Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2E467060E75B11EE88444766775412E6.roa
File: 2E467060E75B11EE88444766775412E6.roa (raw, json)
Hash identifier: oCyJr/K/6p70tABOkUnC5JiY7Rz34SvUqdSe5MJY7Hg=
Subject key identifier: BE:36:48:16:0E:5C:0E:2A:29:98:F7:83:82:9E:BE:FC:B0:14:3D:EB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A4D3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2E467060E75B11EE88444766775412E6.roa
Signing time: Thu 21 Mar 2024 08:15:30 +0000
ROA not before: Thu 21 Mar 2024 08:15:27 +0000
ROA not after: Tue 23 Apr 2024 08:15:27 +0000
asID: 44559
IP address blocks: 154.211.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42195 (0xa4d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 08:15:27 2024 GMT
Not After : Apr 23 08:15:27 2024 GMT
Subject: CN=65fbeca2-487e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:8d:03:cd:b6:7c:22:c2:e6:29:c3:f7:06:bf:
c9:1e:cf:5f:84:0c:b6:79:ea:be:c6:a2:70:98:91:
98:28:20:34:68:2c:90:f6:15:eb:1e:cf:87:24:69:
39:40:84:92:cb:43:ad:ab:c8:a3:76:d7:19:b0:f6:
9c:07:eb:c3:c6:2a:2c:b9:04:98:46:9e:5c:06:51:
92:f7:29:ad:00:ac:3f:39:20:b1:cc:ac:3e:61:9b:
56:7b:d3:2d:e6:ca:d4:9c:7b:a1:c7:e5:57:7c:1f:
8c:82:54:13:1b:a5:15:00:7a:2a:b3:f0:03:1d:cf:
64:e1:e0:a7:6c:39:c0:d7:18:fa:8d:ed:68:8d:bf:
27:15:d7:97:5e:b9:13:57:13:07:d6:75:ef:f3:39:
e4:ad:6c:79:ba:38:ab:22:5d:e5:bc:a6:9a:da:f1:
12:7c:60:10:b2:06:9f:13:05:0b:01:46:fa:d5:39:
c4:9b:3f:29:ad:5d:cc:4a:b3:e6:09:e9:59:89:95:
dd:20:de:76:b4:e6:01:f2:c7:94:b7:12:54:67:f2:
1f:e8:3a:0b:e2:ea:61:8c:86:b5:a6:37:44:de:f6:
92:aa:b1:9b:57:f1:3b:1e:4b:4d:48:7d:6d:6b:52:
f8:99:a0:ce:1c:ef:aa:8c:5d:1d:78:8f:74:36:22:
42:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:36:48:16:0E:5C:0E:2A:29:98:F7:83:82:9E:BE:FC:B0:14:3D:EB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2E467060E75B11EE88444766775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.47.0/24
Signature Algorithm: sha256WithRSAEncryption
77:f4:c6:d4:34:7b:b9:42:63:21:34:cd:ab:51:15:d7:3b:53:
80:a1:5b:36:99:0a:1b:ea:7a:c3:e6:b4:f0:e9:59:e7:ad:8c:
85:63:4c:2f:c7:54:56:b7:10:df:33:c2:1f:83:cf:5b:ee:8d:
33:b6:be:85:0c:ed:b9:d3:fa:b0:8b:b8:22:e1:1e:ed:dc:ff:
d0:17:ee:77:71:06:a3:3a:fe:28:bf:1e:83:31:c0:1f:de:dc:
45:42:d5:c7:e3:61:e0:23:51:0e:23:b1:b7:6e:09:fc:46:bb:
6b:77:45:3c:cc:5a:bf:a9:7c:0c:30:41:6c:65:e4:0f:b2:ec:
be:c7:cc:0f:4c:9a:c5:a9:8e:4a:cb:0e:26:2d:d2:d0:f2:b9:
7b:c5:2f:87:8f:13:e8:31:dd:84:94:0f:13:d7:f6:f1:b9:42:
4e:74:94:06:6c:12:5e:c7:90:78:34:62:9b:ed:c4:2d:79:df:
22:fb:2d:70:b1:a5:0c:5f:8c:79:36:dd:37:e9:ea:26:04:af:
46:1c:a4:63:75:a2:77:28:86:b4:93:c1:9b:8c:12:44:29:c4:
d4:c4:11:38:c9:87:97:da:f3:01:14:dc:7a:9e:8e:99:09:a7:
f7:a4:37:74:b4:b3:b5:61:8f:ee:1d:6d:41:6d:47:20:3a:af:
9b:d0:ce:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:15 2024 by rpki-client on console-fra.rpki-client.org