Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/61402BD2E74711EEB2AD42C9775412E6.roa
File: 61402BD2E74711EEB2AD42C9775412E6.roa (raw, json)
Hash identifier: R2rs+bA0Oob9LReBwc2Ruvqb+5tK5sbFP9Bxy24QdkI=
Subject key identifier: 9C:16:80:8E:E5:AD:E6:20:84:F2:5E:E9:06:50:79:04:49:1B:5D:83
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A413
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/61402BD2E74711EEB2AD42C9775412E6.roa
Signing time: Thu 21 Mar 2024 05:53:46 +0000
ROA not before: Thu 21 Mar 2024 05:53:42 +0000
ROA not after: Tue 23 Apr 2024 05:53:42 +0000
asID: 44559
IP address blocks: 154.220.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42003 (0xa413)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 05:53:42 2024 GMT
Not After : Apr 23 05:53:42 2024 GMT
Subject: CN=65fbcb69-1b47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:76:21:d3:e3:63:8b:3e:41:51:81:b7:2f:cf:
6e:72:ae:47:45:79:1a:68:d5:0f:0f:30:69:42:03:
69:d9:de:b2:e5:bd:b9:f6:0f:a1:96:ca:8e:29:e2:
d2:5c:7b:b8:de:57:7c:48:75:10:e2:0c:ee:a7:81:
fc:33:72:85:74:01:0c:4b:73:58:24:f0:07:e3:6e:
31:60:dd:e7:7c:00:28:88:1d:98:0b:2e:e3:5a:f7:
7e:fa:4e:98:e0:23:1b:30:6e:89:43:6e:c8:b0:b8:
a2:87:d6:fa:9b:d1:0b:df:ff:17:ff:1c:b1:3d:91:
a6:86:8b:6a:bf:c8:cd:57:46:e5:a9:56:db:da:25:
0d:68:26:c7:51:65:f7:62:2d:15:eb:ad:96:03:bd:
38:26:5f:68:3c:e0:d3:8b:70:2b:ee:13:53:3c:c0:
07:b8:91:40:66:39:d1:46:b3:d1:7d:c6:46:5b:61:
9f:e1:dc:b0:0d:19:21:71:0d:ee:54:51:7e:47:10:
ba:ca:bc:92:1a:fb:26:3f:2d:6b:61:78:b0:66:fa:
8e:69:a5:be:7b:6a:5a:e0:5a:61:29:fe:00:52:52:
53:f2:4c:d5:eb:a8:01:e5:a1:66:9b:14:8d:8c:60:
05:ea:0b:9b:85:93:fe:55:7e:c2:fc:db:3d:cd:07:
61:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:16:80:8E:E5:AD:E6:20:84:F2:5E:E9:06:50:79:04:49:1B:5D:83
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/61402BD2E74711EEB2AD42C9775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.175.0/24
Signature Algorithm: sha256WithRSAEncryption
09:29:b0:76:33:32:82:80:c6:24:26:db:ee:c2:6c:7f:e2:60:
14:12:e4:fd:1e:33:eb:26:dd:3c:74:d1:75:ab:43:1b:56:0a:
db:d3:f4:25:aa:11:25:f5:15:e1:b3:73:53:bc:17:80:50:e5:
10:0b:55:3e:32:45:40:d8:d6:d6:a3:d9:09:7f:2e:bc:34:be:
9e:39:49:29:bb:cb:8d:9e:d4:46:27:d5:da:22:3b:bd:40:29:
72:0b:25:c7:d3:ee:ad:c1:c2:4a:06:e6:76:4b:4f:86:56:06:
17:3b:8c:32:43:fe:83:b4:c8:83:a0:79:ec:ad:98:89:e5:fc:
ea:36:de:02:a2:19:aa:58:ba:0d:79:26:22:0b:a6:2a:9b:d0:
24:3e:41:4e:8c:79:c3:d8:90:14:b5:15:07:c6:e9:40:cc:d1:
73:28:9e:7e:d5:85:7e:fb:85:08:14:ed:84:1c:f6:1d:34:c4:
de:d4:56:84:11:a5:24:b2:c6:60:6b:72:e1:8e:4a:00:87:ad:
71:75:4d:11:44:64:29:78:67:56:1c:37:e7:a4:af:af:c6:ab:
76:86:c5:e2:8d:e6:57:cc:4b:a7:f9:11:31:fc:b5:c0:d9:99:
64:3d:b0:0d:25:ef:6f:fc:8e:38:d1:74:57:da:1a:be:cd:8c:
31:71:8d:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:21 2024 by rpki-client on console-ams.rpki-client.org