Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/41D801D8E73E11EEA1D88A83775412E6.roa
File: 41D801D8E73E11EEA1D88A83775412E6.roa (raw, json)
Hash identifier: LGMqWraMJbOUwwRfXxjUKt/6MWyE1Cq2SdgfU42irfs=
Subject key identifier: A9:22:C0:C2:81:31:25:F7:39:BA:E9:41:53:5D:BB:8C:86:CB:A0:85
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A3BA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/41D801D8E73E11EEA1D88A83775412E6.roa
Signing time: Thu 21 Mar 2024 04:48:27 +0000
ROA not before: Thu 21 Mar 2024 04:48:24 +0000
ROA not after: Tue 23 Apr 2024 04:48:24 +0000
asID: 44559
IP address blocks: 154.221.220.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41914 (0xa3ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 04:48:24 2024 GMT
Not After : Apr 23 04:48:24 2024 GMT
Subject: CN=65fbbc1b-c399
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:af:bd:da:f2:72:6f:48:85:c8:fd:22:db:8e:
62:07:50:67:64:b3:88:a9:7b:01:95:8a:2a:4a:1b:
00:f6:6e:9f:03:7d:7e:c9:a7:9e:ec:72:7f:1a:e3:
37:6a:d5:7d:e1:22:d8:ef:c1:8a:0c:83:fa:84:8b:
91:01:2a:a7:1f:e0:90:c2:42:3b:7a:51:6c:e5:a0:
a6:ad:34:9c:f8:ce:85:63:d4:a0:1b:5b:54:e6:b3:
2e:7e:e9:2b:a8:6b:11:58:e4:63:e2:84:c6:66:bb:
34:10:6c:1f:ea:3b:d3:0e:d6:61:c6:ff:fa:99:13:
6f:1e:1f:95:d6:83:a2:a1:30:fa:69:73:09:90:f5:
f0:5e:49:06:5e:0e:9e:65:ed:08:5b:3b:37:f2:17:
f0:98:37:69:19:3c:13:18:ef:f4:1c:4d:1d:a7:52:
53:f0:c2:41:e9:c9:10:3b:d9:c9:4d:b5:12:83:d5:
9a:20:f9:10:2b:ff:70:f6:d2:ce:31:e2:58:c9:c1:
72:82:6a:9f:ce:f3:e9:41:c0:a8:c4:c9:e0:15:78:
b9:78:be:06:70:32:f0:c5:b3:39:b7:2f:8c:8b:69:
42:13:ba:c0:92:e7:1c:bd:ef:f4:83:a2:7d:05:fa:
25:6f:14:cf:17:ac:14:ba:ec:13:f3:b3:6f:58:64:
5b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:22:C0:C2:81:31:25:F7:39:BA:E9:41:53:5D:BB:8C:86:CB:A0:85
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/41D801D8E73E11EEA1D88A83775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.220.0/24
Signature Algorithm: sha256WithRSAEncryption
99:3b:e3:cd:57:60:0c:8b:dd:5f:85:41:af:91:3f:04:4e:c5:
aa:32:55:0e:37:54:9a:26:70:fa:27:1e:46:27:a3:71:7f:d2:
b7:be:a9:cc:11:43:53:4b:33:47:d4:88:70:05:d0:95:bf:2e:
6c:3c:c7:8d:4e:2d:c4:e9:6b:ac:f2:85:8e:c5:00:b1:23:e8:
cf:30:5d:a6:87:5f:a0:6e:c5:b6:61:bc:09:0b:9d:37:d5:74:
e4:6c:aa:e0:02:63:d6:40:d7:06:25:fc:0b:76:d9:80:24:88:
44:f6:53:5f:45:75:dc:04:81:bd:f1:5f:4c:09:22:18:3b:d8:
ab:87:58:b0:57:14:5e:5a:39:3a:92:c0:a3:54:56:05:80:e8:
c6:d9:18:5c:e8:37:fb:48:0b:46:34:0c:8f:53:f4:36:65:43:
e6:e1:fc:f6:60:bd:66:bf:13:d9:40:54:3c:61:32:ad:6f:0e:
8e:49:0c:58:10:2c:fa:38:8c:27:c9:95:c0:3b:d9:22:9f:75:
b7:1b:af:f9:7f:fe:01:94:3e:1c:47:6b:ac:6a:e3:49:99:51:
6c:39:da:6f:bb:e6:4d:d3:45:44:7e:40:a4:70:bf:53:ca:82:
07:2c:d6:f9:ab:73:eb:7c:28:56:01:3d:2d:ef:24:d7:e0:06:
8c:7d:cf:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:16 2024 by rpki-client on console-fra.rpki-client.org