Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/494C1236E74F11EEBAC25089775412E6.roa
File: 494C1236E74F11EEBAC25089775412E6.roa (raw, json)
Hash identifier: tXEcZ6kep8mLQymPm/0es6ILmHbeNzvw7LGhklMMPJU=
Subject key identifier: 44:AE:EE:34:CB:37:B3:32:E9:6F:E5:DE:23:81:A7:62:D2:58:0E:DB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A45F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/494C1236E74F11EEBAC25089775412E6.roa
Signing time: Thu 21 Mar 2024 06:50:21 +0000
ROA not before: Thu 21 Mar 2024 06:50:18 +0000
ROA not after: Tue 23 Apr 2024 06:50:18 +0000
asID: 44559
IP address blocks: 154.220.137.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42079 (0xa45f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 06:50:18 2024 GMT
Not After : Apr 23 06:50:18 2024 GMT
Subject: CN=65fbd8ad-784c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ba:70:d1:f8:42:1e:21:ce:35:b3:d1:02:93:
5b:60:c6:a5:c2:2f:04:b3:83:bb:d2:c7:7c:0f:4f:
44:fa:dc:48:ff:26:6c:0e:74:9f:5d:75:56:11:72:
08:2d:57:e1:70:ae:77:1a:7b:d8:98:6c:a3:a6:8d:
d0:76:11:9c:ed:0d:c9:e9:df:bd:d6:f1:e3:7c:e5:
27:84:43:c5:1a:27:bf:9d:e8:4a:8d:89:e5:63:cb:
d5:6f:0b:88:f4:09:1e:69:4e:f8:ff:73:30:30:6c:
af:dc:35:94:cc:5e:41:b2:a7:c1:80:e7:9b:c6:5f:
0b:ea:ce:e7:91:fc:f9:64:47:20:d3:fa:b6:28:5c:
fa:cb:85:9f:f2:f5:1c:41:1d:17:78:c1:80:0b:cc:
88:7d:43:59:c8:bc:59:64:bf:0b:f3:ce:2f:1a:ea:
f1:df:f0:1b:a4:5f:c1:84:c1:33:75:33:02:4a:11:
e7:cc:0c:0a:79:a1:6d:3d:e3:8e:32:77:c6:1c:43:
27:16:39:3b:49:3a:d9:1c:f0:d8:6e:93:95:02:83:
96:b2:c8:97:d0:70:65:ed:bd:2c:11:7c:75:33:97:
bf:77:8f:b2:af:fe:52:dd:94:e0:a3:15:f7:ae:bc:
8c:19:55:9d:8d:41:45:86:11:3e:3c:9f:ab:c7:37:
68:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:AE:EE:34:CB:37:B3:32:E9:6F:E5:DE:23:81:A7:62:D2:58:0E:DB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/494C1236E74F11EEBAC25089775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.137.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:86:8d:26:5a:d9:85:d4:77:c7:eb:e2:6e:4f:e2:39:e0:cd:
6e:0a:e5:4c:ac:22:20:3c:a9:ce:66:f3:51:e9:b4:ba:c7:f4:
6d:f7:5f:25:54:56:a5:38:2b:ec:93:cd:7a:37:8e:db:44:7e:
f8:7b:fc:4f:8d:6a:59:d8:55:ff:40:88:09:a7:3f:c5:52:a5:
85:24:ca:09:e4:7c:72:0c:65:7a:00:a5:93:f0:b3:14:aa:0a:
a6:a8:15:44:2b:ed:96:be:a5:c5:cd:74:f9:e4:ff:f0:64:48:
02:9c:9c:b7:4f:e5:2f:41:e6:b6:26:a0:8b:89:3e:a7:d3:dd:
46:e9:8a:2c:b6:1d:e0:98:71:03:48:08:08:f3:ac:85:27:80:
bf:88:d4:a0:0c:8e:18:be:c5:20:52:d3:59:17:0f:0b:e1:c9:
4a:1d:0c:73:bd:d9:38:85:a8:c2:9e:99:1b:00:a8:5c:69:52:
06:c8:6e:77:1c:e4:d0:4f:2f:bf:50:11:ce:1d:89:b7:97:63:
8f:d1:77:cb:0f:a3:0f:76:08:c6:16:88:c2:5f:87:99:0d:4d:
90:dd:94:1f:c7:51:b2:8f:fc:d2:2f:d3:19:39:83:4d:fc:06:
a8:b9:8d:21:15:0f:f4:b2:de:23:3e:4d:b6:5d:3a:46:03:5b:
07:74:ba:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:19 2024 by rpki-client on console-ams.rpki-client.org