Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/878859C2E73811EEB99F5557775412E6.roa
File: 878859C2E73811EEB99F5557775412E6.roa (raw, json)
Hash identifier: vLTlYRPPo328qgWgR1T0AlzVXb3H6aSMSU8WhZmAW98=
Subject key identifier: 1E:53:10:26:52:9D:24:11:E9:14:63:89:30:B1:E1:93:84:27:71:5F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A380
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/878859C2E73811EEB99F5557775412E6.roa
Signing time: Thu 21 Mar 2024 04:07:27 +0000
ROA not before: Thu 21 Mar 2024 04:07:24 +0000
ROA not after: Tue 23 Apr 2024 04:07:24 +0000
asID: 44559
IP address blocks: 154.221.249.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41856 (0xa380)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 04:07:24 2024 GMT
Not After : Apr 23 04:07:24 2024 GMT
Subject: CN=65fbb27f-211d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:41:eb:fa:13:c8:04:d3:df:bf:2d:a3:d0:2f:
b2:71:23:4c:79:b6:66:b9:f4:67:92:b8:3a:00:4a:
2e:0a:99:17:3b:f9:17:6a:c3:29:80:19:af:d2:8b:
66:9d:19:8f:02:ba:40:bb:13:a4:d7:bf:6b:b0:bc:
99:dc:0c:73:53:d5:45:67:69:f4:02:e2:b0:f7:4e:
8d:5f:b5:e6:dd:6d:3c:9e:06:0c:a3:3b:d9:7d:d4:
97:87:4e:a9:ed:19:20:c2:c1:b2:04:e2:ed:63:b9:
29:6b:08:25:64:1a:8d:fe:5a:e1:38:01:93:2e:ce:
36:32:35:bd:31:28:53:2b:45:3a:28:6b:7e:6d:d5:
23:4d:b8:a0:42:b9:d9:5b:66:26:09:2b:6e:16:e2:
77:ad:67:c4:69:be:17:c2:6d:ee:25:7b:a3:70:9a:
d0:3e:32:89:41:de:bb:9c:cd:7f:ac:c4:76:69:d3:
be:7b:af:43:b3:c1:4e:db:9d:1c:8c:0a:cb:dd:9b:
13:ed:44:4a:38:56:c7:37:ff:ba:b4:a9:38:d0:f1:
8b:b6:17:23:e0:f5:8c:72:5d:e4:43:ab:2b:60:d7:
fe:30:4d:72:ce:3f:1b:5e:0c:51:95:4d:35:d2:40:
3a:5d:92:c5:15:5d:e6:30:0b:7b:c3:fc:7d:ff:82:
30:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:53:10:26:52:9D:24:11:E9:14:63:89:30:B1:E1:93:84:27:71:5F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/878859C2E73811EEB99F5557775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.249.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:37:7e:cc:31:09:b5:21:7c:e5:9c:65:9e:12:db:6e:01:05:
67:6d:ad:d6:96:88:2e:73:cf:b7:4a:ca:ce:ed:71:21:64:8a:
c1:4e:ec:b2:3b:f5:e7:b4:34:cd:5a:b5:dd:84:73:e9:b0:86:
ca:39:86:59:dd:6f:3c:d2:18:b2:e1:ca:0e:72:dc:92:7d:99:
20:5a:e9:85:35:26:37:a6:2f:96:1d:74:70:5f:50:4b:a0:b8:
ae:b7:d7:e1:8c:82:e1:e6:3c:cd:21:fa:31:1b:fe:45:92:f9:
2d:d2:35:73:71:6b:c1:92:81:ef:f0:f9:01:bf:b4:ae:b8:1e:
87:09:6d:e7:98:ff:56:9f:ad:64:ae:ed:b7:ce:95:7d:83:a8:
b4:7e:c2:fd:70:3f:8e:ee:16:f4:ae:8f:5f:9c:62:9a:c8:b6:
ea:d3:01:31:3a:8d:1e:95:1d:36:77:b4:d7:06:10:ae:8e:ec:
25:91:59:6b:b2:b7:7b:03:e3:4b:20:a5:bf:50:5a:8e:dd:7e:
ba:51:8b:93:68:f4:74:79:35:99:ad:09:d1:8d:dc:80:b2:e2:
ce:3d:80:38:c1:06:db:e0:b3:87:4a:57:9a:b3:d0:74:11:52:
71:cf:80:c4:ac:f5:72:98:a5:fc:2b:0f:e4:87:02:b1:d6:5b:
0f:f5:dc:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:24 2024 by rpki-client on console-ams.rpki-client.org