Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A4432134E78611EE950EBBB6775412E6.roa
File: A4432134E78611EE950EBBB6775412E6.roa (raw, json)
Hash identifier: xIMgk10wXxCmp1oSDDzQu+TFk64/BYQIOxxloSSjE/4=
Subject key identifier: 3A:2D:92:A2:15:15:A8:F1:64:78:F5:0B:13:D2:BA:B5:9D:E2:36:62
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A5AB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A4432134E78611EE950EBBB6775412E6.roa
Signing time: Thu 21 Mar 2024 13:26:36 +0000
ROA not before: Thu 21 Mar 2024 13:26:33 +0000
ROA not after: Tue 23 Apr 2024 13:26:33 +0000
asID: 44559
IP address blocks: 154.210.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42411 (0xa5ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 13:26:33 2024 GMT
Not After : Apr 23 13:26:33 2024 GMT
Subject: CN=65fc358c-2561
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:51:5e:7e:3e:b2:f2:a3:bf:67:b9:b6:51:11:
11:d2:d7:36:ee:e2:ca:90:ef:93:b8:a4:61:5c:55:
ab:e9:7b:94:7b:29:5f:11:fa:67:fa:ec:f8:0f:15:
91:5f:b9:12:7a:03:91:71:20:ea:08:17:fd:07:0f:
29:54:7f:3a:f2:99:8b:a4:bd:d2:43:e6:d8:94:c4:
83:54:c1:85:f3:7c:08:0c:b3:c7:52:36:21:1c:8d:
a6:12:18:77:a5:45:2a:56:05:ae:74:18:32:4b:63:
82:1f:b2:61:7d:ba:2e:01:93:b4:62:da:19:44:fd:
04:f8:48:1d:a8:e0:cd:40:58:be:fe:6c:ae:03:3d:
51:5c:47:4d:14:ee:32:63:cf:6f:d7:23:23:1c:4d:
74:cd:44:2d:7a:c4:bf:3a:5f:e9:12:15:89:2c:70:
fe:c6:95:c8:e7:09:5b:f0:f8:5f:1f:0c:a0:06:75:
4d:66:c3:a4:d8:fe:23:64:37:68:69:a5:d5:e7:d2:
a3:df:8e:2d:6a:c2:7c:f7:b5:56:eb:27:d8:32:f9:
68:7c:98:3b:2a:80:a7:c2:52:30:f1:45:d5:8e:98:
b8:13:30:aa:7c:66:a4:ec:4d:84:10:7a:07:b6:07:
03:49:40:ef:d0:f8:af:b7:e8:0e:46:14:70:f7:1b:
88:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:2D:92:A2:15:15:A8:F1:64:78:F5:0B:13:D2:BA:B5:9D:E2:36:62
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A4432134E78611EE950EBBB6775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.71.0/24
Signature Algorithm: sha256WithRSAEncryption
04:45:7f:d3:15:92:5e:a6:df:c4:98:6a:92:a7:67:18:5d:4a:
23:12:bb:91:0d:8a:22:70:53:37:15:84:96:5f:e4:97:30:99:
6e:5d:5e:11:16:dc:20:80:6c:3d:f2:02:c7:ce:4a:83:90:5c:
7c:93:77:11:ab:5a:f4:f7:4c:a3:04:de:6b:db:a9:93:a8:0b:
9e:db:f3:20:21:80:f1:b3:a7:e8:24:0a:ea:02:a6:1f:7c:54:
64:af:d7:77:71:cc:63:65:36:88:15:af:b3:7c:9b:86:58:23:
b7:be:58:9a:60:42:4e:e6:dd:15:a8:6a:a3:5c:9b:21:36:2d:
8f:15:90:bc:d1:39:b6:4e:22:a5:82:97:35:61:43:84:f5:e0:
71:e9:90:99:44:c5:08:8e:a2:c6:d1:a6:c2:b3:2d:c7:c4:14:
25:3c:33:4d:5b:63:43:e4:27:0d:fd:ef:6d:81:ea:82:39:82:
d4:84:f2:56:54:2e:15:e6:06:e8:cb:00:d3:03:54:c4:83:f8:
f9:1a:ec:63:1c:0b:c8:9a:75:23:5f:ab:bb:03:ca:82:85:35:
48:d6:86:75:f9:6a:7c:df:74:6f:da:37:a8:1f:86:d2:33:91:
f4:e6:4e:f1:35:21:01:f9:5e:a5:bc:82:d5:ba:4d:cd:51:c7:
5b:44:a3:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:24 2024 by rpki-client on console-fra.rpki-client.org