Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B3D05B2E75111EE80BB2299775412E6.roa
File: 4B3D05B2E75111EE80BB2299775412E6.roa (raw, json)
Hash identifier: qsmaenPMNS5Zn80L5eEHFdIKGqckEuuRdzr8mk19Z+0=
Subject key identifier: FA:86:77:0E:4E:B9:2F:47:C3:CB:E6:67:84:C2:C6:F3:54:E3:A4:6E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A473
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B3D05B2E75111EE80BB2299775412E6.roa
Signing time: Thu 21 Mar 2024 07:04:44 +0000
ROA not before: Thu 21 Mar 2024 07:04:40 +0000
ROA not after: Tue 23 Apr 2024 07:04:40 +0000
asID: 44559
IP address blocks: 154.218.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42099 (0xa473)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 07:04:40 2024 GMT
Not After : Apr 23 07:04:40 2024 GMT
Subject: CN=65fbdc0b-7fc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5c:33:00:68:52:6e:bc:1b:3d:f5:9b:0b:ca:
04:19:42:1f:1f:7f:c7:17:28:7a:a8:06:a9:47:e1:
9b:9e:c5:8a:01:f5:f4:60:58:df:e2:8b:aa:b1:6d:
b0:7c:ad:7e:aa:59:90:3d:4b:a7:b5:ae:6d:41:ad:
a6:43:67:da:45:9c:bd:80:ff:f1:7a:63:3e:7b:cf:
3e:2e:9d:56:03:15:5f:14:b6:ab:6a:9a:22:08:42:
94:eb:8b:84:ae:60:0a:9e:5b:8a:f3:13:70:26:f0:
52:21:3f:a0:58:fc:01:7d:49:e1:f7:9e:7e:05:a7:
8f:46:88:5e:8d:75:a4:fc:1e:96:bb:7f:1d:f5:a2:
5c:e4:b4:4c:db:44:a8:4c:99:bd:fe:07:93:56:60:
f6:7c:1e:8f:fc:e8:ee:5e:a2:c2:c3:88:a0:e2:ff:
88:bc:53:8d:2a:87:9a:58:93:39:b9:07:b7:2b:b4:
b5:1a:f2:e3:f2:bd:a6:92:56:93:ca:85:2e:5a:2c:
ee:85:da:41:01:91:20:f3:0c:9e:e9:ff:a8:22:73:
21:d2:05:d1:22:42:1c:c6:ca:b3:94:61:f1:9e:fd:
6e:9d:7a:96:7d:b1:c9:bf:f4:be:39:17:32:cd:fa:
c7:83:08:3d:23:c4:2b:05:13:1e:f1:03:62:36:83:
d1:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:86:77:0E:4E:B9:2F:47:C3:CB:E6:67:84:C2:C6:F3:54:E3:A4:6E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B3D05B2E75111EE80BB2299775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.63.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:14:cb:81:68:fd:e6:35:ca:d4:b9:92:8f:ed:8e:e7:80:2c:
2c:74:2a:f9:78:0c:75:60:b6:67:8e:4f:0a:27:39:4a:b3:44:
a1:72:0c:22:a0:88:4d:1f:26:aa:59:ef:22:64:e7:32:fa:3d:
c7:02:3e:2f:34:ea:d4:b3:17:6a:3f:50:6a:1b:44:b7:71:c7:
db:25:26:72:34:a8:90:e2:c4:9a:40:35:15:6a:94:23:2c:64:
31:c9:8f:d9:46:87:3f:e5:66:c6:b4:b5:37:b2:12:4d:20:c3:
67:ac:47:d5:1a:10:c2:00:df:f1:45:9d:f7:2f:86:6a:f5:39:
20:50:4d:40:80:ce:18:15:29:6c:6c:ed:15:4c:8f:66:be:c6:
e5:10:b1:5c:64:d4:63:e2:30:66:2f:ac:30:19:25:53:fb:f9:
9a:62:fd:54:88:70:01:53:9f:10:60:c8:0d:40:51:a9:ef:7e:
76:72:56:b7:39:c4:43:92:7c:1d:9d:07:03:97:5c:e5:60:7c:
ca:2b:de:23:4a:42:56:39:48:8d:52:ed:9d:ca:f8:32:59:1a:
7d:49:60:f4:c1:d9:6f:a8:e9:a6:1a:7f:96:73:3d:ab:04:16:
0d:45:9a:24:ea:af:91:52:98:7c:e4:81:f5:2a:cd:0c:f8:3e:
bc:77:85:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:19 2024 by rpki-client on console-ams.rpki-client.org