Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/470BFA8CE74411EE9A0B33B1775412E6.roa
File: 470BFA8CE74411EE9A0B33B1775412E6.roa (raw, json)
Hash identifier: Q2cOGFmRhbQTsm5JwtfX8dvXhxRiqlNEx3RHruLCSyA=
Subject key identifier: 7E:14:0A:18:E3:A3:E8:20:9E:0B:0C:60:BF:0E:D2:34:AE:14:26:1A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A3F6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/470BFA8CE74411EE9A0B33B1775412E6.roa
Signing time: Thu 21 Mar 2024 05:31:33 +0000
ROA not before: Thu 21 Mar 2024 05:31:30 +0000
ROA not after: Tue 23 Apr 2024 05:31:30 +0000
asID: 44559
IP address blocks: 154.220.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41974 (0xa3f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 05:31:30 2024 GMT
Not After : Apr 23 05:31:30 2024 GMT
Subject: CN=65fbc635-6826
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:13:d9:ea:b4:79:de:d5:6a:6c:30:e6:f5:90:
fb:5e:03:b8:03:42:60:d7:17:bb:b6:95:82:c5:08:
c1:87:c0:1a:97:a3:99:a8:d4:3a:5c:41:e4:fd:e3:
9a:ed:c5:85:6e:8b:17:6b:42:c9:0a:5d:f6:0d:79:
5c:77:68:da:93:24:92:79:c1:56:3e:4d:bb:85:6b:
1c:a6:cf:f0:a5:b8:2c:c6:8a:6a:b4:35:26:e8:33:
d3:7f:d8:51:da:a8:fb:99:84:f8:9c:c8:6f:ab:6c:
a7:be:28:f9:30:b2:8c:79:8d:d3:0b:7e:23:93:c7:
de:f5:22:60:d1:ad:3e:29:68:4c:a5:8c:86:55:36:
67:1e:aa:0f:df:a1:30:b7:d6:fa:89:bd:ea:e3:52:
93:1a:c9:52:6d:2b:bd:78:78:ee:8e:22:24:b3:11:
6b:72:e3:90:3e:9b:fc:8e:cf:b4:d9:d9:28:23:ba:
4f:cf:3f:73:d0:45:b9:fe:74:3f:06:3b:07:7c:aa:
bc:79:f1:36:1a:86:83:f5:21:14:54:19:41:87:9c:
8b:02:42:fe:6b:3a:29:90:11:13:d0:71:f2:b4:31:
53:bf:38:ee:3f:62:75:0b:78:6a:82:61:b2:85:8a:
a0:32:93:dc:4e:92:0b:91:3a:c2:f8:a7:f7:03:06:
92:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:14:0A:18:E3:A3:E8:20:9E:0B:0C:60:BF:0E:D2:34:AE:14:26:1A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/470BFA8CE74411EE9A0B33B1775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.190.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:3e:59:84:cf:1a:bf:6f:74:82:45:95:4f:79:34:f1:ab:c0:
b8:9a:c0:6c:fa:44:ca:4b:ad:01:68:ad:d1:68:ab:b6:21:fc:
0b:24:3d:58:1a:e8:56:04:ad:2d:f6:0a:0f:ee:c2:36:3d:b4:
82:bd:b8:07:f2:ad:47:d0:be:12:2f:b9:03:ca:00:9d:a1:3e:
c9:9a:53:61:af:4c:e7:4c:ff:38:e0:b0:d1:b3:d3:75:12:6e:
df:b4:40:b1:87:93:4d:ad:d7:9e:6c:bf:b9:c1:99:db:56:9b:
21:09:37:a0:05:ce:23:7f:ab:ea:fb:d5:65:25:08:39:f4:22:
11:71:01:f1:59:72:7e:bb:f4:b5:50:0d:dc:bd:a2:5f:d3:67:
f0:c8:0d:d3:b6:17:a6:95:a6:13:8d:ec:08:a8:97:be:4c:4d:
80:f5:c9:58:c6:c1:13:8f:03:17:f7:9a:f5:35:74:5b:01:61:
4b:bd:23:d9:82:79:7b:19:33:20:85:86:0c:f2:46:6d:04:92:
2a:df:59:8a:b6:5a:36:e2:f0:6b:9a:24:cb:03:fb:cc:d3:1a:
2a:06:34:3d:6b:a0:c8:aa:19:08:d9:56:a6:79:32:02:32:fc:
a5:a9:9b:b3:58:74:3a:6f:88:d3:28:68:74:19:7d:d2:65:ee:
17:5b:af:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:18 2024 by rpki-client on console-ams.rpki-client.org