Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/97422684B10211EE8E056363775412E6.roa
File: 97422684B10211EE8E056363775412E6.roa (raw, json)
Hash identifier: 7m/zP/2/GcOZFPhxszINWQUm7/GPR3pN3CdCpUOxb1A=
Subject key identifier: DA:47:A6:89:62:79:28:14:C1:9C:33:46:71:C5:4E:65:F7:D3:C5:3E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 74A3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/97422684B10211EE8E056363775412E6.roa
Signing time: Fri 12 Jan 2024 04:25:18 +0000
ROA not before: Fri 12 Jan 2024 04:25:15 +0000
ROA not after: Fri 13 Dec 2024 04:25:15 +0000
asID: 140224
IP address blocks: 154.205.222.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29859 (0x74a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 12 04:25:15 2024 GMT
Not After : Dec 13 04:25:15 2024 GMT
Subject: CN=65a0bf2e-5c7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:84:e5:a5:22:8a:a4:b2:c2:c9:8c:1a:16:53:
2a:3d:45:df:f2:d1:c4:60:f7:e4:fe:26:47:7a:5f:
04:1d:91:20:4f:c7:60:1e:2a:1a:6c:ca:c3:c9:20:
11:c6:84:55:f6:9c:f0:29:7c:bb:22:11:93:91:51:
12:c1:48:a2:24:9c:46:b8:fb:05:93:cb:09:1a:8b:
42:f4:64:80:d1:06:a6:0f:d1:77:de:63:db:c8:c9:
e3:53:fe:3e:49:84:91:1f:57:f4:64:16:7b:ff:f3:
12:66:9d:eb:78:65:80:7e:70:3e:20:17:16:93:ac:
36:e4:cb:60:60:12:3d:dd:69:6f:63:fb:34:9e:d9:
f9:ef:04:d0:49:fa:8d:93:34:e5:5f:f0:6d:f3:b5:
27:d0:f6:09:1a:e3:dc:88:a5:05:b6:4b:67:84:79:
62:92:65:c5:65:4a:f9:9c:2e:2d:71:c9:2b:d1:06:
2b:42:a5:80:2a:67:1c:1a:1a:7d:c7:b8:51:60:0b:
73:92:2e:36:de:62:90:04:ca:dd:6e:02:a7:90:60:
5c:52:54:81:73:be:3c:c2:7c:d4:bf:16:b5:f2:47:
a6:05:a0:9a:ce:67:05:31:db:b2:7b:a2:58:5c:4b:
fd:fc:56:38:36:e9:9a:e3:61:d7:c3:01:4a:6e:78:
a3:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:47:A6:89:62:79:28:14:C1:9C:33:46:71:C5:4E:65:F7:D3:C5:3E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/97422684B10211EE8E056363775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.222.0/24
Signature Algorithm: sha256WithRSAEncryption
50:f6:35:4f:9f:b1:51:e4:45:a2:64:0d:cd:96:92:1c:f2:d8:
fd:3e:5b:87:07:c7:f4:63:30:de:8f:8f:8e:6b:46:23:a3:ed:
5c:b2:9c:01:08:ee:f5:9f:33:8a:f9:30:5f:f8:89:05:97:35:
28:75:08:c0:af:50:d9:4a:d1:23:36:d6:d1:2d:95:06:34:c0:
c5:20:1d:86:e4:95:27:cf:f2:60:d4:80:8c:90:0b:f1:31:77:
3b:a4:5e:03:9f:a7:ce:e8:c0:e9:3f:4c:e5:30:f4:b5:11:f7:
9d:d2:17:3d:ec:d4:e5:35:2f:d8:7c:ac:e7:5e:ba:cb:ff:2a:
5d:48:1c:32:8a:94:da:2b:09:b5:ee:c8:17:b6:09:a0:f7:b9:
4a:79:86:75:97:f3:a6:a0:13:13:a1:00:52:7a:65:3c:51:6f:
22:08:5b:e5:ad:49:66:d0:55:49:92:9c:08:41:f4:a5:d1:ed:
5a:49:9f:92:c6:94:91:8e:6d:3f:6a:59:73:f3:be:9b:0a:37:
94:97:0f:0f:64:1d:04:44:f6:29:7a:95:98:f2:60:48:ae:a5:
6c:7c:a6:39:fb:e2:14:bb:c7:fe:22:33:ae:c8:c7:50:f0:5d:
d0:bf:c2:44:b1:cc:7f:44:2b:6f:d3:86:61:5a:c6:3d:dd:d4:
aa:6d:34:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:32 2024 by rpki-client on console-fra.rpki-client.org