Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A6F3CD3EE74011EE8A382B96775412E6.roa
File: A6F3CD3EE74011EE8A382B96775412E6.roa (raw, json)
Hash identifier: SkarfK0gy4I+WFqahvg5umYOToc16Mt+yODwakdfZMA=
Subject key identifier: 08:3B:D6:B1:79:E7:B9:B8:A7:82:6B:F2:99:98:14:48:3B:C1:0E:1C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A3D2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A6F3CD3EE74011EE8A382B96775412E6.roa
Signing time: Thu 21 Mar 2024 05:05:36 +0000
ROA not before: Thu 21 Mar 2024 05:05:32 +0000
ROA not after: Tue 23 Apr 2024 05:05:32 +0000
asID: 44559
IP address blocks: 154.221.208.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41938 (0xa3d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 05:05:32 2024 GMT
Not After : Apr 23 05:05:32 2024 GMT
Subject: CN=65fbc020-1676
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:44:36:4e:d1:fd:b5:51:6a:e8:8b:77:29:7a:
6f:7c:6c:88:3b:d9:30:5f:98:cc:b5:eb:d3:35:ee:
8c:e8:5f:1d:7c:2d:14:9d:d5:f1:9d:a3:46:12:85:
45:53:4b:5f:d4:e3:a2:e7:65:66:af:a5:a8:69:3f:
af:50:a6:75:8c:e7:2a:e9:99:13:7a:5d:b1:5e:5a:
c9:07:28:9b:eb:1d:22:df:f6:37:d1:0a:93:d0:ef:
ed:35:f2:0c:2f:b7:d9:e1:2a:3c:d6:50:76:88:df:
99:8e:e6:af:5e:72:72:08:64:77:1f:8e:dd:f4:dd:
2f:e1:ee:8a:28:b7:2e:7d:96:cc:f2:b7:e4:1a:39:
b3:21:bd:11:f3:59:18:b0:1a:c3:fb:41:24:2d:0b:
e2:18:2d:c4:94:56:fe:b6:e5:5c:00:67:df:70:12:
ff:8d:0d:9c:cd:e8:a3:9d:53:02:c7:ff:4c:c0:26:
f7:8e:99:75:b1:2d:56:5f:a8:50:a3:d7:fe:a9:5c:
09:1d:f5:34:8c:80:8b:f0:91:1c:cf:a0:95:1d:13:
99:65:89:55:18:c5:94:c1:f5:19:1d:04:e7:21:8f:
35:77:d6:77:60:89:0d:4b:85:fa:b2:63:44:bf:72:
3e:d1:4f:5e:35:98:f8:c4:15:8a:8b:90:9d:c0:d1:
b6:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:3B:D6:B1:79:E7:B9:B8:A7:82:6B:F2:99:98:14:48:3B:C1:0E:1C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A6F3CD3EE74011EE8A382B96775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.208.0/24
Signature Algorithm: sha256WithRSAEncryption
84:16:5d:1c:69:bd:af:95:b1:63:de:7b:0b:64:3f:26:a6:97:
2e:05:d3:15:de:15:be:3a:56:10:21:86:96:43:03:33:a4:7c:
26:7a:65:2d:d0:8e:0c:b2:85:5c:12:a5:9c:9d:8e:05:25:a0:
67:b7:81:d3:6e:d6:86:81:ca:83:88:80:05:65:76:7c:52:bd:
8c:0b:c5:50:5c:9c:c2:55:f3:70:8b:87:59:08:c5:fe:07:c8:
6e:91:b1:bd:bf:b0:8f:96:93:e1:ae:82:c1:63:ab:48:2f:8e:
d8:16:ca:d7:17:d4:ad:51:be:64:d5:53:1f:5b:c6:cd:31:a6:
43:c8:ee:ae:71:0f:8c:50:45:63:c1:d7:6d:91:5f:55:d0:81:
eb:c0:76:77:97:80:80:0f:88:cb:4d:47:d9:a4:9d:ba:97:0f:
3f:25:5a:8a:87:9e:95:e0:06:0a:d5:d2:f4:29:83:a4:29:7b:
40:d8:8f:c2:17:2f:ad:c2:fb:ec:b8:fc:de:90:ff:06:fd:24:
04:01:f0:fe:ff:93:06:d4:88:6f:25:e6:9b:f7:1d:c6:bf:91:
38:c0:56:59:aa:86:90:5b:c8:e6:c0:5c:03:52:63:d1:6f:49:
8e:e5:37:9f:6f:30:c1:f1:81:40:be:5e:09:3b:38:b3:37:9e:
b9:23:bf:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:24 2024 by rpki-client on console-fra.rpki-client.org