Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67230AD0E46B11EE8DA243BF775412E6.roa
File: 67230AD0E46B11EE8DA243BF775412E6.roa (raw, json)
Hash identifier: GLK7+ftgur8W31OVL2q1qDTb+6hLoMHECaSAp4XQSm8=
Subject key identifier: 9B:47:7A:E5:F2:1B:76:5D:1F:B2:19:DC:9B:79:75:9B:4E:35:84:0B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A1E7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67230AD0E46B11EE8DA243BF775412E6.roa
Signing time: Sun 17 Mar 2024 14:34:04 +0000
ROA not before: Sun 17 Mar 2024 14:34:00 +0000
ROA not after: Fri 21 Mar 2025 14:34:00 +0000
asID: 139339
IP address blocks: 154.197.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41447 (0xa1e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 17 14:34:00 2024 GMT
Not After : Mar 21 14:34:00 2025 GMT
Subject: CN=65f6ff5c-3a24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:96:ff:9a:c9:09:64:d7:94:f5:4b:76:05:4f:
e9:c7:f8:16:31:f7:f9:3a:06:a9:03:18:6c:01:6f:
01:6a:ea:41:6f:5a:e5:17:ae:ed:40:bb:05:c6:48:
54:d0:c3:a1:63:c6:6e:70:3c:ed:c0:ca:ec:3e:49:
e0:28:33:37:a1:fc:7d:27:aa:3b:46:ed:a6:e8:4c:
18:94:42:4c:d1:c8:22:fd:15:a5:74:7c:9e:e1:37:
36:9a:97:12:46:7a:9e:21:73:1a:34:e3:0e:bb:68:
7a:2c:80:65:4e:cb:f6:56:24:37:fa:fa:b0:a0:60:
a1:a9:11:a0:f0:03:a6:c4:00:90:8a:b1:23:d7:e9:
aa:d8:a4:6c:e3:c5:a0:0c:1d:f7:f8:29:91:46:51:
89:26:98:56:96:04:4c:0f:f5:36:3f:4c:62:57:40:
d8:80:be:0d:24:62:20:d3:09:a3:81:f9:f2:d4:c1:
68:88:b1:30:91:7b:a8:48:9a:e4:c9:61:37:8c:0a:
b0:78:7d:9a:c7:19:d4:b7:4e:32:eb:8c:97:9f:ba:
ac:02:02:91:5a:3b:d8:78:f2:71:b7:db:e6:14:b2:
e6:d1:e7:4e:ae:a1:22:22:12:c5:dd:64:19:ce:ca:
26:3c:2c:aa:7c:c8:dc:be:f8:a5:a1:92:a4:26:1e:
24:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:47:7A:E5:F2:1B:76:5D:1F:B2:19:DC:9B:79:75:9B:4E:35:84:0B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67230AD0E46B11EE8DA243BF775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.47.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:b3:e6:c8:48:b1:75:eb:f9:10:69:29:28:e2:79:4a:5f:11:
26:11:e1:29:fc:0d:b7:0d:07:94:42:53:e8:aa:87:16:17:8c:
84:f0:f4:3e:d2:71:55:b1:25:a5:cb:8e:97:33:68:b1:27:32:
3f:00:88:d7:1d:e6:3e:d7:0f:39:22:6d:67:62:4a:c7:d3:ad:
c5:51:4d:65:89:1f:7e:15:e8:7e:13:da:d8:35:8a:1c:39:c5:
ac:c2:3f:cb:9b:b6:21:68:2a:ef:f7:e0:f6:d0:e0:4b:3f:44:
8c:79:97:30:88:42:df:3c:ea:d2:23:06:79:fb:16:64:00:cb:
06:19:6c:e9:73:c0:df:09:86:b2:22:79:d0:01:a2:62:bd:27:
85:f4:85:f5:4e:fc:0c:9c:b3:29:1a:16:79:18:73:99:34:55:
1a:a8:de:03:98:eb:38:34:f0:b0:e9:2d:eb:7b:4c:b7:59:9f:
9d:09:7d:a4:53:14:c8:99:09:1f:1d:7c:e4:a6:ab:7d:1b:a2:
fd:d9:41:a5:d0:92:34:28:6b:1a:c1:bf:65:d1:9b:0e:9e:49:
24:37:52:d8:2e:fe:7a:cb:9a:ce:07:ad:b8:90:cd:07:69:85:
b3:e7:7e:19:40:f0:a8:c4:f2:4a:85:1b:8b:77:99:68:f0:7d:
d6:30:84:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:26 2024 by rpki-client on console-fra.rpki-client.org