Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3ED8EEE8E76111EEB0440795775412E6.roa
File: 3ED8EEE8E76111EEB0440795775412E6.roa (raw, json)
Hash identifier: INuKIv2VODTDYdb70qqEUCcm/XSf8fJMi5WnQwUs50Q=
Subject key identifier: 6D:1A:5D:B1:AF:7D:70:A4:41:84:72:3A:00:8B:3C:44:E3:D4:29:2E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A50D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3ED8EEE8E76111EEB0440795775412E6.roa
Signing time: Thu 21 Mar 2024 08:58:55 +0000
ROA not before: Thu 21 Mar 2024 08:58:51 +0000
ROA not after: Tue 23 Apr 2024 08:58:51 +0000
asID: 44559
IP address blocks: 154.222.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42253 (0xa50d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 08:58:51 2024 GMT
Not After : Apr 23 08:58:51 2024 GMT
Subject: CN=65fbf6cf-92c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:6e:f7:e9:a2:61:93:a5:21:f8:76:92:53:8a:
95:b6:3c:53:20:a7:67:cd:12:f8:af:e5:86:d4:6a:
d8:2f:d2:41:8f:e0:75:d8:c4:be:c6:37:98:4f:ce:
53:d9:88:39:17:c7:bf:d2:c9:9d:b4:35:56:c8:4a:
31:d1:05:d6:21:1f:79:22:d1:a7:42:a8:ef:51:cf:
ea:5e:72:5f:80:ec:34:21:6b:98:eb:b4:77:f0:52:
7b:36:f4:39:7b:40:b4:e0:ff:04:50:f8:03:4f:c8:
87:4b:58:e6:cf:26:5d:83:2c:a5:79:2c:19:a8:93:
8a:85:c6:ad:8f:56:10:5c:70:45:78:4f:ea:f4:44:
4d:30:c1:96:ab:65:7d:64:83:c5:41:a2:93:84:13:
59:4b:40:0f:d7:fe:96:e8:6d:51:0a:15:30:27:1d:
6b:a6:9a:6d:21:09:cc:22:c5:ab:9d:ec:e3:1b:6d:
6d:a3:31:fe:b1:ca:b3:dd:52:f5:a7:a8:dc:ef:a2:
85:18:26:02:9d:29:03:d6:8e:05:1d:c8:85:d7:56:
25:73:62:a7:31:c1:80:24:f8:07:91:47:0d:84:b0:
55:2c:83:79:d4:6e:32:ce:67:42:38:6e:9b:3c:50:
95:d7:be:a2:b9:75:34:e2:c1:51:97:9e:d9:8d:c9:
33:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:1A:5D:B1:AF:7D:70:A4:41:84:72:3A:00:8B:3C:44:E3:D4:29:2E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3ED8EEE8E76111EEB0440795775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.18.0/24
Signature Algorithm: sha256WithRSAEncryption
18:f2:f6:25:51:e8:ef:5f:c4:ca:09:73:60:e0:61:ba:02:67:
cd:99:be:ef:43:ba:1e:87:fd:f0:83:17:0b:aa:c9:bf:61:43:
ec:ca:de:17:8f:55:31:aa:84:f9:e1:4e:95:77:34:a6:bc:2e:
d9:76:8a:9e:27:c5:a7:9b:65:6c:50:dd:8f:24:ef:bd:8a:ab:
e7:b2:c8:d0:fd:02:f4:80:60:07:09:d2:dc:6e:2c:52:f2:86:
24:a6:25:b2:ea:d8:44:9a:4d:d8:df:6c:1d:74:0b:de:3d:96:
3f:56:c3:cb:24:bb:2d:20:d5:10:63:3e:94:bf:70:6f:e1:fa:
bf:a9:27:59:69:81:19:55:15:e5:d7:b4:64:73:80:ca:24:91:
d6:ce:20:58:bb:53:96:63:26:59:c6:f3:1e:c7:4b:76:e8:cd:
66:86:d4:6d:4b:2c:99:5d:e4:e1:b7:35:cc:7b:4a:cf:22:bc:
c3:a1:01:60:6b:28:34:2b:98:39:19:af:57:ab:32:5b:5a:ee:
f4:b7:54:b5:da:b5:41:a8:5e:18:be:38:57:71:14:35:68:88:
90:a7:26:ea:46:f4:b0:04:de:23:e1:a6:13:db:da:54:cf:f1:
2a:f9:71:30:bc:ed:90:5c:22:97:ff:98:3c:3d:88:09:ec:15:
39:3d:55:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:16 2024 by rpki-client on console-fra.rpki-client.org