Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/47B42D4CE74E11EE9EB05180775412E6.roa
File: 47B42D4CE74E11EE9EB05180775412E6.roa (raw, json)
Hash identifier: wUCVzSoBGgDrzFIVZ2c2dsWaOLpKCGiDsCoS0r391ow=
Subject key identifier: C6:6B:74:DF:70:FE:8D:97:D9:4C:D6:ED:35:30:8A:36:5B:7A:D8:53
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A455
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/47B42D4CE74E11EE9EB05180775412E6.roa
Signing time: Thu 21 Mar 2024 06:43:09 +0000
ROA not before: Thu 21 Mar 2024 06:43:06 +0000
ROA not after: Tue 23 Apr 2024 06:43:06 +0000
asID: 44559
IP address blocks: 154.220.142.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42069 (0xa455)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 06:43:06 2024 GMT
Not After : Apr 23 06:43:06 2024 GMT
Subject: CN=65fbd6fd-a460
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ad:3d:27:fa:41:8b:e3:53:cd:73:20:d3:5b:
d1:e8:85:0e:49:e5:21:be:ee:38:b4:bb:0c:39:ea:
af:23:e2:0b:f2:4e:85:87:b0:dd:77:37:bc:b1:66:
d3:54:0d:1a:58:5a:bf:e3:0e:4d:f1:97:79:a4:e2:
a2:f9:4e:31:89:9f:d6:b0:be:99:b6:2f:67:64:9e:
28:57:0d:3c:35:0d:28:2d:98:c6:7f:b0:bd:ae:cf:
3e:86:9a:f8:ff:2d:bf:b7:06:d6:27:f7:81:c3:29:
1b:e8:58:7f:6d:3e:6b:b9:64:fb:b6:c6:d3:d0:3a:
4b:ea:e9:3b:e2:47:15:9b:9c:d5:c2:51:a0:12:54:
68:0d:d0:69:10:87:71:b1:c1:84:0e:ec:af:1e:f6:
a5:f7:0f:c9:f2:d6:dc:f7:34:7e:c3:25:79:a6:6c:
17:36:a8:c7:32:7b:eb:68:ea:84:9e:bc:8a:c4:59:
23:81:7e:83:ec:38:5b:04:4e:3e:22:e3:d2:57:6f:
4d:9e:a8:9c:13:e4:18:52:1c:b1:e1:ef:f2:b7:1a:
ad:a2:cd:dc:6a:51:01:f0:82:b7:ca:fd:34:cc:83:
33:08:1f:c1:b6:67:da:a4:71:05:87:b2:9b:f7:6a:
8f:7b:33:20:b0:4d:d8:7c:da:38:eb:02:34:67:92:
cf:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:6B:74:DF:70:FE:8D:97:D9:4C:D6:ED:35:30:8A:36:5B:7A:D8:53
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/47B42D4CE74E11EE9EB05180775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.142.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:eb:fe:7b:e9:49:42:92:ca:68:db:45:2f:c6:f2:1a:40:25:
62:e8:8b:c3:41:0a:99:07:7b:98:2c:c4:fa:42:a0:0b:08:44:
c0:d7:fa:87:81:ae:4b:76:55:24:29:43:9a:8f:1a:df:df:75:
67:39:ca:53:85:6a:41:39:a3:ef:1a:75:3b:5f:3b:25:99:e6:
bf:58:a9:d0:79:3a:3c:8f:dc:b5:05:e4:f6:d5:35:8a:be:95:
28:da:d8:4d:a1:0a:ba:20:0f:d8:68:ff:3a:be:cc:1b:33:1a:
bb:e1:9f:f6:66:0c:86:0e:5e:99:50:23:ae:ac:71:2c:f5:07:
7f:1d:6e:0d:b9:ef:45:ce:00:0b:7c:b5:9d:8d:78:7c:d6:ba:
63:a1:62:ab:15:87:29:9c:fb:9d:7a:44:9f:b8:df:ec:8f:09:
c0:e4:eb:eb:ac:c6:e5:3b:be:6d:cf:7c:e5:8a:5c:4b:ff:b6:
73:f4:3c:66:bd:5e:86:3d:4d:55:5c:23:7f:e9:43:08:66:d9:
c6:66:ca:17:2f:c5:03:5c:1d:9f:c5:93:b3:30:94:8f:95:44:
23:19:7a:c1:4d:1b:33:6e:77:27:8e:ce:bc:59:80:5b:c3:3b:
52:db:79:1e:c7:56:4d:40:e1:dc:12:db:d2:18:97:f7:3c:78:
99:80:38:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:17 2024 by rpki-client on console-fra.rpki-client.org