Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2AE3D0D0E74611EE9FBCE2C0775412E6.roa
File: 2AE3D0D0E74611EE9FBCE2C0775412E6.roa (raw, json)
Hash identifier: SjmSPXUgAoVMOjLtRhCOL6v0zOtOsWYoqYAEZA3Eksw=
Subject key identifier: 75:CF:95:5B:E9:46:E0:59:AD:69:70:19:F4:7A:E7:5B:C7:3E:1E:6F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A407
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2AE3D0D0E74611EE9FBCE2C0775412E6.roa
Signing time: Thu 21 Mar 2024 05:45:05 +0000
ROA not before: Thu 21 Mar 2024 05:45:01 +0000
ROA not after: Tue 23 Apr 2024 05:45:01 +0000
asID: 44559
IP address blocks: 154.220.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41991 (0xa407)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 05:45:01 2024 GMT
Not After : Apr 23 05:45:01 2024 GMT
Subject: CN=65fbc961-5926
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:96:85:c1:5a:3d:e0:7c:f9:67:94:78:a7:be:
fd:e6:2e:6e:28:25:8b:cf:30:15:85:44:1a:23:e5:
2e:1b:7a:b1:98:f1:73:43:2d:9c:1b:55:3e:34:58:
7d:ab:81:38:95:95:cc:1e:9b:97:13:23:8b:0d:e6:
37:8d:88:bb:0d:52:fd:13:a1:f6:e0:f1:1d:01:7e:
78:23:86:6f:34:29:58:c1:01:c7:ce:26:9b:87:72:
ee:31:06:87:44:24:3f:2f:43:71:ab:31:cd:68:93:
32:7d:b1:61:37:f8:eb:36:35:83:7b:91:27:09:a6:
a5:24:55:96:06:e4:c9:4d:35:71:48:e5:8b:9b:d1:
e5:ad:85:49:dd:b7:8a:8d:ec:51:84:12:34:44:b0:
e2:68:7b:f2:e4:9a:07:41:cc:df:b9:72:58:c6:aa:
df:38:b3:ab:8a:8b:ed:1b:46:83:f6:f0:76:20:0b:
4a:37:90:9a:1b:97:30:f1:51:ef:eb:b2:dd:3a:b2:
37:78:5d:5e:ac:b6:ba:23:50:0e:47:7a:c5:de:66:
a3:b9:a5:84:47:ba:89:55:55:74:92:5e:a7:64:5f:
16:e1:21:b4:59:84:3c:46:49:a4:61:6e:d7:84:9a:
72:16:c2:19:98:5b:87:81:35:ce:47:12:f2:b1:19:
80:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:CF:95:5B:E9:46:E0:59:AD:69:70:19:F4:7A:E7:5B:C7:3E:1E:6F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2AE3D0D0E74611EE9FBCE2C0775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.181.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:57:0d:b1:1e:99:42:7b:c8:c3:13:cc:ae:1c:00:4a:56:c1:
9a:6e:13:27:d2:29:18:6e:85:f4:03:22:3d:69:18:32:be:05:
1f:15:78:e3:c8:6c:44:dd:ad:6d:b6:12:1c:b6:b0:5f:d0:ca:
04:23:36:d1:f7:3e:89:72:e4:73:14:57:fa:06:92:88:af:45:
ff:50:59:97:7a:7b:0a:93:21:87:c8:51:9a:c9:0f:1c:2c:11:
87:fa:5d:02:bb:56:ff:56:c7:1c:d2:9e:b3:52:d9:48:0a:35:
f4:e2:f1:9a:80:2d:63:98:24:fc:0f:94:7b:c1:db:45:3d:54:
50:39:b6:82:f3:71:41:55:1f:be:5a:7b:6a:67:32:91:bd:07:
4e:ca:ab:41:4b:e6:be:d9:e2:7b:f8:3e:26:74:38:26:53:c7:
62:07:f8:7f:a7:04:eb:dd:00:60:92:1e:52:82:8f:1e:21:9d:
dd:84:a2:60:27:1d:55:43:d6:09:8c:b6:f4:b0:8e:67:ab:f0:
73:dd:15:b7:78:e6:6f:50:77:8b:14:81:a0:1a:35:fb:e7:1e:
78:f7:00:3c:c3:3e:7b:7d:dc:f5:80:37:ab:c8:fb:d3:71:ce:
5b:5f:f4:3d:e3:05:d5:92:f2:5d:f8:0d:b4:42:a2:ef:4f:f9:
c3:34:93:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:15 2024 by rpki-client on console-fra.rpki-client.org