Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4594BC52E75811EEA5786250775412E6.roa
File: 4594BC52E75811EEA5786250775412E6.roa (raw, json)
Hash identifier: CMM+OdNwgX2GgPXw0An9jRwznozFV8nf7Ajx+LjdU08=
Subject key identifier: FE:A4:E7:2B:51:40:C4:3A:0B:A9:97:DC:0D:F8:5E:7D:90:BB:3B:C2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A4B7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4594BC52E75811EEA5786250775412E6.roa
Signing time: Thu 21 Mar 2024 07:54:41 +0000
ROA not before: Thu 21 Mar 2024 07:54:37 +0000
ROA not after: Tue 23 Apr 2024 07:54:37 +0000
asID: 44559
IP address blocks: 154.211.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42167 (0xa4b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 07:54:37 2024 GMT
Not After : Apr 23 07:54:37 2024 GMT
Subject: CN=65fbe7c0-cc32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:0a:a3:6c:04:c5:5f:5d:c2:48:e3:27:c2:e0:
54:d2:be:fb:93:57:6d:86:69:c5:a4:ac:8a:ea:e5:
0c:e6:1e:42:16:ec:1a:7e:79:5b:08:0c:ee:d0:35:
68:dc:59:32:c1:d3:dd:73:a4:d8:03:e7:3f:6c:a2:
58:c6:f5:8e:8c:7d:6f:ad:e6:ba:88:69:a2:91:bf:
a0:a4:d6:7c:6a:27:2f:65:7d:fc:61:6c:96:3a:c3:
0e:28:6a:13:f0:3c:22:f0:d9:c7:69:d2:f0:63:db:
67:0e:57:a9:af:f7:10:dd:73:24:ee:b7:fe:67:dd:
b9:59:66:b2:aa:58:76:70:53:15:a1:76:84:2c:a6:
8d:2f:4c:64:fe:06:e5:a1:cc:7b:63:c9:51:d3:e0:
1f:a1:07:5b:d8:12:0f:a1:6e:87:b9:87:74:2b:96:
d4:f2:e0:8f:a9:44:92:f1:7f:72:23:10:38:d8:c7:
40:c1:a2:4f:dc:01:61:fd:0e:fc:63:92:bc:d3:8f:
3f:0e:19:4e:56:85:f1:28:b0:a4:b2:be:a6:10:c7:
3c:3d:9f:81:a1:51:2e:92:ac:fc:05:a9:62:60:a6:
a8:ef:49:f8:62:e8:09:58:f3:0b:9c:1e:c0:f5:ca:
c5:43:cf:1e:67:88:e2:6e:82:fc:76:c2:d5:96:c9:
a5:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:A4:E7:2B:51:40:C4:3A:0B:A9:97:DC:0D:F8:5E:7D:90:BB:3B:C2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4594BC52E75811EEA5786250775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.61.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:f0:a3:82:a2:b3:1f:76:24:51:be:44:09:7b:58:31:c5:74:
65:ac:d2:15:70:56:c2:ad:44:01:14:0d:75:ba:bc:ab:6c:27:
13:da:05:91:19:c2:ce:83:5c:05:39:8a:16:cc:95:96:7e:9c:
fe:76:8c:87:48:a4:31:49:94:01:cd:a4:7c:18:d8:18:d7:d4:
27:fb:0d:67:e9:34:fa:cc:25:a9:2f:44:e6:8f:50:26:ac:c3:
e6:63:ec:b5:09:3f:0d:2c:14:2f:13:06:cb:86:96:42:a1:44:
7c:d7:bb:8b:f9:97:a7:22:38:2d:3a:10:4a:3c:99:8d:70:90:
d5:f1:2d:b2:e9:17:a5:3c:3f:ea:6a:ba:94:73:ac:c8:f6:6c:
5f:d8:71:8a:2b:3e:51:89:bc:4b:16:17:1e:ba:d8:d5:8c:4e:
73:a6:78:14:b6:d2:c5:39:2d:91:bc:cd:6f:6c:bd:e0:d4:83:
76:cf:e3:92:fe:80:be:a4:42:35:f7:30:ff:50:55:59:f6:03:
66:cd:f4:48:b4:d0:6d:87:a7:9f:95:69:0a:a7:90:36:f6:cc:
54:cd:a2:af:1a:8f:09:cc:3f:85:6d:57:8f:e3:5b:4c:b6:a9:
e5:f8:f4:ca:6b:62:83:d7:b3:35:17:14:7e:00:60:03:94:68:
57:fc:3c:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:17 2024 by rpki-client on console-fra.rpki-client.org