Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7707DD76E74B11EE86ADD66A775412E6.roa
File: 7707DD76E74B11EE86ADD66A775412E6.roa (raw, json)
Hash identifier: Cw1Yub4uDWgQ+rChOKXbqmkGAUNoxHhGN+/JM2soNs0=
Subject key identifier: 29:64:08:C6:B1:36:39:44:F1:A0:DA:6B:A8:FE:CE:57:BD:9C:E5:74
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A439
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7707DD76E74B11EE86ADD66A775412E6.roa
Signing time: Thu 21 Mar 2024 06:23:00 +0000
ROA not before: Thu 21 Mar 2024 06:22:57 +0000
ROA not after: Tue 23 Apr 2024 06:22:57 +0000
asID: 44559
IP address blocks: 154.220.156.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42041 (0xa439)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 06:22:57 2024 GMT
Not After : Apr 23 06:22:57 2024 GMT
Subject: CN=65fbd244-9a50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:25:76:be:50:cf:e9:f6:99:38:71:42:1c:9f:
ea:4b:38:12:a5:b2:03:8d:cd:5d:32:fc:32:a0:16:
5e:55:cc:78:87:c3:f0:75:69:29:e3:b5:99:c3:b4:
d8:b3:2a:49:4d:0a:89:1c:f0:b5:d1:bd:5d:80:0f:
32:aa:94:7d:78:6f:d5:46:93:78:ae:e6:5f:d4:35:
22:da:84:40:b7:e9:e7:e2:7e:a4:75:17:e0:7c:d6:
0d:17:a4:72:7b:fa:c9:1d:c4:99:82:58:bc:ef:56:
53:0f:c3:27:3a:ae:31:2a:90:fb:cd:39:b6:4c:81:
de:ff:23:3c:99:84:af:39:1a:e7:58:5f:d6:50:64:
68:ba:59:ab:21:58:ec:a8:3b:7a:51:f5:f0:36:db:
cd:00:20:fa:35:5d:68:d0:aa:ab:2a:c7:73:1e:41:
2e:d6:c3:bf:3a:dc:ef:1d:35:9e:bd:58:96:2f:7c:
b2:dd:59:fc:9b:d7:63:a6:8d:24:56:ab:61:04:af:
cc:cb:67:be:0b:e4:f1:9e:02:23:46:17:1d:59:9b:
80:25:89:5b:f4:a3:55:23:6e:2c:6e:a1:c2:bc:0d:
b5:4d:6f:75:78:51:b7:b5:ca:01:2e:6b:18:e4:4b:
70:02:b9:32:af:1e:b3:f7:ff:1d:6d:b4:bd:b5:ca:
c6:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:64:08:C6:B1:36:39:44:F1:A0:DA:6B:A8:FE:CE:57:BD:9C:E5:74
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7707DD76E74B11EE86ADD66A775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.156.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:1a:28:25:1c:ca:c1:46:d5:a8:5f:30:cf:22:ae:58:4a:33:
28:7f:52:29:5c:f9:60:d2:10:89:d3:2a:ee:ad:36:9d:33:e2:
9c:51:f9:fd:8a:80:56:d0:24:cd:c4:ad:86:88:aa:ae:6d:0e:
44:32:83:88:33:44:b3:2e:9e:97:01:4e:07:49:2a:33:f0:46:
1a:45:9d:dc:49:e2:72:b4:fe:74:b6:fa:f1:7e:f0:a0:02:d1:
0a:f9:1e:8d:ca:40:8e:6c:82:a0:7a:dd:60:8a:43:5e:a4:73:
d7:23:59:a2:c0:36:8d:0b:0b:64:df:49:46:e3:b1:f2:37:d0:
af:eb:bf:86:78:bb:64:6d:23:8b:64:fe:02:6c:d3:72:82:63:
3b:61:ca:c3:49:42:20:08:0e:7f:8f:a7:8c:72:06:65:c9:59:
ab:36:15:bd:77:c0:c0:2c:14:9a:7e:aa:62:2d:c8:1f:d6:62:
70:42:e9:2d:61:2e:c9:35:6c:1b:fc:31:95:b4:71:7b:61:b2:
f4:ed:59:c1:8a:07:e0:78:80:3f:86:2c:dc:47:80:1a:3c:0f:
bb:3b:08:f0:0d:73:72:09:b5:12:7b:33:6f:25:fb:ed:49:0f:
67:2b:37:d1:fa:70:17:32:1d:cf:0e:07:fe:87:b1:9d:87:7e:
07:1f:d3:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:23 2024 by rpki-client on console-ams.rpki-client.org