Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/41CDA9B8E73411EE83805CB3775412E6.roa
File: 41CDA9B8E73411EE83805CB3775412E6.roa (raw, json)
Hash identifier: 7Uwcv/mXCyuAbn/sP8ONoAExPERWVZCeKZnA6TMPbJI=
Subject key identifier: 38:10:CE:01:3C:45:34:B7:AA:06:D9:1F:22:8A:0A:10:A9:7E:CD:63
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A356
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/41CDA9B8E73411EE83805CB3775412E6.roa
Signing time: Thu 21 Mar 2024 03:36:52 +0000
ROA not before: Thu 21 Mar 2024 03:36:49 +0000
ROA not after: Tue 23 Apr 2024 03:36:49 +0000
asID: 44559
IP address blocks: 154.207.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41814 (0xa356)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 03:36:49 2024 GMT
Not After : Apr 23 03:36:49 2024 GMT
Subject: CN=65fbab54-8b88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3a:8d:dc:20:04:17:91:d6:f8:15:dd:b8:5a:
ed:4b:c7:a4:95:2f:3d:62:d2:96:2a:e8:0c:fd:fd:
3b:00:3e:b1:dc:e1:37:53:2e:de:0c:89:ea:da:6c:
49:69:9b:b5:df:f8:24:ce:3e:f2:d9:74:13:45:b4:
2d:60:b9:af:84:92:f8:d3:a5:52:1a:94:73:14:d5:
13:7e:cd:f5:7d:7b:6a:c0:b2:5c:d6:4f:73:b0:88:
59:71:0e:6e:7d:78:1a:b3:91:81:6b:ac:98:d3:e5:
42:ec:f3:1d:96:b2:05:d3:52:41:ec:01:b4:56:c3:
e1:bb:36:66:cd:68:bb:ba:b8:c1:a7:92:ca:c9:b4:
6d:99:6b:ad:01:81:92:43:5b:46:f9:23:a8:d9:7f:
9b:df:6c:41:5e:1a:71:9b:ac:58:88:a5:a2:f1:79:
c7:b6:67:af:00:4e:37:c9:83:21:ac:b7:84:fc:48:
22:aa:ce:6b:47:d3:09:90:5a:8d:79:6e:8e:2b:e5:
84:f0:b5:15:a4:b7:e0:c6:26:ba:2c:47:eb:c4:02:
91:b5:82:ac:d1:dd:08:a8:f0:24:3f:85:a8:b4:b7:
f5:ba:82:7d:ee:8e:d1:70:a1:2b:e1:22:d6:f1:6c:
a0:11:4c:90:05:5e:98:92:72:d8:e4:d0:75:c8:57:
65:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:10:CE:01:3C:45:34:B7:AA:06:D9:1F:22:8A:0A:10:A9:7E:CD:63
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/41CDA9B8E73411EE83805CB3775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.14.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:f9:a2:d2:69:ab:c0:c7:71:0b:3a:d0:5f:9d:e8:31:ce:92:
d4:61:b7:70:1a:ba:11:29:98:45:f7:7f:2a:8b:29:a0:40:98:
90:dd:ab:8e:8a:b4:89:40:5a:2b:d8:9b:44:a5:be:2c:61:ef:
3d:a3:b4:bb:a4:d8:d5:b1:df:3b:4f:7a:a3:0c:69:63:3c:6f:
ca:7b:1f:6e:35:71:ff:b4:36:c9:ba:ac:45:0c:61:0b:4f:b7:
15:b7:b5:a6:d3:14:7a:55:13:0e:52:a6:0f:f3:76:58:2f:06:
ab:d3:c4:8f:82:82:f9:7a:d3:4f:64:a1:fa:36:08:c4:de:17:
90:e4:99:7e:ec:20:aa:4e:4e:10:ac:5f:2c:60:b7:8e:f5:56:
e6:0c:e2:96:58:84:48:56:cd:94:5a:14:0c:9a:ac:dc:1a:13:
8b:c8:3c:0d:46:69:4a:60:2b:65:2b:0b:79:81:cc:3c:fe:25:
97:65:35:8f:e5:b5:6e:e2:95:97:c0:d1:4c:b9:63:4c:b2:56:
87:a7:d1:39:01:6f:f4:57:6f:ae:58:11:24:3e:87:7f:9d:d1:
bf:20:15:30:d5:72:07:8a:25:4a:5b:5a:5e:b3:cf:37:68:a8:
01:bb:77:61:99:a6:24:ca:a4:3f:2c:5e:47:fe:88:73:06:8d:
b3:34:b8:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:18 2024 by rpki-client on console-ams.rpki-client.org