Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D05B024E75811EE8B4CFC50775412E6.roa
File: 7D05B024E75811EE8B4CFC50775412E6.roa (raw, json)
Hash identifier: pM9Y6HIfzwUP5JqWAnLkHAcvTTrg8J0AOm0VwVrcF4s=
Subject key identifier: CF:71:9C:E6:DD:91:85:1A:5A:23:50:AD:E7:17:B4:49:CE:91:5B:A4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A4B9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D05B024E75811EE8B4CFC50775412E6.roa
Signing time: Thu 21 Mar 2024 07:56:14 +0000
ROA not before: Thu 21 Mar 2024 07:56:10 +0000
ROA not after: Tue 23 Apr 2024 07:56:10 +0000
asID: 44559
IP address blocks: 154.211.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42169 (0xa4b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 07:56:10 2024 GMT
Not After : Apr 23 07:56:10 2024 GMT
Subject: CN=65fbe81d-63ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:da:75:ff:4c:63:26:0e:e4:64:15:83:f2:ef:
e7:4e:3d:43:3e:ee:9b:8f:82:63:04:21:3e:21:7b:
cb:1e:e5:64:4f:eb:6a:98:8c:b1:ff:37:6c:fc:b0:
5b:6d:3a:f7:28:40:78:7c:1c:17:ff:81:59:31:fe:
8a:0d:1b:0e:31:a9:5d:9b:89:6e:6b:9f:50:7f:08:
55:da:99:19:5f:1d:ce:6d:3f:cf:03:37:c2:76:ae:
55:a6:02:e9:11:48:ea:4b:fc:58:17:60:e6:81:a0:
cf:63:28:76:62:3a:03:fb:3a:74:60:21:7b:fa:69:
62:aa:2e:4d:f8:57:0f:49:df:53:4a:c6:e6:ae:df:
b4:8c:57:1b:a6:b8:15:8e:38:1f:67:96:62:39:4b:
62:ac:b0:12:43:7c:47:98:47:02:9d:69:e7:48:56:
a2:47:52:10:07:1b:c3:d7:18:17:3d:fc:72:b9:67:
05:81:32:be:43:7b:77:76:b3:d3:ed:57:45:c8:4a:
f4:f2:1c:b0:e8:28:01:1e:3f:af:75:98:59:82:58:
c0:4f:84:aa:d5:18:41:d3:c6:a6:c1:bc:52:44:98:
54:5c:21:d6:46:a1:b8:27:a0:b3:f9:6b:23:4f:f6:
06:3e:70:f2:c4:7e:d4:74:01:ea:60:5f:dd:df:e2:
7a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:71:9C:E6:DD:91:85:1A:5A:23:50:AD:E7:17:B4:49:CE:91:5B:A4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D05B024E75811EE8B4CFC50775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.60.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:43:69:57:1c:31:e0:99:5a:a8:0b:b9:13:a4:f1:56:54:56:
e4:be:78:80:df:f0:4d:5c:27:29:b1:35:af:2f:11:ac:85:4c:
4e:ee:9f:a4:e7:39:4e:33:67:3a:0c:41:1a:55:d2:1f:ed:9a:
9b:c2:9d:66:90:cf:df:f5:ad:80:d1:59:4d:ad:e3:96:e2:c3:
5f:45:3c:6e:45:49:e5:60:82:b0:9e:f4:75:3c:ac:c5:5d:08:
6d:79:cd:37:89:62:1d:52:f0:8c:11:89:42:fe:f2:33:88:74:
07:4c:ad:13:86:08:5a:87:69:8b:83:d2:c0:1c:1a:58:3d:59:
8d:8b:ea:c2:a1:87:8e:12:cf:d8:de:d4:be:46:20:dc:0d:ca:
eb:8f:bc:65:24:3f:27:ee:ae:32:09:c2:b2:a2:f9:eb:7e:a3:
5a:7c:2a:76:d3:7f:e5:10:b9:89:68:ea:60:7b:1e:5a:c9:03:
a1:06:d8:d6:52:a9:77:a4:37:c9:0e:a3:09:c6:54:41:86:26:
ef:80:fe:1f:5b:70:5a:10:43:33:ea:ca:d2:eb:70:0e:0d:81:
36:b7:90:c0:39:da:7e:92:04:44:ab:e4:84:fd:6e:0b:4b:83:
fa:08:ec:b5:4d:6e:37:76:95:f3:48:67:4a:c9:9b:af:94:58:
3a:41:76:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:22 2024 by rpki-client on console-fra.rpki-client.org