Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/721E6E60017211EFA3118629017001B1.roa
File: 721E6E60017211EFA3118629017001B1.roa (raw, json)
Hash identifier: 99Tp/Rwb5SGk83+N48L+ExmdQlrWxLuQU2AQMJ1mI5g=
Subject key identifier: ED:0D:EB:FD:79:EA:F9:FD:D0:54:06:0B:F1:F0:95:0A:23:9E:B9:32
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AF44
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/721E6E60017211EFA3118629017001B1.roa
Signing time: Tue 23 Apr 2024 13:07:32 +0000
ROA not before: Tue 23 Apr 2024 13:07:29 +0000
ROA not after: Fri 25 Apr 2025 13:07:29 +0000
asID: 28458
IP address blocks: 154.212.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44868 (0xaf44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 13:07:29 2024 GMT
Not After : Apr 25 13:07:29 2025 GMT
Subject: CN=6627b294-92e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:28:66:61:46:98:53:55:60:7b:02:4e:73:83:
ef:f4:01:ef:23:17:fa:9f:50:b7:59:80:24:72:a0:
1b:71:85:c1:69:10:1c:36:c9:4b:56:d7:6e:5c:1e:
2e:33:b9:cc:40:65:2f:f4:28:98:16:85:bb:1d:79:
a0:69:01:be:73:60:d6:75:ae:84:2c:b5:7a:45:e1:
83:91:48:bf:44:94:1e:a6:31:f4:fe:01:a4:7e:c4:
43:55:df:88:d4:34:96:46:99:10:1e:bb:74:c4:ca:
f0:f7:87:31:be:41:78:e1:26:08:d2:31:60:78:6b:
bf:1c:73:eb:d9:b4:dd:b0:25:70:7c:f1:05:45:a1:
ed:e6:13:d2:11:9a:39:77:f0:44:5f:68:a1:3e:26:
7a:bb:1b:c4:e7:89:a9:86:15:a4:c3:a8:45:05:2a:
77:ad:83:ac:be:2c:23:80:0c:c8:5d:38:0f:1a:7c:
e0:b7:24:7d:94:d2:11:73:21:da:d7:ac:72:c2:eb:
90:fb:9e:7b:52:aa:e3:2f:43:aa:34:21:f4:08:2f:
11:0f:29:67:39:56:a8:4c:d6:f6:bb:fe:f7:23:8b:
2b:d9:da:8a:fd:11:06:fc:97:47:0a:65:ad:d6:f2:
36:cf:37:fb:d9:f9:df:74:9f:b0:be:6a:71:24:58:
be:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:0D:EB:FD:79:EA:F9:FD:D0:54:06:0B:F1:F0:95:0A:23:9E:B9:32
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/721E6E60017211EFA3118629017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.5.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:27:88:bd:97:49:b7:73:a3:2a:ce:e3:41:a4:07:1f:13:0e:
28:2d:ad:0a:95:58:ac:6f:8e:29:c9:63:2f:68:3b:a9:55:a4:
86:50:37:9f:d0:80:a4:50:9e:d0:5c:11:5b:df:ef:cb:bc:19:
77:c5:ed:84:f1:dc:32:e4:3d:c6:24:16:4e:d5:fe:9c:a3:d9:
0a:ef:fe:fb:50:de:43:41:c1:66:45:d5:56:f8:47:f8:5f:81:
86:4a:77:41:a1:d1:38:f7:85:1f:a6:ac:e2:36:ae:f1:25:74:
b4:79:23:b4:51:ce:cb:52:12:e5:e0:50:4b:10:73:e4:c2:8c:
83:b5:76:25:1b:80:62:68:39:bd:f1:22:c5:88:43:62:0f:49:
2d:91:7d:4d:ae:fb:8c:09:48:da:71:4c:24:10:77:3e:5d:e4:
58:ce:0c:51:02:26:40:cf:93:ff:32:81:7e:34:cf:d2:36:9c:
94:f0:0a:0b:47:7a:79:dd:ca:93:20:23:ff:35:54:a5:6f:ee:
c7:5e:4b:13:7f:8a:b0:71:50:86:01:61:45:88:9f:4a:3c:32:
79:77:2e:a0:6a:f7:1c:0e:d7:a2:38:6d:ae:c8:63:e2:b0:30:
e8:12:0f:ff:ee:39:a5:a3:db:4f:17:fe:02:25:46:5b:29:ed:
31:6c:c0:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:58:56 2024 by rpki-client on console-fra.rpki-client.org