Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1CFD6146E75211EE8CB8D19E775412E6.roa
File: 1CFD6146E75211EE8CB8D19E775412E6.roa (raw, json)
Hash identifier: 2adJ86ktePd6yjwaA/IELJjYHhvlpE2+CrzjVjxyU2A=
Subject key identifier: D6:90:03:DD:2F:92:A8:44:E4:F9:33:49:29:B5:C2:EB:D4:5D:0B:6A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A47B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1CFD6146E75211EE8CB8D19E775412E6.roa
Signing time: Thu 21 Mar 2024 07:10:35 +0000
ROA not before: Thu 21 Mar 2024 07:10:32 +0000
ROA not after: Tue 23 Apr 2024 07:10:32 +0000
asID: 44559
IP address blocks: 154.218.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42107 (0xa47b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 07:10:32 2024 GMT
Not After : Apr 23 07:10:32 2024 GMT
Subject: CN=65fbdd6b-81ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:48:65:f4:3d:e8:37:85:39:46:2c:05:fc:f0:
60:33:be:6d:9a:c7:9d:72:d0:a7:71:f3:4e:16:c4:
b4:bc:74:8c:47:29:f4:c8:8e:45:8d:dc:0e:5f:b5:
7f:5c:f9:d7:99:6b:2f:87:ff:aa:6b:6f:80:bb:5a:
6a:ed:3b:7c:ab:70:10:f9:4f:3a:0b:e9:83:63:a0:
8b:29:95:72:ee:f3:6e:a9:d8:2d:b9:ab:0e:f8:e3:
64:d5:8c:dc:35:e3:6d:97:d9:fa:fa:60:99:ca:c3:
a8:60:25:5b:3f:4c:9a:5f:bd:06:77:df:65:34:c2:
e4:b3:e1:72:e2:3a:65:1c:e4:a7:e9:17:0a:51:23:
67:c5:37:d7:43:e5:ca:f0:dd:4d:08:d2:49:61:aa:
7b:48:d8:c8:c5:ad:8d:7a:37:cd:fe:2e:75:b4:71:
71:84:7c:af:d5:f2:fd:00:f3:06:8b:c1:fe:db:00:
dd:3a:e9:78:d3:6a:5b:f7:0c:8e:87:e7:df:e7:bd:
15:02:66:27:96:b1:f2:51:c3:77:07:78:cb:da:b4:
fb:02:c0:4d:aa:db:9d:b8:ad:5f:75:4c:f3:e3:83:
3a:4b:0a:c1:0d:58:fb:78:a3:3e:d4:31:bd:b7:c0:
f2:a0:5b:3f:40:4e:6e:8f:01:9d:a3:46:99:ca:ce:
a7:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:90:03:DD:2F:92:A8:44:E4:F9:33:49:29:B5:C2:EB:D4:5D:0B:6A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1CFD6146E75211EE8CB8D19E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.59.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:d4:70:aa:38:fa:98:b0:79:fd:b4:26:f6:88:b9:3a:32:b6:
01:68:cb:5f:98:9b:21:58:f4:be:ef:90:01:91:60:a6:03:3e:
ee:bb:c1:5f:7f:88:b5:c6:db:c3:78:72:34:75:01:10:d6:98:
84:96:7e:80:e1:e5:48:b1:6a:a4:a5:4d:d7:c0:ec:0f:87:ff:
7d:23:27:91:e9:6c:98:4a:36:a9:d5:40:2e:5f:dd:e8:e8:e7:
1d:cd:0e:66:5b:a1:e7:02:07:3d:6d:e6:8a:cd:91:26:b7:46:
e1:1a:00:73:f5:a9:fb:4c:02:02:e9:51:ca:7e:80:8c:7c:1f:
ea:be:36:fa:d3:6c:98:e9:72:55:c3:d6:3a:e4:b1:c9:cb:10:
77:f5:44:d0:2b:c0:e3:10:a5:cc:04:8c:ac:1f:fb:5a:99:63:
18:5f:fb:eb:87:00:19:20:d8:01:5a:b6:4b:71:e3:b0:1d:73:
07:bf:29:32:c6:e2:81:47:69:36:a7:67:80:2d:d8:55:24:cc:
38:6a:99:c6:e2:8d:87:26:c9:f8:4b:f6:ca:d6:c6:fb:9c:fc:
c8:03:ce:57:2f:42:4c:70:76:58:a8:45:22:8b:0c:b1:33:9e:
e9:5d:c7:db:c9:1c:5e:08:f6:fc:e9:8b:fa:c3:58:a1:7a:94:
6c:4b:65:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:14 2024 by rpki-client on console-fra.rpki-client.org