Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9FB89C46E75B11EE98F12B69775412E6.roa
File: 9FB89C46E75B11EE98F12B69775412E6.roa (raw, json)
Hash identifier: bWPRiAnPV4Tm0N7xwqdOQBix8DN+PaHxELcdV3bxw/s=
Subject key identifier: 42:EB:61:7B:25:58:32:03:3E:3A:D4:CB:C8:75:85:2A:A9:5A:F6:6C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A4D7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9FB89C46E75B11EE98F12B69775412E6.roa
Signing time: Thu 21 Mar 2024 08:18:40 +0000
ROA not before: Thu 21 Mar 2024 08:18:37 +0000
ROA not after: Tue 23 Apr 2024 08:18:37 +0000
asID: 44559
IP address blocks: 154.211.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42199 (0xa4d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 08:18:37 2024 GMT
Not After : Apr 23 08:18:37 2024 GMT
Subject: CN=65fbed60-2bb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:db:c8:45:ea:68:12:46:9a:6d:bb:52:93:46:
f1:06:80:06:9b:80:d7:b3:eb:7a:77:41:6a:39:f8:
62:d7:0b:85:af:dc:1d:4d:b3:dc:c3:59:d8:99:ce:
8e:3a:86:19:4a:1f:cf:d2:ba:93:30:68:09:cc:69:
7d:1b:7e:7a:8b:ab:21:eb:3d:04:32:8c:45:92:05:
86:5e:cf:49:98:34:4c:4c:a1:c2:a5:d2:e1:b7:69:
94:00:99:f3:fe:4c:15:5c:50:1f:e6:89:bb:8f:3b:
70:e9:62:ae:ca:36:a9:48:cc:ef:64:58:81:92:bc:
50:60:1e:f1:d3:4b:a4:45:c1:43:64:ce:73:87:7d:
56:3a:0d:c6:6f:d2:35:ad:67:fe:89:98:b8:a8:a8:
5e:a0:12:2a:e2:14:db:e0:0c:d6:ee:e8:73:c1:59:
d9:3b:6c:fb:09:87:e1:65:1d:29:ae:73:30:05:9d:
85:5f:04:65:55:8e:c6:34:7f:e2:d4:88:be:c6:fb:
10:f5:01:a3:62:6e:08:a4:f8:a6:96:2d:aa:4f:2f:
8d:1c:fd:00:49:80:7d:f8:a4:36:7f:05:6c:c6:54:
52:61:87:1f:51:63:47:4e:40:00:6b:6d:6f:a3:52:
be:59:01:ab:69:23:eb:bc:85:7d:f3:64:02:aa:15:
6e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:EB:61:7B:25:58:32:03:3E:3A:D4:CB:C8:75:85:2A:A9:5A:F6:6C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9FB89C46E75B11EE98F12B69775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.45.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:ff:e9:5a:9e:09:be:44:1c:50:ad:3c:2b:da:61:6c:72:b4:
70:9b:9b:8a:b3:e4:97:af:71:2c:d3:75:ca:79:5c:90:80:52:
50:91:da:e6:ac:27:e2:dd:53:8e:84:8a:43:d1:62:6c:b9:16:
6e:b4:4a:c4:d5:70:f5:b7:0b:95:d7:8f:8a:34:d8:91:55:93:
35:49:57:e7:e8:49:66:e9:06:5d:e0:7b:f3:11:3c:df:ec:a7:
20:9c:52:91:68:07:c0:17:d5:d9:15:99:ec:ce:2a:9d:c6:bd:
82:05:2d:8c:73:ac:19:74:6d:8e:a7:0f:73:17:f1:50:0d:03:
d3:79:82:f4:70:14:80:bf:b9:ec:cf:34:76:bc:5a:59:2e:7d:
06:03:df:35:f8:4e:4e:92:6d:69:68:52:67:f5:38:09:25:67:
d4:fa:da:7a:7f:6b:00:e4:8c:6b:24:70:25:bd:e5:2f:46:54:
71:13:c7:10:04:24:fe:83:bc:85:36:d6:6d:f2:07:20:02:db:
bc:a2:8d:15:31:06:81:9e:7f:d9:98:05:1d:02:ae:47:b0:59:
e3:04:5b:c4:93:37:fb:98:6c:6c:93:48:d2:e9:50:69:3d:2b:
3c:02:79:0b:e8:d8:2f:41:5f:d7:83:ed:28:ab:3a:99:d4:a2:
b3:ff:76:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:24 2024 by rpki-client on console-fra.rpki-client.org