Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/342C7768E77911EEB790C34F775412E6.roa
File: 342C7768E77911EEB790C34F775412E6.roa (raw, json)
Hash identifier: 2m1Bvu1OT7BhV1VeeMbMsUyDnaVKl/RhzGKzvWd/I1g=
Subject key identifier: 26:B6:47:E6:AE:96:19:99:77:A1:A6:29:E9:F0:D6:A8:16:05:C6:B3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A535
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/342C7768E77911EEB790C34F775412E6.roa
Signing time: Thu 21 Mar 2024 11:50:25 +0000
ROA not before: Thu 21 Mar 2024 11:50:21 +0000
ROA not after: Tue 23 Apr 2024 11:50:21 +0000
asID: 44559
IP address blocks: 154.198.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42293 (0xa535)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 11:50:21 2024 GMT
Not After : Apr 23 11:50:21 2024 GMT
Subject: CN=65fc1f01-c325
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:69:51:b9:ab:e0:e7:ef:6f:29:b7:37:c3:a9:
18:6a:ba:bc:4b:71:8d:3d:1e:5e:fe:fe:54:07:62:
71:98:fe:91:48:a1:ff:d8:37:79:4e:5c:5c:5f:f8:
f4:65:38:e6:dc:5c:8e:97:50:86:60:2e:47:f6:a0:
e3:a4:a6:92:31:6d:c6:4e:d5:ee:5e:b4:f1:82:9c:
d0:20:cf:60:4e:74:11:7b:f0:11:d2:3d:d1:97:9f:
e4:de:57:b6:3d:e7:df:ed:41:bf:4c:5e:5a:b8:d5:
40:4c:09:26:6c:0b:dd:b1:78:7f:98:4e:0c:ce:6d:
6d:c4:69:e0:17:f0:82:6c:6b:c7:14:3f:8e:ae:27:
e5:b8:bc:39:36:56:65:a4:4f:2d:9f:1b:e4:be:bf:
d7:9b:0c:b7:7a:b8:50:3e:22:c3:1d:f9:37:29:c4:
29:be:ce:01:8c:a8:0c:8c:c4:51:59:31:7c:7d:73:
bc:dd:52:1e:ce:e3:71:31:25:bf:ae:e5:7f:b0:9f:
98:aa:dc:3b:45:96:60:40:8c:c7:c7:58:69:64:3c:
57:b2:e6:05:9b:dd:de:65:cf:22:72:61:93:58:f6:
9a:6d:84:e2:af:4f:9a:b5:8e:b4:d9:aa:fb:36:78:
dc:f8:f1:ec:93:b8:5c:45:3f:45:91:11:61:cc:ac:
eb:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:B6:47:E6:AE:96:19:99:77:A1:A6:29:E9:F0:D6:A8:16:05:C6:B3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/342C7768E77911EEB790C34F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.162.0/24
Signature Algorithm: sha256WithRSAEncryption
40:8a:0c:17:48:41:29:5d:89:b9:af:fd:e1:a2:33:77:85:92:
8e:d4:71:1a:65:56:b8:cf:f4:02:ec:a2:ba:48:a3:fb:cb:21:
02:cd:cf:6c:ef:52:94:92:49:40:02:56:e9:41:c7:9d:b9:9a:
6d:aa:07:5d:0f:61:17:1c:ee:02:1b:59:50:c3:09:78:2b:91:
7f:cc:d0:1e:14:dd:7a:10:2c:f4:fd:04:1a:24:de:8e:ca:c6:
b9:f8:52:63:4c:cc:60:24:0c:36:8a:58:c2:7d:7f:12:3c:22:
a6:da:2b:d5:3d:00:45:81:e4:0c:13:d5:8b:f3:d6:ba:36:ba:
8c:a6:2a:ff:20:f7:b1:e9:85:95:ac:23:94:8c:76:17:fe:1a:
a6:96:7a:89:b8:a4:40:72:ce:94:54:aa:44:6d:1e:92:aa:37:
35:5b:b2:83:d6:c7:61:6d:d5:fa:2e:3a:ad:61:60:4f:04:cd:
7d:3d:9c:46:87:67:be:6a:00:31:5b:df:76:3e:9d:4d:97:80:
f5:34:29:1e:ae:cc:b9:58:65:5c:f8:e0:2f:37:f2:57:8a:04:
39:e1:01:a9:03:23:af:ae:61:94:80:02:92:2d:c3:e9:4c:57:
b1:be:d2:69:b1:92:ee:ff:1f:13:b5:cc:6e:ed:39:46:3f:91:
f3:f0:f6:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:16 2024 by rpki-client on console-ams.rpki-client.org