Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7887BD4E74811EE87EB7055775412E6.roa
File: A7887BD4E74811EE87EB7055775412E6.roa (raw, json)
Hash identifier: bmUY3r5BzaqmYfzEkSgaSkFTHn7XNB2f7Z5Fs3NV3BU=
Subject key identifier: CA:95:3F:E8:D0:40:16:34:15:C6:22:2B:21:E3:F0:15:AA:43:2F:A3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A41D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7887BD4E74811EE87EB7055775412E6.roa
Signing time: Thu 21 Mar 2024 06:02:53 +0000
ROA not before: Thu 21 Mar 2024 06:02:50 +0000
ROA not after: Tue 23 Apr 2024 06:02:50 +0000
asID: 44559
IP address blocks: 154.220.170.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42013 (0xa41d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 06:02:50 2024 GMT
Not After : Apr 23 06:02:50 2024 GMT
Subject: CN=65fbcd8d-c725
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:27:6d:b3:e1:55:d0:39:66:2e:7a:f1:cf:b6:
18:02:d7:4a:b9:76:4c:ba:b5:11:7e:8c:75:fe:af:
2f:aa:4a:d9:b9:7c:a4:08:60:41:6f:32:30:32:98:
a0:e5:76:d8:d0:db:2b:5d:01:7c:df:c1:11:82:e7:
2e:9d:a9:c3:5a:34:36:c5:e6:89:62:70:96:d8:8f:
d7:65:ca:4d:ae:e3:88:d3:c7:3c:40:2a:cb:a1:5d:
c6:54:41:0f:d5:12:ee:48:23:e0:19:8a:3c:56:07:
7c:bb:31:ed:f9:d8:15:86:8f:81:a1:87:e1:af:16:
2e:34:d8:b9:c9:c1:12:6e:6e:c6:03:ee:c2:8b:cc:
5e:f5:1e:17:78:07:0c:25:7e:99:4f:e5:a1:18:42:
20:f2:5f:68:be:dd:ce:f8:83:26:cb:c9:d4:6b:ec:
65:d4:d5:00:45:95:3b:ce:76:3b:27:3a:f0:4f:68:
73:aa:9c:38:94:8a:45:8b:a1:6a:31:0b:bf:89:1a:
88:86:66:47:f6:7d:a7:c5:25:cc:dd:60:c2:7e:44:
0e:a5:4a:d7:9a:e2:37:6e:64:a6:3e:52:de:4f:5d:
25:99:21:a5:3c:01:e5:62:1f:f8:9c:1c:87:45:5a:
53:eb:02:eb:63:f6:48:a5:a3:e0:6e:8a:c0:76:f8:
90:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:95:3F:E8:D0:40:16:34:15:C6:22:2B:21:E3:F0:15:AA:43:2F:A3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7887BD4E74811EE87EB7055775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.170.0/24
Signature Algorithm: sha256WithRSAEncryption
26:bf:09:f8:aa:a0:dd:1a:53:1f:04:05:33:98:43:95:8d:d5:
fd:f4:5f:ec:db:dd:a9:52:7b:4c:6f:53:82:7c:4d:4d:d8:15:
42:e4:1b:a2:b1:1a:9c:bb:27:fc:5c:93:36:33:71:f7:16:45:
8f:38:45:08:a0:92:d5:be:49:89:f8:06:9f:ef:64:20:ac:93:
bb:ed:88:c0:ca:ad:3b:c9:1f:50:b1:f3:c4:5e:63:b6:b6:9e:
fa:5b:33:66:86:88:14:6d:4e:1d:4c:14:74:0e:fd:9c:68:8e:
a4:54:39:0d:00:69:63:78:0a:72:39:83:32:39:dc:35:7d:31:
c4:e8:f2:ed:66:8b:95:dd:49:5a:2f:53:88:89:93:49:7d:6c:
fc:b5:dc:0a:d2:49:64:6a:e8:b9:04:c3:a4:3f:bb:1b:27:fa:
b2:5f:31:b7:ca:1c:21:63:29:35:c6:76:2f:23:27:21:c7:4b:
c9:d5:a3:6c:c0:41:ec:df:7f:5c:97:c5:39:02:a6:56:65:c2:
40:3a:e2:94:66:da:23:4e:9e:d5:eb:cf:e2:fe:8c:5a:9a:eb:
f0:55:0c:10:65:75:6e:64:ad:37:0c:a4:f0:fb:0f:d2:8a:aa:
32:dc:e3:18:3f:f5:b9:8c:78:d9:46:c7:f1:48:2a:85:7f:36:
cc:97:40:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:24 2024 by rpki-client on console-fra.rpki-client.org