Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1AE64290E73611EEB823E1C2775412E6.roa
File: 1AE64290E73611EEB823E1C2775412E6.roa (raw, json)
Hash identifier: pd72pMUXtddkIzkXDdYlO6pSEbwPH8f7SzUFhFDb+2k=
Subject key identifier: 11:CC:34:E9:1D:3D:D5:82:E1:F3:9D:2D:A1:8A:9F:46:53:C5:C0:22
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A368
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1AE64290E73611EEB823E1C2775412E6.roa
Signing time: Thu 21 Mar 2024 03:50:06 +0000
ROA not before: Thu 21 Mar 2024 03:50:03 +0000
ROA not after: Tue 23 Apr 2024 03:50:03 +0000
asID: 44559
IP address blocks: 154.207.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41832 (0xa368)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 03:50:03 2024 GMT
Not After : Apr 23 03:50:03 2024 GMT
Subject: CN=65fbae6e-b298
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:a0:72:0a:1f:03:6c:15:19:59:20:90:f2:8b:
d5:73:6a:a8:3b:88:75:ec:2c:9d:2d:ef:8b:c3:19:
12:d5:2b:18:63:e3:e8:ae:00:eb:43:47:ef:9e:9b:
23:9d:c8:00:33:d4:96:42:73:c2:6b:7a:2c:63:c5:
43:c8:7b:5f:37:cc:4a:55:2e:7d:e0:e5:c3:e3:3d:
61:b7:e6:57:d7:bb:ad:21:46:6e:8d:d6:d0:3b:bc:
26:ae:0b:5a:b6:bc:60:17:3c:9f:e8:64:17:e8:47:
7d:62:ac:3d:57:f5:e6:9a:3d:df:88:b2:6f:36:d3:
f4:41:db:be:55:2a:8c:87:c6:44:ea:99:48:2d:f5:
ad:c4:d4:e8:18:00:6e:ea:ae:ca:b4:cf:06:f7:03:
91:2e:d9:50:b8:06:65:53:7e:e1:35:ad:52:48:59:
e0:42:5f:80:65:1b:55:e9:9a:3c:ab:20:30:f8:bc:
d9:f0:5c:30:ff:66:a0:16:d9:b1:c0:68:0b:25:9e:
de:a2:71:1b:5a:86:ed:03:93:26:f5:3a:b9:33:ca:
ab:3a:a6:30:4f:e6:23:9a:76:84:15:6e:f5:76:90:
33:c7:3d:b3:05:36:ef:a5:d2:26:fc:4d:5b:0d:30:
98:2f:31:25:62:cd:78:44:3c:05:e7:3b:77:c9:3b:
9c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:CC:34:E9:1D:3D:D5:82:E1:F3:9D:2D:A1:8A:9F:46:53:C5:C0:22
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1AE64290E73611EEB823E1C2775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.5.0/24
Signature Algorithm: sha256WithRSAEncryption
20:d7:6f:6b:7c:5c:78:c4:ee:14:3b:64:c0:ad:2a:5a:a9:bb:
10:19:82:c8:03:5b:ae:28:68:8b:4e:b7:79:ee:f7:18:94:e8:
e6:e6:8e:69:b9:34:26:77:e5:eb:c5:8e:2c:ef:87:3c:72:b5:
bd:b0:5a:52:85:ad:26:3d:19:a2:68:15:e1:e9:d4:15:3a:42:
07:f8:dd:e4:71:09:eb:f4:0f:06:25:ed:fa:1e:d9:9b:82:b0:
90:d4:80:6e:82:b0:ee:f6:a3:43:a7:95:1b:66:62:ab:7a:f3:
17:b6:6e:d4:c8:45:61:bf:b6:e1:52:8f:46:ff:54:3d:92:08:
e7:8c:52:ed:08:9f:55:9a:da:d2:c8:0f:a0:6f:5a:68:30:26:
9d:ae:4c:ca:c3:e0:a2:cd:ff:0b:bd:d3:cd:65:59:88:ab:ef:
f1:70:99:30:bf:64:17:a0:91:55:65:2c:c0:66:70:82:ac:21:
13:46:d7:36:38:97:a8:74:e4:aa:c8:5d:2e:e6:b0:75:30:bb:
ce:44:9e:cb:d1:37:5c:8c:80:97:71:56:53:a1:ed:33:e2:aa:
df:94:74:96:12:87:de:e7:61:a9:1e:7e:9a:f4:93:0c:fc:3f:
52:6c:49:64:62:22:cc:bf:10:89:12:e9:ad:cb:8a:8f:ff:34:
12:a4:8e:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:14 2024 by rpki-client on console-ams.rpki-client.org