Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65EC77A4E75F11EE911C6687775412E6.roa
File: 65EC77A4E75F11EE911C6687775412E6.roa (raw, json)
Hash identifier: yfnJFnd0DHmY90mf2rvWHTOd8TfomTCjCFqXoJ8eK4w=
Subject key identifier: D1:C4:C8:3E:D3:E1:65:5F:A7:D1:DC:98:99:3D:C0:AC:27:65:70:49
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A4FB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65EC77A4E75F11EE911C6687775412E6.roa
Signing time: Thu 21 Mar 2024 08:45:41 +0000
ROA not before: Thu 21 Mar 2024 08:45:38 +0000
ROA not after: Tue 23 Apr 2024 08:45:38 +0000
asID: 44559
IP address blocks: 154.222.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42235 (0xa4fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 08:45:38 2024 GMT
Not After : Apr 23 08:45:38 2024 GMT
Subject: CN=65fbf3b5-47d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e0:2c:34:2c:a8:d3:d5:8e:33:0e:ed:ab:a4:
54:66:6e:84:99:bf:8a:d5:34:3a:92:f4:db:23:9b:
c7:77:31:d0:be:1e:0d:b4:f1:9d:06:91:7e:db:91:
22:6b:74:32:76:29:28:42:1d:aa:ef:11:e8:66:40:
9b:c4:ef:04:89:b0:3b:d5:6f:96:d0:be:28:07:7d:
8b:5c:32:a7:31:4b:7f:e8:0d:ae:f7:16:66:26:74:
77:f7:48:3b:36:aa:aa:41:91:d4:b8:85:88:28:74:
a3:bb:58:ec:d7:12:85:7e:6c:70:f7:b6:79:04:37:
4d:ca:2f:92:82:ca:64:ee:78:b6:41:4c:d1:0e:c3:
e4:c4:15:82:eb:02:49:f0:51:8a:05:32:f5:c5:9f:
d9:a2:41:42:0e:1b:33:81:56:3c:6d:cd:74:ac:90:
bd:c2:c7:8a:18:2a:ad:68:ac:f5:7e:8c:ea:28:7c:
a7:4c:3b:f0:b9:5a:7d:c5:8c:b2:39:74:d7:75:a4:
9c:24:dc:86:ce:1f:b6:50:35:1f:02:88:fa:55:38:
99:c2:a0:7d:db:eb:ed:87:42:8e:74:4b:81:f6:97:
ba:22:3a:a2:b3:8a:e6:7f:72:7a:ef:b8:82:e2:b2:
98:0a:ea:0b:96:1e:6a:25:2e:8d:ca:ee:1b:5d:43:
04:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:C4:C8:3E:D3:E1:65:5F:A7:D1:DC:98:99:3D:C0:AC:27:65:70:49
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65EC77A4E75F11EE911C6687775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.27.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:58:1b:84:c6:43:8a:82:15:5a:3b:62:39:fb:35:d8:ae:6a:
58:9b:dc:cb:95:57:f1:5d:b9:f9:e4:7e:e2:a2:97:43:c9:5e:
86:a1:f1:b8:21:f0:72:74:ea:9d:c5:cc:e6:cf:d4:e0:a5:18:
0e:61:50:21:3f:16:a1:9f:80:7b:11:4e:e7:9c:bc:64:3a:9b:
b7:67:a7:52:af:90:03:f5:84:53:31:5d:9b:22:94:57:43:ac:
82:30:b0:37:d1:97:b7:33:cf:0a:7e:73:38:34:7a:59:99:62:
f2:67:fc:79:12:14:88:9b:66:27:7e:ac:eb:1c:37:67:30:29:
aa:ca:b4:0b:4b:ad:86:fd:57:8e:4f:18:7d:e3:96:e0:57:73:
22:59:01:04:52:20:e1:19:ba:33:b5:2e:57:b6:0b:55:ac:eb:
61:71:2f:97:26:3c:a8:87:58:55:49:7c:d9:b4:6c:9f:3f:d2:
0c:02:60:0d:14:61:a0:92:b9:ab:d0:3d:75:32:79:3e:43:e8:
f5:80:44:4d:8c:85:37:49:cb:10:45:7b:69:15:b2:17:5e:cb:
4e:33:51:60:7a:32:d4:59:c5:9c:29:0d:f9:fc:b9:45:34:5a:
ca:28:7a:3d:c0:1a:ba:42:aa:55:5c:36:1f:62:62:30:27:74:
4c:6b:9f:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:20 2024 by rpki-client on console-fra.rpki-client.org