Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7A4B1C20E74E11EE9584A683775412E6.roa
File: 7A4B1C20E74E11EE9584A683775412E6.roa (raw, json)
Hash identifier: WvjNvKl5z2R13uusLGDIaoTIJbaSrIMdCIBROvCh5c8=
Subject key identifier: 47:EF:BC:82:90:9B:1E:4E:F0:9E:50:99:01:2F:39:E6:53:DE:66:2E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A457
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7A4B1C20E74E11EE9584A683775412E6.roa
Signing time: Thu 21 Mar 2024 06:44:34 +0000
ROA not before: Thu 21 Mar 2024 06:44:31 +0000
ROA not after: Tue 23 Apr 2024 06:44:31 +0000
asID: 44559
IP address blocks: 154.220.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42071 (0xa457)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 06:44:31 2024 GMT
Not After : Apr 23 06:44:31 2024 GMT
Subject: CN=65fbd752-1020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:7d:dd:50:cb:90:b1:73:4f:89:71:62:05:43:
3d:3f:02:ef:d8:99:e4:1c:dd:cf:d2:51:76:c3:c7:
8c:bf:01:89:a4:00:1b:80:52:83:ba:7d:9f:2d:5b:
24:ad:24:7a:e0:91:dc:8a:5e:23:2d:60:d2:d0:39:
88:ad:fc:be:8e:6d:e8:a1:c0:e6:43:76:5d:66:af:
db:cb:7c:fc:d9:79:15:c7:91:56:ca:ec:02:1d:b6:
d9:f5:99:7d:65:53:b9:8f:57:66:5c:44:42:e2:21:
e6:43:83:de:5c:40:ec:58:ef:e8:c7:95:15:ec:0c:
65:e9:ec:c8:8d:4b:25:ed:89:82:be:66:36:7a:16:
95:11:07:96:1a:d9:b1:4b:3d:ca:97:73:76:db:4d:
b5:6e:45:71:6e:05:14:f3:75:2d:e8:b1:bd:37:d2:
20:bc:97:fc:44:79:d9:78:ed:ee:4a:22:7a:11:aa:
ff:0d:21:87:34:0d:d8:be:70:93:bd:14:b3:a1:bb:
4d:59:a2:fd:58:bb:77:3d:8c:18:ec:fd:06:fd:19:
8e:bd:50:d1:b7:16:61:b8:d4:45:80:8d:81:c3:36:
04:05:0d:a7:bd:47:03:14:41:9c:8c:41:2d:da:ed:
09:a2:fb:76:bd:1d:89:e3:8c:7b:6d:35:87:8f:83:
33:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:EF:BC:82:90:9B:1E:4E:F0:9E:50:99:01:2F:39:E6:53:DE:66:2E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7A4B1C20E74E11EE9584A683775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.141.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:1c:bf:63:9b:f6:f6:88:4f:b1:e4:35:f4:a9:5e:2e:c2:22:
80:1c:65:0f:6c:74:e0:b4:d3:ba:65:65:24:80:32:98:8d:a6:
f1:19:02:5c:a4:f2:3d:1c:a5:29:9e:a2:8f:c3:d8:83:56:eb:
11:3b:80:f3:95:d2:e9:f5:54:9d:de:e2:db:b5:be:7d:86:12:
ef:e0:a4:b8:63:84:8e:78:af:af:b8:11:e2:67:77:0d:12:22:
0a:25:62:32:00:a4:d6:36:20:86:02:5e:e8:42:2f:e7:84:74:
1b:2e:96:a2:96:f1:24:cf:41:6d:4b:d4:ca:a5:c9:61:c6:a3:
c0:f7:17:83:7d:ef:d9:28:0e:0a:a9:0c:e0:90:56:cb:39:37:
5c:35:36:13:c9:41:e8:ff:75:e3:b5:b7:04:2f:68:d2:66:ef:
db:a9:86:9b:bf:13:81:fe:c5:b4:76:e6:15:f2:ce:64:fb:cc:
ec:41:65:cc:45:12:0d:14:ef:e6:8c:2d:b6:36:37:65:34:e4:
52:9b:4e:3a:17:18:a5:bc:d8:02:df:45:bf:00:28:7c:0f:fe:
9c:45:56:d5:a1:38:2f:be:7d:ce:1b:d6:5a:71:8f:57:62:b0:
77:0f:fe:2b:58:5f:1d:ab:78:fe:59:1f:7b:41:c1:e0:2b:62:
73:c0:d9:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:22 2024 by rpki-client on console-fra.rpki-client.org