Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3228A29EE75F11EEB2984285775412E6.roa
File: 3228A29EE75F11EEB2984285775412E6.roa (raw, json)
Hash identifier: qam45afY0wRFMASdQSoZDub5ZWvRrXh8zITE2K8Z+uM=
Subject key identifier: 61:6B:CF:8E:A6:2A:B2:56:01:57:10:81:0E:DF:B5:E8:55:59:51:BD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A4F9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3228A29EE75F11EEB2984285775412E6.roa
Signing time: Thu 21 Mar 2024 08:44:14 +0000
ROA not before: Thu 21 Mar 2024 08:44:11 +0000
ROA not after: Tue 23 Apr 2024 08:44:11 +0000
asID: 44559
IP address blocks: 154.222.28.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42233 (0xa4f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 08:44:11 2024 GMT
Not After : Apr 23 08:44:11 2024 GMT
Subject: CN=65fbf35e-90a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:71:38:9c:7c:da:b6:a0:22:fb:4f:7a:32:7d:
1a:56:75:b0:7c:65:79:83:ec:c5:b1:25:cb:42:1c:
c4:be:01:cd:71:60:0f:6f:02:85:88:81:64:8c:25:
4c:5f:5c:7c:8b:40:22:b1:7c:85:b3:54:75:fa:87:
c0:d3:64:7b:44:38:5b:b0:a8:d0:de:e4:e2:bb:12:
fe:89:f1:58:5d:14:43:37:e1:d6:1e:8f:0f:32:d9:
ea:30:9e:d4:f5:22:2e:61:f4:92:a8:af:a0:63:b6:
4c:82:43:f6:73:82:08:71:47:60:11:ee:30:e6:7f:
33:32:0f:76:12:f5:81:e9:36:35:c0:52:f6:10:41:
66:f8:46:14:6f:a3:ed:00:ed:79:8f:16:bf:ed:47:
da:69:3c:08:7d:a7:b8:52:a8:36:34:82:70:b6:bf:
ee:f3:99:20:b2:ae:98:b8:b2:e3:cb:25:60:fd:2a:
85:d4:bd:73:18:10:10:c1:d7:9e:4f:9f:d3:c4:d1:
ca:88:1c:ed:97:1d:4b:77:cd:30:3a:ae:68:f3:9e:
2a:08:cb:f9:f4:94:75:6e:1b:10:04:40:d2:b5:63:
21:99:8f:83:f5:8f:fd:be:2c:2c:8c:6b:b5:ad:f7:
ea:a9:29:08:7c:c2:ac:4e:3d:d0:44:dc:85:84:5f:
f3:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:6B:CF:8E:A6:2A:B2:56:01:57:10:81:0E:DF:B5:E8:55:59:51:BD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3228A29EE75F11EEB2984285775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.28.0/24
Signature Algorithm: sha256WithRSAEncryption
82:10:9f:94:47:a7:00:eb:d7:88:1d:07:1d:5d:45:89:9b:71:
4b:e4:0b:f2:a6:e4:cd:5e:1c:05:98:ed:91:50:88:07:0d:e9:
50:67:b1:fc:e9:1b:92:17:ce:a8:62:49:61:f9:79:49:c1:27:
c1:9c:17:01:38:a0:79:2a:69:c2:68:af:41:bc:1e:97:31:29:
73:64:ff:1d:95:24:b0:1a:45:f6:cc:9d:33:4c:1d:61:a0:5e:
15:9e:2d:a0:79:5d:8b:ab:e0:ab:63:e9:07:5b:e5:e7:6d:e6:
9a:91:22:e8:38:47:e8:ea:2d:41:1c:f5:bb:05:87:d5:71:38:
df:9e:60:28:a1:5f:b8:11:95:96:de:7f:2a:15:44:b6:3f:86:
58:d2:86:df:af:b4:f1:b4:f8:2b:46:d9:35:4a:85:20:7f:c2:
e4:90:5f:b6:42:2c:3e:bf:b0:b9:de:9e:f0:45:6b:5b:c7:65:
b3:d8:87:ec:1b:41:b2:8b:df:73:36:9c:cf:85:c5:9e:43:20:
aa:25:b8:75:65:2b:2f:77:57:ba:ba:63:8a:ea:17:92:5f:82:
17:db:7a:34:d0:5d:62:18:50:ab:5e:1b:af:9b:84:9c:19:aa:
13:fb:ab:7e:01:a6:eb:ce:14:af:54:0f:fb:02:8d:84:9f:e8:
1d:13:91:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:15 2024 by rpki-client on console-fra.rpki-client.org