Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/42C14746E73C11EEAE07D472775412E6.roa
File: 42C14746E73C11EEAE07D472775412E6.roa (raw, json)
Hash identifier: qORNBF0aiGqjtAXnIY5dYCYTKUfsRFaPQ8Xya2eoac0=
Subject key identifier: DA:D2:5D:A7:75:31:19:18:39:F4:E1:44:2E:7E:07:59:B0:A3:9B:FA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A3A6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/42C14746E73C11EEAE07D472775412E6.roa
Signing time: Thu 21 Mar 2024 04:34:10 +0000
ROA not before: Thu 21 Mar 2024 04:34:07 +0000
ROA not after: Tue 23 Apr 2024 04:34:07 +0000
asID: 44559
IP address blocks: 154.221.230.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41894 (0xa3a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 04:34:07 2024 GMT
Not After : Apr 23 04:34:07 2024 GMT
Subject: CN=65fbb8c2-d179
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:0a:19:eb:c3:95:b4:04:89:f8:a3:1b:5d:97:
5b:1a:b7:91:3e:80:2c:cf:74:b3:c2:28:0f:00:62:
04:0d:ca:9a:7f:3c:da:ff:23:be:4e:1a:fa:f1:cc:
0b:96:ff:eb:ad:ae:2f:6f:7b:8d:ed:43:ba:0b:92:
d6:93:ca:2f:73:35:df:19:2d:93:13:51:03:20:47:
d3:23:f5:7a:8a:47:05:52:aa:23:5d:6c:ff:9e:76:
f5:b6:1d:f0:7b:8c:4d:58:d5:1e:12:1c:3a:b5:5d:
d9:61:9d:c9:da:b8:be:22:48:1b:63:62:ca:a5:53:
c4:f5:38:ff:15:28:e2:57:fb:4f:26:48:47:0a:f4:
57:cb:0e:8d:22:00:81:c9:47:0b:85:63:1c:6b:06:
b5:dc:4f:7c:93:b8:75:0e:b2:45:70:f5:3b:2e:4e:
05:6e:28:73:4b:7c:c4:17:74:ee:c0:b6:58:cc:28:
e2:88:73:09:62:7a:fb:af:cb:79:44:cf:16:3a:dd:
53:39:e0:2e:ba:ef:35:40:e1:c0:a6:07:00:07:ee:
80:a2:a1:88:3b:9d:42:8e:f8:45:94:d2:ed:50:4c:
f2:f5:07:fc:7d:84:aa:0e:59:47:0a:5d:0b:d3:c0:
a6:9c:6e:fc:9d:d7:6f:79:22:bd:9e:da:97:3c:4e:
e1:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:D2:5D:A7:75:31:19:18:39:F4:E1:44:2E:7E:07:59:B0:A3:9B:FA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/42C14746E73C11EEAE07D472775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.230.0/24
Signature Algorithm: sha256WithRSAEncryption
22:18:15:0e:68:1e:80:01:6c:1d:6b:63:9c:99:d1:47:83:56:
e9:b8:9b:ac:cb:8e:f1:53:b9:a7:f7:e9:38:38:e7:50:1c:35:
95:96:53:28:72:78:90:67:65:84:28:b1:02:38:0b:08:02:71:
ed:b4:bf:69:6e:ef:b1:05:33:27:cc:e9:b4:3b:65:9d:78:87:
a5:e5:f9:37:95:72:a6:2c:79:8c:76:12:12:2d:2a:77:11:f3:
54:04:c1:84:68:ad:63:83:77:ad:ea:8f:29:bc:4b:7c:96:7d:
eb:88:b0:d8:10:15:75:4c:8c:d1:1f:c5:af:96:36:a3:00:37:
8f:b9:5e:25:bd:b4:8a:fd:a6:2c:72:05:97:25:fc:15:60:a0:
8e:71:6a:0a:4d:b1:ba:31:c2:a3:b7:74:1d:8c:a8:12:25:55:
5a:5d:cb:3b:a5:7e:cc:c8:b3:de:51:0e:11:f1:ce:4d:2c:d1:
7a:8e:7c:60:1a:ac:16:01:62:fa:ba:5a:9c:3d:03:f9:97:7a:
5e:d3:84:bc:bb:6a:5c:88:53:26:f3:e7:2a:01:d3:7c:e9:a1:
9c:42:de:79:84:ee:4c:10:59:4a:f1:ed:be:7e:c8:77:53:11:
0b:ba:93:6e:8f:8f:66:78:2e:25:ec:9e:f1:65:e2:f8:b6:1c:
8e:f2:d8:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:16 2024 by rpki-client on console-fra.rpki-client.org