Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5C0EE7BCE73711EEB40E0D4D775412E6.roa
File: 5C0EE7BCE73711EEB40E0D4D775412E6.roa (raw, json)
Hash identifier: P2aoXKB4b3INmUn9mdg6JJ4cj2NrjvoY7Mu9QQDpWps=
Subject key identifier: E9:3A:33:5A:E4:37:1A:2F:CB:18:CD:87:B3:6C:7E:4C:51:94:E1:96
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A374
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5C0EE7BCE73711EEB40E0D4D775412E6.roa
Signing time: Thu 21 Mar 2024 03:59:05 +0000
ROA not before: Thu 21 Mar 2024 03:59:02 +0000
ROA not after: Tue 23 Apr 2024 03:59:02 +0000
asID: 44559
IP address blocks: 154.221.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41844 (0xa374)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 03:59:02 2024 GMT
Not After : Apr 23 03:59:02 2024 GMT
Subject: CN=65fbb089-f9f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:bf:d9:ad:ab:23:5f:82:d3:ce:e0:91:41:59:
fe:25:bf:b7:85:ca:37:7d:e4:f9:b0:82:23:e8:7c:
ce:24:fb:24:cd:27:6c:a9:10:75:56:3e:82:37:cc:
e2:e7:40:8f:8a:29:00:6f:bc:c1:ae:ac:31:cf:06:
5b:53:eb:2d:99:9f:0d:43:17:df:7e:c0:d2:13:80:
46:6a:2d:ce:f4:34:9e:59:cb:c3:6a:62:da:50:cb:
44:e8:fc:8a:c0:d2:73:b8:ab:85:0e:62:29:97:a5:
d7:1e:cc:b4:ec:59:4f:ea:8e:91:8a:36:0b:01:4e:
b1:1c:1a:0f:b8:82:ed:e6:99:82:94:11:e7:4f:7e:
c1:8d:2d:0d:5c:5e:f5:4f:8d:2f:99:45:12:7e:f1:
ba:34:94:c6:32:fa:dd:c7:54:e4:eb:b8:64:3e:ed:
92:1e:b5:94:5c:a9:f1:90:6d:b2:5b:d0:40:3a:6f:
7e:a0:9a:01:ea:19:20:98:a7:e9:47:1e:5c:db:b0:
2c:f5:b1:00:86:be:5e:2b:6c:5c:f8:90:10:dc:ed:
d0:95:ba:29:64:3e:ab:22:70:6f:c5:22:c8:9e:1d:
f2:a3:c6:7d:d2:d8:7f:08:c3:73:8e:f0:26:7f:a9:
28:4f:75:c3:7b:fe:5f:2f:60:47:df:d4:1b:80:a5:
b8:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:3A:33:5A:E4:37:1A:2F:CB:18:CD:87:B3:6C:7E:4C:51:94:E1:96
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5C0EE7BCE73711EEB40E0D4D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.255.0/24
Signature Algorithm: sha256WithRSAEncryption
75:53:44:aa:94:fd:fb:4c:e0:aa:b0:bc:56:eb:2f:d6:1d:7e:
14:53:35:b3:a4:c8:24:dd:b2:78:a7:a7:04:69:0c:e8:71:bc:
c9:be:b0:78:c2:3f:be:cc:b2:87:7a:64:f7:3a:95:84:c6:10:
aa:37:78:7a:03:4c:07:f3:7c:96:f9:7b:49:42:5d:67:60:e0:
a4:d4:86:24:1d:6c:33:70:ac:7b:84:77:44:2d:df:59:a2:65:
54:db:f0:f2:5e:c5:a9:e1:d0:e1:06:44:4c:6d:20:28:db:b5:
66:a1:73:35:48:4c:d3:f3:d2:02:d1:af:2e:08:07:fa:95:b5:
09:c7:59:ee:c9:54:b2:86:4c:9c:11:05:d8:42:e7:bd:4d:2a:
bb:e0:29:5d:65:67:52:01:81:5e:06:49:4f:0f:0a:db:de:28:
40:2b:0b:31:52:71:32:9c:81:35:e9:d5:7f:a6:69:cf:66:b0:
af:ee:06:5a:ce:67:a5:2b:95:69:3a:e7:c2:e7:0b:c1:2d:ff:
60:ef:d9:2d:ef:e4:f9:3e:e9:81:0b:fc:29:ac:2b:fe:a3:49:
3a:58:ff:5b:c1:9d:af:1b:3e:44:ca:75:23:34:4a:0b:01:f6:
dd:a5:64:50:77:de:0e:56:37:e4:ec:ff:49:92:e3:47:2f:80:
34:1f:5e:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:20 2024 by rpki-client on console-ams.rpki-client.org