Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/522D77CEEFF511EEA3D252B7775412E6.roa
File: 522D77CEEFF511EEA3D252B7775412E6.roa (raw, json)
Hash identifier: KTNJuYYdIMXYU92r/XP1iUqkzFyhSU9iKeMGFdKwzuc=
Subject key identifier: BB:B7:1D:A4:89:FE:A6:F4:9E:7C:C5:30:E4:B4:B9:65:C1:C6:3E:F7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A7F2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/522D77CEEFF511EEA3D252B7775412E6.roa
Signing time: Mon 01 Apr 2024 06:59:02 +0000
ROA not before: Mon 01 Apr 2024 06:58:59 +0000
ROA not after: Tue 07 May 2024 06:58:59 +0000
asID: 63139
IP address blocks: 154.223.22.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42994 (0xa7f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 06:58:59 2024 GMT
Not After : May 7 06:58:59 2024 GMT
Subject: CN=660a5b36-0c3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a4:8e:70:65:37:2d:26:47:28:14:74:54:05:
61:6c:93:e9:9b:a1:c4:b9:30:88:f8:9f:e9:4d:6d:
3f:17:b7:82:08:c6:1b:1f:35:f9:5a:6b:59:1e:0d:
df:45:15:fa:ed:e6:1c:f3:1c:1b:a2:52:9d:3d:3a:
ff:f7:1b:15:1e:f1:29:40:21:20:6f:be:12:75:19:
be:b7:2a:ac:c7:65:90:04:cb:2b:4c:c8:86:0f:df:
ef:9a:db:4f:84:69:82:4b:77:d1:06:23:35:87:53:
b7:38:df:8b:80:d7:43:d1:10:61:d5:34:93:d5:8f:
2b:37:3b:6b:07:75:fb:ee:bc:17:04:ad:77:19:f0:
32:08:1d:78:b8:fa:76:71:3b:d3:d9:36:a9:dd:82:
1f:0e:4a:42:60:a1:60:c1:f5:86:79:02:7a:21:b4:
b6:96:22:9a:f9:1f:28:84:88:73:44:76:79:62:51:
48:96:98:26:ba:76:80:0d:29:c2:5c:5f:c8:e3:b6:
c3:d1:30:8d:2c:2e:bd:cb:69:06:0b:e9:ca:9f:87:
c5:9e:11:1a:c7:6c:fa:07:55:0f:b9:4a:90:3c:3d:
1f:19:8b:0c:dc:10:39:2d:2f:f7:d4:d8:54:5b:e8:
2e:4a:0e:c2:fe:e8:bd:47:c1:08:30:37:e9:57:f2:
54:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:B7:1D:A4:89:FE:A6:F4:9E:7C:C5:30:E4:B4:B9:65:C1:C6:3E:F7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/522D77CEEFF511EEA3D252B7775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.22.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:22:a6:96:49:5b:7f:29:d2:8d:b0:53:29:ba:db:06:04:22:
d3:a8:74:d5:10:e2:18:4c:89:47:56:1c:43:50:d1:17:fb:a0:
94:be:dd:b2:3f:11:df:15:12:22:bf:f1:0e:86:7f:62:a9:75:
61:8e:06:2e:e5:9e:26:07:51:bc:e7:56:a8:f4:8d:07:88:ee:
40:a7:16:f7:ec:aa:81:3e:14:c3:1b:51:98:c7:00:47:32:df:
94:0c:13:58:6e:5c:f7:05:fc:80:cd:2a:05:73:29:d6:f5:bd:
f9:86:68:49:ed:7a:3d:eb:cb:25:10:35:a0:a5:b4:70:bc:f3:
7c:89:5e:2e:71:e5:9e:67:4d:df:59:94:9c:d3:a7:31:d2:9e:
e0:d2:fc:5e:d3:c3:8a:e9:d7:a4:35:f4:9d:39:5b:12:15:25:
4f:04:26:8b:fb:75:12:05:69:b8:e5:a7:e7:f4:3d:e0:d5:72:
33:53:4c:63:75:7c:0d:cb:9a:cf:ea:0c:f0:62:88:34:c7:51:
ec:df:3a:98:07:5a:7d:d8:a7:4f:64:74:b3:fe:6e:89:c2:9c:
6d:25:b5:89:f0:c4:d8:05:6b:15:98:3d:98:2f:6e:18:3f:30:
cb:f9:e3:72:2f:01:82:10:b6:4c:5d:b1:6e:bf:88:45:fc:e1:
05:12:29:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:09 2024 by rpki-client on console-ams.rpki-client.org