Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FACF3F8E78311EEA50B099C775412E6.roa
File: 1FACF3F8E78311EEA50B099C775412E6.roa (raw, json)
Hash identifier: bj2aE0nr5Zl5kuMbsLOYIWmgMNh3oIq+homFD3e/LZY=
Subject key identifier: C0:E1:80:2A:87:58:74:2A:18:BC:7C:F7:16:CF:A6:EC:23:46:FB:C5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A587
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FACF3F8E78311EEA50B099C775412E6.roa
Signing time: Thu 21 Mar 2024 13:01:25 +0000
ROA not before: Thu 21 Mar 2024 13:01:22 +0000
ROA not after: Tue 23 Apr 2024 13:01:22 +0000
asID: 44559
IP address blocks: 154.210.89.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42375 (0xa587)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 13:01:22 2024 GMT
Not After : Apr 23 13:01:22 2024 GMT
Subject: CN=65fc2fa5-23ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a9:ee:81:f6:87:14:2d:25:e1:7b:ba:b8:d5:
7d:0d:72:87:25:ef:4d:18:5a:04:6c:d8:9c:83:8a:
66:0e:e6:d2:10:9d:32:30:d1:59:47:a9:f8:21:58:
7c:84:13:e2:24:05:65:f4:b4:3d:22:f4:c0:c0:3a:
25:6a:e3:9d:4c:e7:bd:f1:4f:bd:61:d2:00:9f:0a:
0b:d9:51:81:20:72:d3:71:47:5a:5d:55:ba:21:f8:
ff:1f:69:21:44:c2:67:92:f7:66:f6:e6:69:dc:65:
e5:c1:53:d5:ad:b4:41:bc:c6:32:d1:ef:f0:54:b2:
65:c7:ea:a4:44:6a:f6:7d:dd:22:c4:aa:f8:13:b2:
08:8e:02:8b:64:d4:57:c3:bf:a4:8c:bb:19:0f:12:
1a:0f:f8:7e:23:9e:6f:ca:f9:af:d5:c0:09:80:1b:
5a:48:46:51:35:92:df:87:2c:a1:b4:7d:33:ad:45:
f1:2a:49:89:f5:d6:5a:53:01:0e:2f:27:e5:50:db:
c5:07:70:9a:0b:af:09:5a:11:b4:f7:ff:75:f8:69:
81:af:d6:e5:e2:13:72:da:b3:cc:3b:36:98:dd:e7:
e6:ab:7d:99:ec:41:33:ee:8c:ca:11:31:5a:57:35:
52:1d:97:42:53:b7:27:21:4e:65:ee:38:8d:fd:7e:
0b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:E1:80:2A:87:58:74:2A:18:BC:7C:F7:16:CF:A6:EC:23:46:FB:C5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FACF3F8E78311EEA50B099C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.89.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:42:e2:71:35:8e:df:b9:e0:46:5a:3f:30:06:4f:10:e1:86:
87:bc:44:a6:64:bb:16:61:9b:6d:f8:6a:71:30:ed:95:cc:56:
7b:69:a5:c1:fb:d9:8f:e1:27:18:b8:ea:5c:7a:c3:2e:26:b3:
72:9f:1e:8d:0b:89:92:ec:20:3f:a6:43:b2:70:07:24:c5:d6:
10:ea:f1:3d:72:57:b1:8c:72:a9:18:7b:36:55:71:e2:50:54:
fc:f9:81:29:79:6f:d8:fa:3d:bd:f4:3c:2f:b5:e5:cd:71:c8:
1f:2f:3b:d4:7d:0d:bc:a6:f0:34:5a:40:52:fc:83:27:4c:8d:
39:49:fb:bc:11:6b:ed:9f:e0:37:db:ca:a4:ee:4e:8c:50:b0:
5e:94:2d:d9:ed:f9:88:55:41:c6:b4:37:1a:13:67:4a:74:27:
f4:ed:14:a6:44:2b:c3:06:5a:5c:15:c0:35:7e:a7:8e:58:a4:
0e:36:9e:e0:d7:3f:e0:ee:5e:14:94:ae:6e:25:9d:14:5d:f6:
f0:9c:58:28:4c:e6:be:f0:e6:2c:87:1c:4d:cd:ad:02:d0:ad:
58:95:1b:0c:f0:be:9c:7d:85:29:a5:6e:89:c5:d4:44:18:f9:
c8:0b:1e:5f:09:76:c8:7f:23:19:21:3a:fa:e8:96:5e:ab:25:
ad:a5:17:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:14 2024 by rpki-client on console-fra.rpki-client.org