70:6a:5f:5d:
7b:81:bc:2e:fa:8e:a7:40:cf:ea:ae:0f:7d:e9:d4:
dd:73:72:25:1f:f6:93:59:f1:2c:0e:3e:44:b9:ca:
6b:70:36:cb:90:83:51:0f:38:16:b9:86:1c:35:f8:
f0:01:c5:bc:38:16:d7:46:c5:51:03:18:6f:6d:42:
c7:11:51:34:31:c5:d7:b0:9b:e1:0a:f3:93:1a:7b:
a4:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:6D:71:F1:B3:89:12:7D:C1:D8:7F:35:87:92:9B:26:B7:47:4F:BA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/106BA87AE75C11EE936A086C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.43.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:78:30:a2:b3:bc:19:4c:63:c6:e0:18:b4:54:6f:c7:a8:d4:
fa:32:79:b0:08:72:00:1d:64:a9:31:9c:4c:f2:ea:95:05:25:
0a:28:b0:63:76:57:8e:cf:89:79:34:71:24:b6:d0:88:84:2f:
6e:d1:7f:12:1f:9e:9b:ec:bf:38:a2:4d:6a:57:b0:84:d0:f3:
cf:88:db:d2:28:f5:fe:34:d5:21:43:02:b1:c1:de:19:33:97:
9c:a7:25:79:59:a2:68:59:ce:0c:01:32:c6:22:c5:fc:a4:03:
c2:4e:53:b6:f4:65:dd:e1:f7:53:e1:29:c4:5f:f5:43:a8:8d:
77:01:6c:cf:94:7d:35:82:e9:24:a3:0f:04:af:41:c8:33:e3:
e9:4f:33:0e:84:42:af:bf:70:a3:08:1d:40:80:98:bb:ce:8b:
63:f9:44:8b:69:18:8d:c8:6e:b3:43:0e:ff:89:00:ae:78:5e:
24:1a:af:7a:c4:ef:4f:1b:13:28:19:a9:9b:8b:0b:b2:8c:d6:
2a:02:5d:dd:fa:c1:84:96:95:c5:54:70:9c:18:4c:a3:bc:d8:
5f:0c:78:9d:c8:81:da:72:d4:fc:d9:13:0c:85:d0:04:8a:70:
e3:25:a0:68:af:46:de:03:2a:18:f6:a6:83:8f:2b:98:55:e2:
f1:3d:ec:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:13 2024 by rpki-client on console-fra.rpki-client.org