Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4334C940E74211EE916970A1775412E6.roa
File: 4334C940E74211EE916970A1775412E6.roa (raw, json)
Hash identifier: FU8gB9IKQeROGDA04fNBXXLnDPWf4l/FyMyXFlKkeYY=
Subject key identifier: D2:49:62:94:D6:24:18:A3:80:DE:D6:AD:6D:C3:79:9C:8E:E6:E2:B2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A3E2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4334C940E74211EE916970A1775412E6.roa
Signing time: Thu 21 Mar 2024 05:17:08 +0000
ROA not before: Thu 21 Mar 2024 05:17:04 +0000
ROA not after: Tue 23 Apr 2024 05:17:04 +0000
asID: 44559
IP address blocks: 154.221.200.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41954 (0xa3e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 05:17:04 2024 GMT
Not After : Apr 23 05:17:04 2024 GMT
Subject: CN=65fbc2d4-5020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:00:38:f4:db:96:05:8e:8d:d9:5e:b2:d5:4b:
14:40:73:b8:7d:0d:92:61:09:ca:62:78:5f:0d:c5:
66:87:99:92:21:eb:84:6d:2e:c1:db:74:e1:40:08:
62:2d:cc:99:07:7c:6c:13:5e:a1:b0:7a:ce:3a:87:
4e:b9:b7:ac:d7:d9:e0:f6:3e:89:2f:a7:b8:a6:83:
a4:0b:92:21:dd:bf:80:44:e1:8f:c8:d5:6e:24:86:
ac:83:8a:3f:24:70:7a:d6:f3:ae:89:31:5a:7b:6e:
76:af:bf:26:4e:69:1e:6b:29:8c:4d:d0:80:30:d6:
29:a9:58:bc:75:4f:08:af:9b:ad:b1:2e:93:de:a6:
3a:91:26:41:d6:9d:3c:ba:aa:62:e6:7c:9c:76:c6:
10:39:88:b8:84:91:3e:cf:8e:ae:63:ab:23:b9:31:
5d:a3:01:5a:fd:e1:6e:3d:d3:10:a6:d1:db:d3:cc:
b5:10:58:c2:00:d3:b0:72:dc:49:3b:0f:3d:21:28:
6f:1a:61:4a:f8:ca:56:15:07:44:63:d0:da:0d:9c:
21:58:fe:bf:a7:75:f1:a9:16:8a:62:91:83:77:d4:
bb:62:eb:6f:17:b0:42:53:fd:2f:cb:94:28:4b:32:
c4:60:35:3c:f0:a5:dd:e1:60:c7:3a:7d:01:ac:d4:
f7:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:49:62:94:D6:24:18:A3:80:DE:D6:AD:6D:C3:79:9C:8E:E6:E2:B2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4334C940E74211EE916970A1775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.200.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:d7:87:0e:10:bd:f8:c5:66:4f:bf:83:57:8d:9c:50:02:9b:
e2:58:ad:8b:80:d1:75:73:3e:7f:a7:0d:32:05:d8:ce:c8:ba:
4e:b1:2d:dd:c3:ee:9c:8d:a7:e1:55:2d:48:5f:e0:b3:9a:d1:
14:78:32:fa:ab:e1:54:53:ea:76:ad:4a:53:cc:86:00:d5:6e:
69:12:c6:bf:c9:11:47:9d:a6:20:85:1b:66:5e:91:ff:af:61:
50:5b:9f:72:ef:fc:57:b4:79:a5:a1:af:51:7c:87:93:79:76:
24:2c:ed:53:45:82:d7:2b:03:cb:b4:dd:15:f7:6a:35:f7:fc:
ec:7b:e6:1f:b8:a7:f6:39:9d:68:13:72:31:08:f9:d6:93:1a:
02:e8:a4:82:47:08:1a:60:5c:11:55:98:18:89:ee:1e:a7:d6:
99:85:d2:e1:cf:f0:e9:7c:9c:d5:22:62:61:e0:19:3d:08:d0:
2c:53:05:4b:d2:9c:27:1e:d8:57:37:7f:cc:55:90:b4:7a:bd:
d3:4c:45:3e:f0:4f:b5:aa:1e:78:08:32:0c:c8:61:f0:f2:e2:
5b:cb:98:c4:ff:32:fc:38:7c:bb:d4:33:b0:46:2b:e6:22:4c:
4b:81:34:97:28:b3:80:eb:fb:f1:c5:0e:ed:41:ed:49:5c:41:
19:df:18:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:18 2024 by rpki-client on console-ams.rpki-client.org