Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ADB81FD2E73911EEB814A55F775412E6.roa
File: ADB81FD2E73911EEB814A55F775412E6.roa (raw, json)
Hash identifier: bxXPkaEC48UfuhqF7JmAVWMvcoGIFUxYZ7/Gp9mcYFc=
Subject key identifier: 93:F6:28:06:B5:3D:3F:43:1F:50:59:D2:D7:2E:21:43:98:2D:A1:E5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A38C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ADB81FD2E73911EEB814A55F775412E6.roa
Signing time: Thu 21 Mar 2024 04:15:41 +0000
ROA not before: Thu 21 Mar 2024 04:15:37 +0000
ROA not after: Tue 23 Apr 2024 04:15:37 +0000
asID: 44559
IP address blocks: 154.221.243.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41868 (0xa38c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 04:15:37 2024 GMT
Not After : Apr 23 04:15:37 2024 GMT
Subject: CN=65fbb46d-d4c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:16:9f:76:e0:15:49:35:90:32:0b:16:0f:70:
98:d7:44:38:32:a3:39:0a:e6:af:34:a9:a3:17:82:
8a:90:8e:78:07:30:69:59:ae:8e:bf:a9:a2:b9:35:
14:3d:3d:6e:1c:2b:18:a4:4a:23:fc:d7:ac:a4:fe:
58:76:80:0a:94:d7:26:c2:4d:3c:4d:b2:f5:70:61:
76:5d:3f:ab:c7:9f:f4:bd:c0:2d:77:dc:07:d1:37:
b5:e2:98:a1:ff:d9:74:a1:ba:55:49:02:05:dd:3e:
b8:3f:54:f8:5e:09:81:63:67:55:8c:6f:71:2a:f9:
72:54:c9:e9:f2:0a:79:36:ff:56:16:b5:1e:27:9b:
7f:26:b4:d1:c2:5b:02:98:7b:3a:61:f1:01:ba:c2:
d3:10:b9:c8:13:91:a2:c6:26:b1:93:ce:3b:1a:de:
96:e9:6b:8e:0f:6e:81:68:94:65:c6:c2:e0:a3:51:
20:bd:9c:bb:25:69:df:17:9b:19:38:f0:d9:e0:f3:
c5:67:cd:7d:cb:f4:f4:cf:43:08:60:26:da:91:b1:
d2:f9:6b:b6:00:66:a5:f1:a7:be:57:74:4e:39:55:
63:e5:19:4e:19:df:5f:8c:8b:cc:25:3e:df:24:53:
31:30:06:3d:41:a8:71:9e:33:97:d8:a6:8a:b2:b4:
c3:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:F6:28:06:B5:3D:3F:43:1F:50:59:D2:D7:2E:21:43:98:2D:A1:E5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ADB81FD2E73911EEB814A55F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.243.0/24
Signature Algorithm: sha256WithRSAEncryption
56:2a:be:9b:ec:d6:94:ac:7a:b6:a1:55:59:36:26:18:49:cf:
df:76:1f:16:e5:9f:cd:80:d8:63:46:f2:03:a3:8a:9a:6c:6d:
b2:71:e0:0e:3c:68:cc:a4:a2:a6:01:89:18:93:f2:bb:be:2c:
2e:8b:1f:87:9e:ad:b5:7e:dc:eb:91:6d:76:09:96:05:78:6f:
62:8d:dc:8c:fe:33:29:36:0f:a4:db:ee:73:0f:f9:e8:44:c4:
69:ac:77:20:e2:2f:24:a9:55:a1:d2:51:af:8d:b8:6a:0d:45:
f5:26:27:2f:c7:3d:cf:d6:f6:ae:ba:50:57:7a:95:31:e1:fc:
1d:e9:eb:54:43:8b:a9:87:a0:f5:a1:2a:b1:1c:60:93:cc:49:
2b:cd:00:31:c9:0c:9d:6b:10:56:72:dc:29:a4:59:c0:db:a2:
99:24:06:e3:4c:56:65:67:e3:d9:76:15:48:39:95:be:1f:b9:
ed:6b:c2:e6:44:1e:c9:2d:d5:f8:e8:91:90:15:fb:17:af:61:
17:3a:6c:26:e1:56:dd:07:3e:ea:6d:28:73:94:a7:4f:49:9c:
1b:0e:e9:f5:ea:4e:bd:74:02:23:bf:14:b5:78:cf:18:3f:67:
6a:db:ee:ad:39:de:fb:d0:cc:e7:d5:1a:72:49:52:e3:4e:0f:
65:6d:62:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:24 2024 by rpki-client on console-fra.rpki-client.org