Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7617B05CE74211EEB862AEA3775412E6.roa
File: 7617B05CE74211EEB862AEA3775412E6.roa (raw, json)
Hash identifier: RpfqYrm2Dt4QjnPSgqZGjKKBQ/xaPZpWCefRwjDAVH8=
Subject key identifier: EB:67:8F:C8:84:57:8F:B6:E4:5A:AA:68:7F:E3:05:DD:3F:17:10:9E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A3E4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7617B05CE74211EEB862AEA3775412E6.roa
Signing time: Thu 21 Mar 2024 05:18:33 +0000
ROA not before: Thu 21 Mar 2024 05:18:30 +0000
ROA not after: Tue 23 Apr 2024 05:18:30 +0000
asID: 44559
IP address blocks: 154.221.199.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41956 (0xa3e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 05:18:30 2024 GMT
Not After : Apr 23 05:18:30 2024 GMT
Subject: CN=65fbc329-c7dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:4c:ce:97:82:0e:ea:13:6f:eb:d9:a5:8f:67:
aa:5a:3d:89:2d:02:fc:27:35:ad:ed:25:6a:f1:91:
2c:ce:dc:ae:8f:a4:59:60:43:13:19:54:92:4f:9d:
ff:24:10:9e:4f:31:1e:8e:9c:69:e0:42:c2:ee:60:
9b:a4:87:00:dc:c9:a9:b4:27:5f:0c:6c:25:63:0e:
30:29:a4:e6:e9:9e:65:80:74:d2:17:7e:d3:ab:eb:
c5:c9:39:0c:d7:04:55:a2:4f:7f:e7:d8:19:88:11:
4b:51:63:70:64:15:b6:aa:99:4d:a2:46:e9:87:fa:
cb:39:7a:15:b9:4e:0e:7e:d7:ca:17:b7:6f:91:a6:
27:90:36:ec:15:64:35:7e:fd:12:8a:25:2b:6f:4f:
2f:d9:75:2c:ae:82:be:bc:ef:52:4f:1a:58:d9:03:
e5:31:16:78:60:e9:d0:34:55:3a:2e:ff:c4:03:b1:
11:97:cc:eb:e6:30:08:c6:8e:fc:a4:f8:7a:47:27:
9e:70:6a:25:9c:87:df:48:4c:b4:1d:8c:73:e4:f4:
45:ca:3c:41:50:cb:8e:d2:40:f9:f0:82:01:b7:02:
fc:25:89:90:78:83:53:d3:99:2a:f5:cf:7a:c3:88:
3d:93:54:76:a1:4a:7a:64:14:b2:4d:06:17:27:71:
7d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:67:8F:C8:84:57:8F:B6:E4:5A:AA:68:7F:E3:05:DD:3F:17:10:9E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7617B05CE74211EEB862AEA3775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.199.0/24
Signature Algorithm: sha256WithRSAEncryption
20:66:e5:01:83:27:06:d3:ad:6c:49:66:51:b3:26:ea:2f:2c:
ad:55:60:e8:ea:a6:78:42:26:78:23:90:22:93:af:2a:68:9c:
be:fc:89:d9:33:1d:fe:5f:8e:e3:e2:b8:95:4c:e3:db:34:20:
4a:fd:fc:9f:8b:c9:e2:19:44:a0:62:79:69:3f:17:3d:14:8f:
d5:53:5c:b2:24:c3:25:4b:6e:3e:20:99:ec:d4:e8:b1:8d:ec:
91:3f:a4:05:a0:42:2e:bd:0a:7b:bd:af:10:b0:aa:d7:7b:80:
a2:80:1c:23:67:27:06:02:b6:b1:10:ef:5d:a8:f5:f3:fa:59:
ee:40:1f:df:16:7c:96:d6:68:d5:be:4d:d5:6a:aa:11:95:09:
4d:da:37:31:ed:d0:d3:7f:40:df:8a:51:8e:0f:04:b8:82:a2:
5b:68:1c:3b:0e:8b:55:d1:63:a5:68:67:2b:33:83:f7:22:1a:
c0:9a:51:82:07:86:69:c8:21:ec:61:58:ce:75:a2:03:df:6b:
f6:e0:7e:9e:6b:e7:2f:71:50:1f:37:04:8d:c4:f2:03:1f:0b:
2a:38:c4:67:c5:3d:b6:58:ae:78:2f:e7:b5:49:6a:37:a2:2d:
ad:07:0c:9f:4b:47:70:a7:b7:20:98:58:1d:57:ed:0c:86:90:
04:09:19:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:21 2024 by rpki-client on console-fra.rpki-client.org