Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/40F969B0E74C11EE80AC7B70775412E6.roa
File: 40F969B0E74C11EE80AC7B70775412E6.roa (raw, json)
Hash identifier: jClgi4Z5OSt/lS0Fnwndb0YlujEDs9AWDgDlYuK0etw=
Subject key identifier: A1:49:20:4C:DA:EA:1F:A1:27:AC:D3:C3:C8:4E:86:39:4A:9B:94:15
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A441
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/40F969B0E74C11EE80AC7B70775412E6.roa
Signing time: Thu 21 Mar 2024 06:28:39 +0000
ROA not before: Thu 21 Mar 2024 06:28:35 +0000
ROA not after: Tue 23 Apr 2024 06:28:35 +0000
asID: 44559
IP address blocks: 154.220.152.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42049 (0xa441)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 06:28:35 2024 GMT
Not After : Apr 23 06:28:35 2024 GMT
Subject: CN=65fbd397-e430
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e8:07:79:5e:0e:84:72:f5:06:e8:08:59:e8:
84:16:ed:7b:99:90:95:9a:2a:9b:ae:5c:b9:b5:a9:
39:e2:9f:22:98:52:3a:13:67:c9:00:3b:bd:03:a5:
bd:31:b0:06:36:b4:3d:b7:58:0b:f6:dd:c2:84:41:
82:4c:5b:55:c5:54:8f:af:19:91:0a:e7:b0:ea:b9:
7f:c5:0d:a7:df:ef:cf:39:77:15:65:5f:9a:06:e3:
8c:f7:01:40:50:65:56:9a:be:47:c2:12:1b:f4:00:
df:5e:f1:a0:db:b8:19:cd:5d:0f:3f:74:f5:54:f8:
37:15:db:4d:28:59:fe:7c:c1:85:d6:61:f4:2a:df:
12:aa:47:26:d4:21:77:dd:d8:63:17:7d:57:b1:95:
b3:37:d6:d3:c8:bc:c4:d7:22:49:6f:27:28:ec:a5:
01:a5:7e:d4:60:0f:9a:6b:03:98:e2:46:94:90:38:
93:93:7e:52:1d:bb:ef:f8:7b:de:ee:c6:94:78:2a:
75:57:8e:30:2f:9f:39:ef:c1:a8:1d:f0:8e:b5:c7:
c9:58:e7:07:0b:c4:44:7c:c6:a6:d8:bc:64:53:e5:
8c:d1:65:30:36:4e:c7:2b:77:07:12:11:21:03:9a:
28:e5:a9:ea:1b:3c:0f:90:c4:3e:3d:69:bd:df:79:
47:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:49:20:4C:DA:EA:1F:A1:27:AC:D3:C3:C8:4E:86:39:4A:9B:94:15
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/40F969B0E74C11EE80AC7B70775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.152.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:3e:9a:da:19:be:fb:0a:2e:1a:2c:4c:fe:e3:05:c0:ef:60:
27:77:36:5a:a2:0e:04:c8:85:5a:b5:06:35:24:0f:09:ba:02:
82:0b:b0:a8:7a:72:55:76:9c:ad:fe:9d:a8:cc:1a:80:16:8a:
63:84:75:0a:0f:c3:2c:14:8b:a8:8e:ba:a7:3b:3b:5f:7e:7c:
8a:3e:f9:80:5d:cb:02:49:bf:ed:b0:07:ed:52:7c:78:ff:cc:
a4:c8:a1:53:91:82:9a:51:2b:2c:07:62:8c:f6:17:a8:e1:eb:
c8:a3:9e:f5:f4:4d:02:36:f4:8e:70:33:3c:e9:b0:b1:1d:a5:
70:79:e8:fa:75:ae:19:d3:0e:85:b5:db:42:df:06:1d:75:d4:
11:3d:ec:af:5a:21:a1:48:5b:67:75:c9:63:50:cd:87:86:63:
e0:6f:eb:a1:cd:31:73:f2:0d:e2:bc:67:8a:0e:0c:a6:09:17:
eb:86:bd:83:09:ac:c8:20:1e:63:ff:8d:80:0f:35:a6:9b:3a:
39:1d:6a:e4:9a:58:a9:34:a6:7b:98:78:15:87:c6:5c:29:32:
69:0b:3e:52:4c:8c:ed:e0:e5:6f:93:37:02:a0:65:55:9d:e0:
5e:b1:58:e1:99:d9:1d:75:5c:e9:c7:f8:21:c0:8c:70:88:49:
5f:fd:f4:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:18 2024 by rpki-client on console-ams.rpki-client.org