Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7349F954E78611EEA7974BB6775412E6.roa
File: 7349F954E78611EEA7974BB6775412E6.roa (raw, json)
Hash identifier: kJYA3OwrVr0TknG/2MHw9cH3I59bV/dawV2y3lIA8NY=
Subject key identifier: BE:43:1C:8C:91:F7:45:7D:33:B1:23:A1:5A:79:E2:9E:A0:66:5A:77
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A5A9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7349F954E78611EEA7974BB6775412E6.roa
Signing time: Thu 21 Mar 2024 13:25:14 +0000
ROA not before: Thu 21 Mar 2024 13:25:11 +0000
ROA not after: Tue 23 Apr 2024 13:25:11 +0000
asID: 44559
IP address blocks: 154.210.72.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42409 (0xa5a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 13:25:11 2024 GMT
Not After : Apr 23 13:25:11 2024 GMT
Subject: CN=65fc353a-5e59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:5b:bf:77:17:c1:40:81:d5:1a:0b:97:c9:b9:
9f:0a:15:1b:51:ff:8f:e4:db:a8:8f:be:8b:41:f1:
e4:f2:c0:ce:bf:27:ee:e1:64:51:28:5a:59:93:3e:
7c:de:b7:50:5f:19:fb:94:b2:04:59:ac:79:67:44:
42:69:3b:bb:eb:1d:34:aa:30:ab:45:54:dc:4b:eb:
b9:cb:a4:ff:aa:5f:5e:a8:ef:f1:5d:1f:e0:a6:d6:
c5:d5:b9:a8:38:65:5b:48:f3:8b:6f:58:73:ad:30:
f1:98:84:84:6b:ef:6a:ed:8c:a0:0e:bb:71:cb:5b:
9a:3d:8b:0f:67:36:dc:ce:f2:f3:6e:20:30:b2:3d:
cf:47:e7:72:26:03:e2:f1:68:c0:39:14:11:fb:36:
0e:2b:40:72:68:6a:6a:f5:6f:0e:da:c6:ba:79:b4:
72:77:68:8b:7b:ff:81:f0:78:56:1c:65:1d:c2:c9:
19:c4:5c:ea:4c:3a:b7:c9:0a:59:1d:5d:f2:90:e9:
b4:3f:9d:aa:11:4c:db:bf:d8:b7:eb:df:42:56:98:
bd:50:7e:28:e9:e5:fe:40:71:34:fb:75:6b:fc:cd:
b9:dd:69:0d:15:c2:4e:1c:eb:51:cc:cd:ed:37:a3:
d5:01:12:15:b3:cf:67:fe:a7:2f:30:43:78:cb:31:
1e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:43:1C:8C:91:F7:45:7D:33:B1:23:A1:5A:79:E2:9E:A0:66:5A:77
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7349F954E78611EEA7974BB6775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.72.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:db:b6:a1:70:ba:f1:1b:80:00:53:8b:00:8c:50:f0:84:b9:
50:a3:06:cb:cb:6e:66:de:b3:0b:c7:7f:1e:33:63:37:84:d2:
a9:5f:3b:a1:35:0c:75:a4:62:f3:5b:22:ee:95:f7:68:13:99:
a4:5e:1e:65:6c:fc:d3:5f:ba:62:6b:73:62:f6:7c:fd:90:a1:
62:19:36:06:09:c2:ac:0c:e2:d0:e6:25:6e:e5:db:29:92:08:
21:d7:ee:cb:23:aa:1f:48:88:f6:13:35:af:ba:58:92:4e:93:
9e:66:1c:56:02:4d:44:90:f4:86:75:82:c6:cd:8b:56:47:0d:
37:63:52:ca:79:c4:f0:ec:f5:f4:d1:b0:52:0b:5a:06:5f:5c:
bf:06:11:22:67:33:45:82:47:85:72:6b:0f:85:20:2e:aa:0a:
54:99:a3:e4:60:d2:16:33:c7:23:96:d0:85:b7:dc:69:34:5e:
ad:fd:6d:1b:56:12:23:27:56:43:2f:12:45:7a:e7:e5:c9:a7:
18:46:fa:ac:14:d8:99:5f:e5:7d:c5:da:eb:6a:2f:cc:bb:05:
ec:8b:94:a6:32:f2:fc:8e:2b:97:de:5d:66:13:cf:29:6d:d2:
00:9d:c0:54:4c:2a:dd:d2:f4:f2:b8:5b:96:18:12:04:0f:be:
65:92:dd:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:20 2024 by rpki-client on console-fra.rpki-client.org