Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/40AD6A78E77A11EEB37D5A59775412E6.roa
File: 40AD6A78E77A11EEB37D5A59775412E6.roa (raw, json)
Hash identifier: q4txehe/gRQMy03bPW57wNPJyJr8fd1DFIQy+I59oXw=
Subject key identifier: 3D:6D:7F:F9:DE:ED:E2:E4:C6:13:AA:26:3F:CD:81:C1:D4:7E:65:44
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A53F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/40AD6A78E77A11EEB37D5A59775412E6.roa
Signing time: Thu 21 Mar 2024 11:57:55 +0000
ROA not before: Thu 21 Mar 2024 11:57:52 +0000
ROA not after: Tue 23 Apr 2024 11:57:52 +0000
asID: 44559
IP address blocks: 154.210.125.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42303 (0xa53f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 11:57:52 2024 GMT
Not After : Apr 23 11:57:52 2024 GMT
Subject: CN=65fc20c3-0671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:ae:74:e9:98:02:30:39:ea:30:b5:ff:b0:6c:
5d:93:e6:64:d5:3f:e3:e5:fd:3d:af:00:ca:b9:e0:
e6:af:50:d1:00:14:12:44:c9:d0:1a:6d:f0:35:d4:
83:f6:07:53:bf:ce:a8:af:52:b2:78:d9:98:bc:09:
e9:21:1c:a2:d7:7c:ff:9b:3a:9c:0d:67:73:34:5a:
71:2f:6e:58:63:13:90:eb:66:4e:a2:3a:56:eb:66:
b5:1e:16:5f:76:05:e4:e0:04:79:e8:e7:38:bb:e1:
67:49:40:27:0f:36:cd:52:ad:ac:ca:4b:8b:5c:f7:
77:76:fa:c6:73:fc:ab:0a:ee:d2:3d:e7:0f:6c:4e:
7f:d5:dd:00:22:0d:cc:ce:68:07:8b:d3:07:dd:3d:
77:9f:0b:3b:1d:77:66:44:0a:48:4b:22:ac:19:d8:
3b:08:b1:1e:9e:24:5a:a6:a5:3c:15:4b:b3:75:51:
7a:82:03:71:eb:a9:da:a5:86:97:59:e3:91:b3:13:
8e:da:16:4c:8b:44:f9:80:7a:41:ea:93:b1:ec:a3:
c2:93:7b:07:14:db:25:01:64:d7:f8:bb:70:52:6f:
0b:6c:f4:76:9f:f5:7b:32:30:46:54:7b:f0:6e:13:
e6:e9:dd:b2:ee:7a:0e:b2:e3:07:bf:26:50:c7:08:
ba:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:6D:7F:F9:DE:ED:E2:E4:C6:13:AA:26:3F:CD:81:C1:D4:7E:65:44
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/40AD6A78E77A11EEB37D5A59775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.125.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:c6:02:00:cd:5e:53:b4:32:bd:ca:28:86:66:5b:b8:fe:25:
6e:fe:fd:31:a7:54:f4:7b:31:38:90:2d:16:28:ac:89:ae:c3:
fe:76:f3:e8:3a:2a:49:7f:4f:59:cd:8d:13:d4:c3:dd:6d:a5:
0d:17:40:1e:31:75:4e:46:52:02:2f:ea:bc:0c:d3:d0:16:13:
7e:e5:81:dd:de:40:31:c6:5a:2c:65:8b:24:d1:9c:0f:ac:30:
3e:ba:3e:0f:f7:2c:9f:32:e9:0a:f2:d1:81:29:f1:37:36:20:
6f:48:0f:61:e8:3e:91:ca:1a:d5:72:ed:5a:1d:21:76:12:50:
04:8f:f6:60:95:64:8d:1a:fd:f9:e9:94:83:b7:52:aa:a4:71:
89:14:be:58:5a:3e:e7:13:e5:32:2a:1e:78:f8:28:7f:42:6f:
84:8d:da:8d:5a:7f:a4:52:76:a3:0c:d4:4d:64:f1:f7:34:31:
43:8b:50:28:1e:ae:a5:58:26:5b:43:08:fd:29:70:1a:50:2a:
3b:8a:68:c5:88:6c:91:e7:b9:f9:6e:9d:a5:23:4b:e2:cc:52:
7e:7b:98:5e:35:39:1d:b0:83:9a:4a:4e:ad:6e:1e:89:76:e6:
e3:ab:6a:27:2b:9a:b3:91:0c:38:db:47:e0:c9:7f:b7:f5:8f:
46:e1:a8:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:18 2024 by rpki-client on console-ams.rpki-client.org