Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44F00388E74911EEB3BBE458775412E6.roa
File: 44F00388E74911EEB3BBE458775412E6.roa (raw, json)
Hash identifier: pMjDSPmDL36aGwQcPsxfkQy/S8Q0mF8hLoi+CJZgi5U=
Subject key identifier: 28:CF:9C:67:F7:12:29:48:12:47:F9:89:4C:1A:19:6C:FA:E9:F7:B3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A423
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44F00388E74911EEB3BBE458775412E6.roa
Signing time: Thu 21 Mar 2024 06:07:17 +0000
ROA not before: Thu 21 Mar 2024 06:07:14 +0000
ROA not after: Tue 23 Apr 2024 06:07:14 +0000
asID: 44559
IP address blocks: 154.220.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42019 (0xa423)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 06:07:14 2024 GMT
Not After : Apr 23 06:07:14 2024 GMT
Subject: CN=65fbce95-1f16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f6:d5:db:b1:d1:09:89:4e:93:0c:e1:ef:04:
21:29:d5:62:5c:2f:e4:bc:84:93:a8:63:a1:be:6f:
cf:29:d4:0e:b0:e3:f0:a6:65:3d:3c:02:ad:41:d9:
d7:bc:6a:fb:72:46:5b:c7:dc:46:3c:91:04:93:ae:
e3:12:c4:2e:55:ce:11:1c:db:b8:b3:84:8e:35:fe:
af:dc:fb:46:40:2f:f7:53:0b:8d:9a:e5:24:2f:32:
4a:ff:4c:cb:80:ab:17:91:d6:37:92:b5:27:6d:61:
16:e2:f5:e8:a8:3f:43:ab:4b:e6:5c:0b:b5:55:1a:
4f:87:b9:e4:21:73:c0:45:57:c4:5e:79:40:82:1b:
71:b5:fa:7c:db:c7:f5:ef:5b:da:b7:e2:f6:4e:71:
36:35:c4:9b:00:0d:9c:71:ee:d1:9b:1c:0b:87:b5:
a0:cc:e8:fa:2f:96:bc:c7:f7:5f:50:a6:ea:fe:3e:
52:8c:8f:16:44:4b:f7:44:5b:5a:a5:c4:54:da:f0:
89:f4:d9:87:d2:17:02:fc:0b:c8:f2:42:d1:a7:e7:
25:6a:63:5d:76:54:30:bb:28:54:33:7b:c9:28:63:
15:d3:c3:68:f2:a9:1f:17:d8:a8:6f:13:20:86:40:
ad:6d:eb:98:38:13:00:06:5d:e3:94:0a:9e:52:26:
ac:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:CF:9C:67:F7:12:29:48:12:47:F9:89:4C:1A:19:6C:FA:E9:F7:B3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44F00388E74911EEB3BBE458775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.167.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:3d:c3:a6:b0:e2:92:27:2f:f3:f8:61:bf:9d:b5:ef:83:c7:
37:cd:5a:c3:d8:fd:d9:6a:ea:44:ac:ff:2d:76:f0:67:6e:1b:
25:ce:d9:d7:29:75:b4:9d:88:7d:9d:9e:13:62:59:3a:cd:f1:
be:f3:1e:85:2f:b7:e8:b5:0c:74:d9:6b:50:10:55:42:8f:b5:
db:1f:bc:87:e4:01:74:97:e9:34:38:e7:bf:f9:33:7d:11:7c:
e8:36:8d:06:b2:9c:19:24:e8:c4:7e:af:cc:0e:2e:c8:7d:18:
c0:1d:d2:3b:04:39:d3:fe:f5:60:4e:e9:12:a7:11:6d:9c:58:
ff:6b:d4:75:0a:a3:6d:9e:95:39:8b:84:3e:08:de:8c:a9:59:
ef:2f:0e:d0:73:bc:75:20:b6:3e:11:0e:23:6c:b2:12:0d:ed:
a6:5e:77:0e:32:f5:a3:f0:9a:df:a0:dc:0f:09:ba:d3:2e:ad:
7a:60:94:e9:36:dd:61:bf:8d:62:82:f1:86:6c:62:14:a3:60:
94:71:4e:35:39:ff:f7:2e:3f:78:69:85:45:ec:38:3b:07:88:
64:a0:ff:22:70:72:18:ce:0d:7c:9a:d5:7d:f6:37:be:37:bb:
bf:52:1f:4c:e6:42:b1:65:00:d5:49:43:0c:79:00:a2:17:32:
ef:e3:8d:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:17 2024 by rpki-client on console-fra.rpki-client.org