Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3CF99F9CE73311EE95FD4CAD775412E6.roa
File: 3CF99F9CE73311EE95FD4CAD775412E6.roa (raw, json)
Hash identifier: 6uVWZDhWJ/fee7HLfMcjEL3x3h/8YNjj/oEn2h5SgH4=
Subject key identifier: 6F:99:C9:40:2E:FE:C5:31:C8:CC:9E:9F:AA:8D:99:0C:E0:96:DE:11
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A34C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3CF99F9CE73311EE95FD4CAD775412E6.roa
Signing time: Thu 21 Mar 2024 03:29:35 +0000
ROA not before: Thu 21 Mar 2024 03:29:31 +0000
ROA not after: Tue 23 Apr 2024 03:29:31 +0000
asID: 44559
IP address blocks: 154.207.19.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41804 (0xa34c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 03:29:31 2024 GMT
Not After : Apr 23 03:29:31 2024 GMT
Subject: CN=65fba99f-2cc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:cd:9b:7b:f2:4c:d3:68:18:e8:24:95:ba:1e:
06:4d:46:6c:ff:26:11:5f:2e:a8:fb:e8:a7:13:df:
61:ae:52:d4:96:4e:74:e5:d6:8f:c8:59:2b:76:72:
2a:3c:a7:1e:b5:1b:d8:a1:e4:49:cc:a1:39:2a:94:
32:42:eb:50:74:3a:55:f7:ae:0d:e5:0a:7e:67:21:
17:7c:d8:32:df:7a:6a:31:e9:a5:9d:09:e6:64:7e:
5b:2e:2e:cf:dd:93:72:cc:8f:09:e6:f3:ce:c5:02:
0f:70:9c:fa:87:48:6e:f1:67:84:0a:1e:18:02:63:
c9:62:61:ff:75:54:1d:a5:88:ea:77:79:6c:0a:f5:
fc:f7:f6:dd:66:e3:23:04:0d:ef:95:cf:e1:99:87:
57:4f:06:10:5b:56:be:19:37:77:1e:5f:34:f9:e9:
cb:ee:4a:9c:b1:0d:0a:e7:43:74:01:82:4a:c5:db:
a0:d4:41:21:b8:f9:0a:20:f4:8b:9a:52:f9:43:7e:
95:28:0b:b5:e9:5b:cf:60:ee:98:80:56:8e:10:4d:
ac:87:3a:fc:c2:d8:e5:4a:05:e9:36:4d:1f:61:ab:
61:32:96:fa:34:1a:43:bc:79:f4:7b:e6:2b:73:d7:
bb:78:df:22:3f:ae:f0:46:db:25:04:ed:58:39:b6:
c9:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:99:C9:40:2E:FE:C5:31:C8:CC:9E:9F:AA:8D:99:0C:E0:96:DE:11
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3CF99F9CE73311EE95FD4CAD775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.19.0/24
Signature Algorithm: sha256WithRSAEncryption
45:52:5a:7f:01:11:77:de:cd:80:f9:01:d8:80:a4:1f:9f:b7:
f8:6e:9e:ac:96:b4:7a:0e:c1:fc:11:1c:62:29:d3:4f:10:87:
e3:7a:33:b6:2d:9e:8a:3a:46:98:9a:0a:ab:88:b5:37:5b:0c:
99:19:85:26:88:e2:9f:e7:35:5d:97:30:92:0e:1a:84:61:99:
d7:6b:e9:f7:34:25:79:23:35:e3:42:7f:72:e2:ce:6f:da:be:
f3:94:3b:78:8b:5a:65:56:0a:36:12:54:5e:fc:48:c9:d1:ec:
d6:47:cd:f2:80:35:74:8e:78:49:5b:ce:c3:32:6f:35:eb:d5:
25:c8:45:10:ad:3b:a3:e6:c7:8b:65:b5:68:72:9a:8e:91:c5:
f2:37:b5:2e:77:ec:59:9e:60:7c:67:34:02:fe:b5:1b:58:1d:
28:93:fd:56:d5:22:e1:d5:3d:95:61:8d:6b:ff:73:d7:c3:04:
dc:34:dc:fc:6d:02:37:13:f7:da:e1:86:6b:6e:0d:98:7a:de:
cc:ca:cb:dc:64:c7:2c:ab:67:f8:df:5c:56:c6:2e:e2:c6:40:
53:8b:53:3b:72:ac:a8:a3:08:af:22:3c:a8:9f:af:f5:82:ee:
d1:8e:b9:43:6f:06:fe:42:5c:71:be:b9:18:3f:f9:84:66:2a:
3a:62:fd:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:17 2024 by rpki-client on console-ams.rpki-client.org