Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A6313F3CE77A11EE8958B05A775412E6.roa
File: A6313F3CE77A11EE8958B05A775412E6.roa (raw, json)
Hash identifier: iuNBRzKiDP78o178ICXFANDEqi4zwdyAwFXp+FVZ2T8=
Subject key identifier: F4:62:3E:22:CC:86:4B:D6:DA:A7:1A:A5:52:62:28:AF:A7:4A:F5:A5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A543
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A6313F3CE77A11EE8958B05A775412E6.roa
Signing time: Thu 21 Mar 2024 12:00:46 +0000
ROA not before: Thu 21 Mar 2024 12:00:42 +0000
ROA not after: Tue 23 Apr 2024 12:00:42 +0000
asID: 44559
IP address blocks: 154.210.123.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42307 (0xa543)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 12:00:42 2024 GMT
Not After : Apr 23 12:00:42 2024 GMT
Subject: CN=65fc216d-0c10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:7b:37:dc:72:28:ba:c8:00:77:c5:0b:5d:d1:
b5:27:ec:81:c7:ce:a1:b7:07:3d:67:9e:1e:88:dc:
11:17:e1:bf:2a:db:7b:51:f5:85:e3:86:fb:fd:29:
4f:c9:6b:07:58:e4:be:cd:e5:fb:09:9a:74:c1:ae:
16:35:22:f8:5c:9b:68:3d:7f:24:fb:7e:6e:3b:46:
47:36:7b:c6:4a:53:3f:e3:a2:a9:ce:e7:a0:f2:4b:
25:b3:9e:8c:1d:65:ca:a8:fd:e8:e9:a4:6a:ee:d0:
9f:58:7a:1f:39:58:96:5d:2d:c8:42:c2:f1:0a:72:
5f:0c:38:d3:cb:b4:1a:4a:48:f3:a0:d7:1c:26:0a:
c0:c8:68:8f:7e:e4:a1:81:5a:9b:d3:4a:f9:6e:85:
a6:15:65:d3:d0:5d:5c:18:89:79:09:b1:20:5b:45:
a8:79:00:6f:d1:c2:d8:9b:1e:ea:64:bc:a5:d7:55:
bd:b9:93:cd:84:03:93:e8:23:d6:be:c4:bd:33:15:
dd:f8:f8:88:58:17:08:c9:0b:a1:ed:70:8c:87:33:
30:f6:e3:e4:d7:3a:09:58:24:74:75:1d:ce:de:44:
31:2a:89:06:5b:5a:61:89:bf:2f:cd:bb:a9:8d:84:
01:85:54:fb:72:f8:37:2d:7a:e6:37:30:14:90:24:
f1:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:62:3E:22:CC:86:4B:D6:DA:A7:1A:A5:52:62:28:AF:A7:4A:F5:A5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A6313F3CE77A11EE8958B05A775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.123.0/24
Signature Algorithm: sha256WithRSAEncryption
04:bf:77:3d:d8:91:2a:7e:9c:a3:77:4c:b7:76:ad:7d:26:2d:
07:ed:56:55:33:db:48:a5:43:f2:7b:bb:ab:36:46:1b:87:fe:
2e:9f:b4:a8:99:bb:1f:88:08:c1:d2:66:5f:71:68:c4:2e:da:
2b:b6:32:db:e1:25:b7:01:0f:91:75:83:ba:35:5e:07:06:30:
ed:92:80:ac:44:85:36:b9:d0:86:29:a6:9e:07:c0:1e:51:db:
83:a2:fa:ab:91:34:87:ac:76:ca:01:0a:9c:74:2b:59:ee:98:
43:09:64:7b:6f:cf:24:b9:80:ea:a0:a8:f1:b8:f6:c1:ca:69:
cc:a6:d3:0f:a0:d7:ee:a7:58:01:fc:71:0e:f8:4d:72:12:30:
da:a6:1a:ed:f7:d9:43:ea:09:9f:c8:7d:a8:9e:f5:14:6d:56:
6a:14:9f:96:d2:20:7c:7c:ca:c4:b2:01:ca:3f:0e:a1:d1:fd:
2b:66:d2:fd:ac:2d:ec:48:1a:d3:0d:19:40:16:85:a2:6c:b2:
97:0e:7c:d2:bc:86:fb:b7:07:09:8c:94:5e:da:b1:8b:21:98:
f3:7d:08:5b:47:50:b8:e8:9f:da:37:36:8b:03:af:e8:50:8b:
92:53:11:15:2e:a6:50:a3:bc:e9:e2:b2:51:5e:28:5c:51:04:
0b:75:c1:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:24 2024 by rpki-client on console-fra.rpki-client.org