Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/40009F64E74D11EE92EF5478775412E6.roa
File: 40009F64E74D11EE92EF5478775412E6.roa (raw, json)
Hash identifier: FglvwvYZnWlKgTHWAvZzuLfbsMsbjR47w5xHc870Kx4=
Subject key identifier: A0:F2:68:02:62:82:E0:57:0A:57:1E:79:45:02:CE:81:6A:E2:CD:63
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A44B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/40009F64E74D11EE92EF5478775412E6.roa
Signing time: Thu 21 Mar 2024 06:35:47 +0000
ROA not before: Thu 21 Mar 2024 06:35:44 +0000
ROA not after: Tue 23 Apr 2024 06:35:44 +0000
asID: 44559
IP address blocks: 154.220.147.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42059 (0xa44b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 06:35:44 2024 GMT
Not After : Apr 23 06:35:44 2024 GMT
Subject: CN=65fbd543-bc08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:db:d5:fe:27:19:d2:8f:0b:4f:c5:0b:bc:ef:
76:f4:3f:e6:9d:ce:75:ec:de:b9:79:1a:f4:c6:f0:
2b:92:0e:8f:3e:6a:6a:34:c6:96:d4:1c:5b:30:32:
21:a8:94:76:db:43:2c:0c:14:d5:03:f7:89:b6:5f:
6c:cd:23:20:41:b5:7f:85:69:b8:1e:75:ec:a1:ba:
2e:df:26:67:97:e4:f0:bc:56:8f:b1:0f:37:03:74:
1c:5d:55:70:d2:16:79:3e:54:1f:0f:64:15:6a:47:
b6:81:fd:02:62:8c:94:0f:45:72:4d:d4:c3:b8:24:
7f:a4:d7:d1:95:de:88:cc:c7:d1:e8:e6:04:dc:a4:
03:6a:1e:cc:33:1b:06:87:19:c3:2c:c0:55:9a:ed:
f4:89:30:99:7d:2a:06:2b:56:46:28:80:b1:ef:f4:
77:52:0b:e4:1f:ad:c6:ee:17:a8:4a:6a:9b:7f:1d:
8d:e4:68:51:fe:cb:56:0d:c2:3f:3d:11:79:3a:c5:
05:e0:40:56:c3:21:d8:35:46:bd:c7:4e:a4:85:fa:
0c:a5:2e:2c:13:05:ab:c3:41:3d:07:26:b9:a5:cb:
17:0d:39:69:9d:7c:6b:4c:9f:98:50:ef:40:bd:02:
6a:43:50:8d:35:ca:b0:d0:7b:10:83:cd:a3:18:19:
f7:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:F2:68:02:62:82:E0:57:0A:57:1E:79:45:02:CE:81:6A:E2:CD:63
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/40009F64E74D11EE92EF5478775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.147.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:06:4d:1d:fd:42:25:88:c1:e0:a3:32:87:f7:8f:1a:10:60:
3d:dc:11:52:60:e1:29:4f:b9:53:3a:01:f0:88:ff:f8:5e:96:
2d:76:a0:21:16:94:97:7a:b0:15:b5:05:91:5d:99:27:db:02:
f7:0b:b0:44:0a:bb:e9:b3:7c:74:fb:4d:46:be:ec:74:48:40:
e6:97:33:aa:e0:ae:a2:ff:3c:62:81:f4:06:eb:d0:42:80:52:
79:1b:51:39:a2:c2:63:8c:6a:aa:7a:6f:82:a8:cb:3d:35:fa:
73:d0:c8:81:db:47:2a:41:dc:1a:13:76:be:90:e1:10:a5:c9:
79:4b:41:f8:88:8c:29:d2:a5:03:f5:c3:47:b4:33:cd:0c:18:
07:43:e4:60:47:06:b0:cd:a4:04:78:2f:1d:6a:04:86:42:ab:
59:a8:0f:aa:6c:b7:40:a0:ef:41:19:ed:87:bb:ab:c0:ce:14:
0e:50:53:51:c0:9e:a2:9b:cf:1c:b4:c5:db:53:c4:5e:02:03:
58:c1:10:b7:86:83:12:1a:64:ad:0a:8b:d7:3b:f4:95:f1:f1:
2f:47:51:43:1f:a9:a4:21:68:86:c3:6c:7c:fa:5b:83:3a:f2:
6e:83:25:1b:65:2b:cd:84:9d:59:a0:bc:66:20:e1:ae:5e:99:
99:4b:bb:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:16 2024 by rpki-client on console-fra.rpki-client.org