Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/40A77474E75711EE93D8F6C4775412E6.roa
File: 40A77474E75711EE93D8F6C4775412E6.roa (raw, json)
Hash identifier: gSDCALOQqIZz8GZN3jF/5mesMdAeX5WUJTvuKRqUcb4=
Subject key identifier: 8C:B4:6F:58:1D:58:71:0F:D0:E7:E0:17:78:E4:A0:1A:5A:DA:10:2F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A4AD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/40A77474E75711EE93D8F6C4775412E6.roa
Signing time: Thu 21 Mar 2024 07:47:23 +0000
ROA not before: Thu 21 Mar 2024 07:47:19 +0000
ROA not after: Tue 23 Apr 2024 07:47:19 +0000
asID: 44559
IP address blocks: 154.218.34.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42157 (0xa4ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 07:47:19 2024 GMT
Not After : Apr 23 07:47:19 2024 GMT
Subject: CN=65fbe60b-976a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:21:0c:5c:80:6a:51:fb:ad:92:d1:3e:92:41:
46:b2:ac:f2:66:a9:b7:e7:ba:3f:ad:bd:ab:b5:42:
af:de:cc:da:2d:a5:18:a6:fc:fa:b5:12:03:a3:a8:
63:94:e7:c3:28:dd:a7:fb:4a:9d:19:84:ba:fa:e8:
ab:bc:3f:ca:04:bb:2d:0c:8b:b6:e1:cb:61:83:8f:
78:d6:90:67:1e:b3:2f:c9:d6:6f:57:02:c9:c2:cb:
6d:ba:25:54:f0:ee:74:ed:e5:06:7e:31:53:46:bb:
29:9e:5a:8a:63:b6:f3:f3:57:a8:55:09:88:4f:1f:
22:f9:d5:24:a4:5e:9e:9f:f0:b9:0f:e6:5a:97:55:
10:c2:d3:e8:96:f4:12:e8:ee:7a:b7:be:89:ff:ae:
67:84:34:00:33:ee:df:4f:74:95:93:91:88:32:97:
49:af:29:49:31:6b:db:16:9d:2a:c7:18:07:3a:a8:
21:5b:9f:c7:c6:af:05:6d:fc:20:55:d9:ef:cf:0e:
6d:d1:6d:a7:25:be:21:84:33:a9:60:11:82:87:71:
80:ed:30:9b:bb:e1:a9:92:4b:5b:8c:fc:a7:e8:d3:
a7:ed:a3:c5:62:8b:2e:34:3f:19:d7:5a:fc:89:b5:
5b:89:01:1e:83:83:bf:86:36:b3:0f:81:9b:19:8e:
27:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:B4:6F:58:1D:58:71:0F:D0:E7:E0:17:78:E4:A0:1A:5A:DA:10:2F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/40A77474E75711EE93D8F6C4775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.34.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:53:0d:32:83:f1:e8:6f:9a:68:18:94:a7:02:3d:7a:50:56:
c8:11:3f:e3:1a:1b:a8:3c:e0:a0:21:18:18:19:74:d4:e2:fa:
1c:90:ad:9a:3c:fe:49:94:31:81:d8:8f:f3:51:7b:bb:14:8f:
4e:4e:d4:85:d4:07:1f:53:dd:58:bd:11:b1:21:e2:dd:3e:09:
23:f9:b9:0f:54:74:49:8c:8b:8c:de:9e:09:b0:62:73:6b:eb:
29:b0:53:8a:d8:9a:73:54:2e:b9:44:2d:58:a1:d2:18:7b:f8:
05:9d:08:4f:ee:f2:23:0f:08:6e:4e:38:d0:59:53:ac:f1:3e:
21:ce:35:3a:a0:6f:f5:67:a7:3f:37:b5:8a:0a:c6:8a:ce:27:
f0:f4:ec:d0:e3:39:64:22:13:dc:56:df:1e:e0:0a:92:19:57:
a9:68:b4:79:e9:dc:c1:e5:8f:27:8a:b2:c4:cf:58:20:99:f1:
ac:cd:20:d9:73:19:7c:71:45:a5:b5:88:90:99:68:d7:da:4e:
aa:f3:8f:5c:e8:c2:24:a6:28:83:cf:55:8e:24:47:1c:94:67:
9c:12:95:6a:98:25:61:b4:02:58:83:6c:6e:6b:3f:46:0a:e6:
48:95:c2:76:15:bb:3f:8e:4c:78:ec:b6:d6:b4:56:9a:f0:9b:
88:bd:21:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:16 2024 by rpki-client on console-fra.rpki-client.org