Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/11FD1B96E73A11EE901A6C62775412E6.roa
File: 11FD1B96E73A11EE901A6C62775412E6.roa (raw, json)
Hash identifier: B/xYQWl4WZr9ETyx5Holj+HvidFTAwzo8ym4tI1qvCk=
Subject key identifier: 35:2B:EC:8D:6E:97:95:ED:74:30:F4:38:67:72:2F:8A:C2:F4:F7:0A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A390
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/11FD1B96E73A11EE901A6C62775412E6.roa
Signing time: Thu 21 Mar 2024 04:18:29 +0000
ROA not before: Thu 21 Mar 2024 04:18:26 +0000
ROA not after: Tue 23 Apr 2024 04:18:26 +0000
asID: 44559
IP address blocks: 154.221.241.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41872 (0xa390)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 04:18:26 2024 GMT
Not After : Apr 23 04:18:26 2024 GMT
Subject: CN=65fbb515-c42f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:5d:f8:e7:b8:cb:cc:40:be:e2:0f:49:52:e7:
a3:49:8e:0c:ae:ae:e4:ad:d8:14:b6:3a:4e:1e:60:
cc:c3:34:c3:23:68:c6:a1:8a:0c:b5:7a:fa:b0:b7:
62:7b:98:61:c8:e2:ec:03:a2:62:d1:2b:94:f0:46:
07:a6:3f:9e:1d:23:db:4e:01:8f:3c:fc:45:3b:63:
cf:07:fb:c6:ea:c0:4b:4b:86:1d:ae:da:f5:d7:22:
7d:73:32:3d:43:ff:09:68:c1:53:57:90:3e:f9:ef:
b0:03:76:96:08:b5:a6:5d:91:cc:5e:79:81:a5:e3:
8a:0c:93:6b:25:13:a2:1e:2d:23:e1:da:c4:0b:09:
9e:01:e3:78:e6:a6:00:3a:1e:8c:13:e1:19:ef:6d:
1d:71:de:89:1a:62:b7:c7:f6:c3:04:a3:7b:a4:ba:
03:d1:fb:98:85:f9:79:d0:74:4b:8f:c5:9f:f7:bc:
3a:14:ec:e5:89:e9:bb:f0:82:e5:3c:d9:60:ce:b3:
e1:cf:4e:ea:84:11:93:75:13:80:a7:ea:48:7a:c6:
33:7b:09:76:42:f8:71:6a:e5:a0:59:aa:5d:a4:dd:
49:31:3e:e7:cb:65:70:ee:ad:a4:67:68:35:44:a9:
e2:89:38:7d:1e:8c:4b:07:1a:57:99:7f:62:92:94:
da:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:2B:EC:8D:6E:97:95:ED:74:30:F4:38:67:72:2F:8A:C2:F4:F7:0A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/11FD1B96E73A11EE901A6C62775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.241.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:07:44:2d:be:6b:e8:0e:5c:f3:38:98:70:e7:14:39:61:50:
7e:20:d7:29:ee:7d:51:ad:ac:b0:7b:7a:de:8f:d4:f7:7b:10:
b6:13:ce:74:d8:eb:58:79:03:94:23:4a:4a:9a:2a:9e:96:f3:
a9:bf:36:24:d5:2c:c8:fc:b9:e1:68:ce:6f:b8:f4:2d:98:d8:
30:73:16:b1:42:43:c7:9a:7b:74:17:54:b5:19:87:eb:9e:d9:
b4:d7:f9:31:61:f4:7c:aa:93:0f:27:e2:6c:bb:a3:45:05:52:
ce:a7:a2:c3:49:72:0f:53:61:4b:ba:ec:1d:84:23:06:b4:47:
df:0e:3e:21:2c:78:67:2e:04:f0:83:1a:4d:b5:4e:2c:b2:18:
ec:8a:b5:13:28:12:4e:91:eb:89:6d:38:c9:1f:9a:41:76:01:
98:30:2d:7a:3a:b8:1d:66:79:99:cc:43:37:bd:67:52:5e:fe:
32:08:90:80:00:93:d9:34:12:84:e7:ff:29:d7:54:e8:5b:02:
42:c2:df:8d:d2:bf:a2:07:56:1e:06:53:34:94:ca:fe:a2:47:
d0:8f:2e:59:a2:ee:f3:67:8f:ca:4f:f6:2d:7f:dd:f3:d6:de:
1e:b9:87:fe:53:b1:be:4d:20:cb:b2:d5:8e:83:a9:bc:63:5c:
83:00:ed:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:14 2024 by rpki-client on console-ams.rpki-client.org