Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/84DC8010E73611EEB7DF9FC5775412E6.roa
File: 84DC8010E73611EEB7DF9FC5775412E6.roa (raw, json)
Hash identifier: 2ta1CXS9IjNrBn9OapghAzS7An+XnR9kq646VbyJmL0=
Subject key identifier: EA:4F:8C:ED:36:2E:AB:76:09:5F:F6:F4:DC:C6:75:4E:AE:64:45:1F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A36C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/84DC8010E73611EEB7DF9FC5775412E6.roa
Signing time: Thu 21 Mar 2024 03:53:04 +0000
ROA not before: Thu 21 Mar 2024 03:53:00 +0000
ROA not after: Tue 23 Apr 2024 03:53:00 +0000
asID: 44559
IP address blocks: 154.207.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41836 (0xa36c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 03:53:00 2024 GMT
Not After : Apr 23 03:53:00 2024 GMT
Subject: CN=65fbaf20-2628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:15:77:7d:bb:24:5d:f9:6a:6d:b9:87:97:47:
91:35:bd:55:3d:13:a0:6f:bb:5c:ed:2b:69:97:19:
e4:6b:87:a7:59:f5:ea:3b:2d:68:33:0f:4b:1f:98:
9f:ed:d2:87:60:e6:dc:ef:56:f5:82:70:52:4b:28:
06:96:83:f9:cf:5f:86:04:2c:36:5a:65:60:20:6a:
bc:17:42:96:a2:dd:21:22:30:30:6f:96:52:cf:e1:
e9:0f:2f:42:59:c2:07:51:48:8d:48:91:34:9e:94:
05:27:60:ba:3e:ce:3b:e8:30:7a:49:33:2a:79:06:
6b:93:19:39:b1:5c:36:5c:8b:6f:75:f0:e9:7d:26:
86:5e:5f:22:d3:8a:07:f0:09:7d:1f:ec:35:11:82:
fc:e5:5d:79:fb:7d:80:f8:e2:33:78:93:65:45:29:
c0:0f:56:f9:e3:38:11:03:c0:86:07:43:7e:5c:3c:
d4:7e:51:9a:f6:46:a6:f3:a7:ad:1e:7a:54:c4:98:
38:87:6d:02:c2:b7:ff:0e:2f:f5:6f:a2:6c:62:41:
17:f2:65:ed:5a:b0:a6:8a:46:6a:2f:75:84:3c:83:
ce:0a:ba:af:8e:15:b9:94:29:46:c0:44:2a:02:a4:
9b:4b:43:d2:32:ec:a6:6b:0e:69:71:51:74:d4:b7:
96:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:4F:8C:ED:36:2E:AB:76:09:5F:F6:F4:DC:C6:75:4E:AE:64:45:1F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/84DC8010E73611EEB7DF9FC5775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.3.0/24
Signature Algorithm: sha256WithRSAEncryption
19:ff:88:10:bc:28:a4:18:91:57:0d:df:e8:65:d4:63:4b:bf:
0a:69:72:dc:7b:7f:b7:4e:23:26:bf:f2:3a:42:1f:ad:86:56:
51:c5:c9:86:a2:11:59:6f:41:2b:40:af:20:24:a4:be:78:be:
71:98:5c:56:a3:66:a4:17:24:65:b6:5b:ac:e0:d1:d7:00:03:
a8:0e:8a:85:7a:7e:8c:17:bd:c7:4a:8a:bb:c8:d5:04:b3:9e:
0c:7f:44:8c:10:df:25:ba:51:02:2a:34:96:b5:09:1b:d3:e4:
53:a6:51:5b:c8:85:b2:48:e2:88:48:de:30:ff:53:30:41:dc:
0b:8e:63:d2:80:96:03:92:18:f2:fe:22:34:6f:33:78:ee:99:
b8:68:ac:fe:40:c8:b0:97:d2:a5:6c:9e:15:17:7c:7d:f9:2a:
ea:99:b2:ff:4b:52:f9:d4:51:91:70:bf:50:31:e2:f9:cd:4e:
91:b5:ef:20:0b:31:e0:85:b6:8e:1f:fe:52:20:a3:8c:3b:f5:
e5:54:1d:cf:06:88:78:4b:db:5a:9b:9a:8c:61:82:81:8a:a4:
6d:8a:26:ec:57:26:21:ac:a3:d5:23:10:af:b3:21:ab:b0:0f:
f4:03:c9:94:90:b5:21:e8:ea:28:dc:e0:4a:cc:83:c2:68:3e:
dd:02:a5:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:24 2024 by rpki-client on console-ams.rpki-client.org