Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/74FEED30E74111EEAA0CD69B775412E6.roa
File: 74FEED30E74111EEAA0CD69B775412E6.roa (raw, json)
Hash identifier: BYL2/BZqzDA+XjrNH8SQLn4O6bkGgBwRtfaeu2joWXo=
Subject key identifier: C1:F2:28:BB:7B:A4:B4:8C:CC:19:09:2C:CE:01:34:91:BE:47:C7:74
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A3DA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/74FEED30E74111EEAA0CD69B775412E6.roa
Signing time: Thu 21 Mar 2024 05:11:22 +0000
ROA not before: Thu 21 Mar 2024 05:11:18 +0000
ROA not after: Tue 23 Apr 2024 05:11:18 +0000
asID: 44559
IP address blocks: 154.221.204.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41946 (0xa3da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 05:11:18 2024 GMT
Not After : Apr 23 05:11:18 2024 GMT
Subject: CN=65fbc17a-1f0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:76:ea:2b:4f:94:82:20:c6:d9:87:56:a9:9e:
fd:8b:57:b7:b3:b7:a3:30:8e:49:28:50:b9:39:c8:
81:4d:a7:18:59:c1:0c:4f:5f:3c:cb:08:46:0f:81:
6b:3f:ad:ab:a5:03:0d:4b:92:24:de:61:8e:4e:09:
52:e4:85:8f:6c:81:a3:e7:15:99:67:ca:ba:31:a9:
c8:36:1f:e8:f4:65:38:5c:b9:9d:34:29:46:8d:9d:
20:85:6f:33:65:fe:24:f8:36:43:51:34:4b:d9:53:
c3:59:8b:c2:d5:92:89:ff:00:66:e2:ed:29:fa:1e:
bd:a5:7c:41:4c:10:96:84:ec:15:aa:6e:7d:7e:c6:
a0:c0:ba:cd:7e:d5:5e:0c:71:1e:52:fb:b5:79:56:
01:e9:24:6b:b6:e1:3a:5c:3a:a6:67:9d:50:f8:5e:
ba:e5:3d:70:db:5a:09:98:6a:7e:e7:e8:22:d4:9f:
5e:dc:36:88:2e:8e:b4:b5:51:0b:97:79:41:4e:18:
09:4c:ba:88:ba:0e:27:19:47:ac:47:0a:d1:65:c3:
6b:fd:63:55:83:a6:7d:5c:5f:e1:80:c2:58:63:e3:
2c:2c:45:dd:2d:32:da:3c:51:76:68:7a:ac:46:5c:
fb:93:20:bc:4c:e5:a1:35:e8:31:20:28:ca:d0:13:
83:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:F2:28:BB:7B:A4:B4:8C:CC:19:09:2C:CE:01:34:91:BE:47:C7:74
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/74FEED30E74111EEAA0CD69B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.204.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:0e:f4:01:bb:7d:33:b4:ed:71:31:48:83:5d:44:ba:32:83:
3e:2f:62:25:54:68:06:3d:56:6d:b0:56:f9:23:66:25:30:a6:
ec:47:46:d7:e9:77:7f:ae:c5:72:36:dd:f0:ff:82:ab:86:fb:
5e:fe:46:95:64:f2:20:09:56:44:df:af:99:8a:8c:aa:8c:58:
55:f4:9f:b6:c0:07:90:74:3c:7a:50:3d:f7:33:15:83:73:e5:
2a:7b:bb:39:a0:7f:db:a6:12:8c:94:ab:5c:a6:c3:ec:60:77:
85:f3:b4:c4:7f:a3:b1:f4:e5:ea:de:b7:b3:c1:d3:26:e4:fa:
91:a9:f8:89:29:a0:00:4d:f0:cf:37:e1:68:e3:96:84:3f:8a:
7f:13:3e:7c:eb:cc:3f:54:cf:6b:3e:5d:ce:a7:7c:74:64:0e:
3c:d6:71:96:c0:58:5b:4d:63:c8:da:e8:4f:8f:77:bb:39:98:
79:33:6c:03:52:83:cc:82:78:05:0d:7f:5b:8d:d3:24:0d:0d:
02:53:81:55:91:9d:2b:65:8c:c0:d7:3d:00:7a:e3:e1:f2:d9:
f1:0e:2c:4f:9e:ae:63:9a:12:7f:27:6e:d4:94:c1:61:6c:3b:
8e:e8:da:66:4e:29:e7:95:c3:17:f5:b8:21:a1:f3:e6:5c:30:
d6:a5:27:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:21 2024 by rpki-client on console-fra.rpki-client.org