Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/292C7846E73711EEBF0F4B4C775412E6.roa
File: 292C7846E73711EEBF0F4B4C775412E6.roa (raw, json)
Hash identifier: H/2en2QaegyAry7IpqBjs6fgZQqADuVk0YhgweCUk+c=
Subject key identifier: ED:82:DB:79:09:9A:35:77:0C:80:3A:95:14:A3:28:BE:ED:A3:33:13
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A372
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/292C7846E73711EEBF0F4B4C775412E6.roa
Signing time: Thu 21 Mar 2024 03:57:40 +0000
ROA not before: Thu 21 Mar 2024 03:57:36 +0000
ROA not after: Tue 23 Apr 2024 03:57:36 +0000
asID: 44559
IP address blocks: 154.207.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41842 (0xa372)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 03:57:36 2024 GMT
Not After : Apr 23 03:57:36 2024 GMT
Subject: CN=65fbb033-e7d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:64:7b:f9:b2:19:1e:0a:7e:f1:8e:9e:87:fe:
ab:80:69:71:be:d2:a9:4b:42:a6:e4:b1:c5:61:c7:
54:53:91:f7:37:67:a3:01:a2:66:42:4c:d3:6c:9c:
ad:c4:cb:10:f9:c0:35:2e:df:ee:66:99:2c:89:9e:
ba:24:af:90:50:ee:3d:0a:11:18:b1:cb:53:09:2d:
d9:2b:5d:78:9a:ce:c3:1d:7c:24:5f:d3:ba:9c:e1:
bd:0d:96:cf:75:bd:1b:f6:d3:81:35:a7:82:a8:0e:
28:c4:3c:08:c2:8b:d0:89:b4:dc:ff:7b:8b:b2:a1:
51:e6:d6:74:d2:74:04:c6:e3:b4:ca:a6:42:55:2f:
42:a3:29:a9:b8:66:76:46:6d:8e:5a:1d:9a:af:3a:
88:1d:fb:7a:72:8d:99:9c:46:a1:d0:85:98:43:31:
fb:2a:2a:d1:3e:93:35:86:86:6e:d2:0d:88:4b:69:
c7:be:20:98:00:00:dd:47:47:8e:09:0b:c1:63:69:
ff:fc:48:ab:75:79:42:c2:e0:d0:69:58:7d:db:62:
ef:fb:a8:ba:f2:08:ba:56:1b:14:72:d6:9a:9b:f1:
4b:6a:28:82:d6:f0:e9:16:d3:01:84:da:09:6a:77:
a4:8f:9d:02:0b:11:5a:4e:de:1d:f6:e9:d4:8f:ed:
9a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:82:DB:79:09:9A:35:77:0C:80:3A:95:14:A3:28:BE:ED:A3:33:13
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/292C7846E73711EEBF0F4B4C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.0.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:f6:f7:0b:43:14:0b:47:76:b6:c0:f0:51:c5:28:6b:06:27:
e6:ea:7d:5a:52:ad:c0:d8:c4:37:e9:00:44:bb:52:ec:ad:40:
aa:e6:c4:1f:59:c9:f5:da:5e:11:8c:96:be:8e:32:36:a6:72:
a7:bb:0c:59:4e:9a:1e:8a:95:04:bc:21:f6:c2:b1:f5:95:a4:
16:5d:26:79:5b:e5:24:33:97:70:4b:39:26:39:84:12:8b:00:
d2:a7:56:be:62:18:10:e2:43:82:85:16:06:69:2b:2e:21:21:
50:32:cd:33:34:43:1f:01:a0:80:52:46:53:8d:b2:b8:9e:9a:
1b:1b:ae:bc:b9:65:8e:f5:59:75:67:97:61:3d:9a:0b:62:13:
e8:ed:0f:9f:7a:ff:12:9c:4e:75:e3:c9:d3:dd:97:53:07:38:
a9:8f:22:2d:42:7c:03:5e:39:f6:17:d8:d0:b7:fd:58:8b:90:
77:f8:c5:5c:58:85:ca:44:59:d1:86:a1:9a:19:bc:67:a3:3b:
c9:d6:2b:52:0e:e5:ca:ae:cd:da:44:78:77:d9:63:86:af:da:
8f:dc:07:15:46:29:a7:57:55:6f:e2:5b:89:c8:16:7b:bc:b5:
15:ff:97:a6:56:83:54:37:fe:3d:22:72:5c:76:e1:85:4f:6f:
13:d9:b2:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:15 2024 by rpki-client on console-fra.rpki-client.org