Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF447EA8E74911EEACF98C5D775412E6.roa
File: AF447EA8E74911EEACF98C5D775412E6.roa (raw, json)
Hash identifier: 3vd4EOl0MpU3kxTwtqeBsQBtyRI7Licpdx8M667tzw8=
Subject key identifier: 0C:FA:FD:E7:BC:14:19:5C:3F:4B:4A:79:49:5F:83:47:AF:BF:D8:FA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A427
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF447EA8E74911EEACF98C5D775412E6.roa
Signing time: Thu 21 Mar 2024 06:10:15 +0000
ROA not before: Thu 21 Mar 2024 06:10:12 +0000
ROA not after: Tue 23 Apr 2024 06:10:12 +0000
asID: 44559
IP address blocks: 154.220.165.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42023 (0xa427)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 06:10:12 2024 GMT
Not After : Apr 23 06:10:12 2024 GMT
Subject: CN=65fbcf47-6743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b9:19:4a:4b:60:13:02:a4:9b:a4:4d:28:fc:
ec:9e:23:11:23:8e:45:89:32:b8:32:98:c8:72:bf:
a9:85:d1:94:cd:17:f9:6e:fe:a4:ba:db:80:18:73:
4f:8d:d6:70:1b:5e:01:9f:43:7f:7e:0f:e4:81:74:
b1:b9:ef:87:06:d9:53:00:53:4e:02:7e:1d:28:e0:
2c:b4:49:41:66:38:c1:4a:e8:e1:e7:5b:90:09:2e:
fb:98:6a:c0:15:c3:a6:84:68:28:b9:35:37:59:aa:
68:d7:d6:7e:8e:1f:2c:fa:8d:a8:ee:f0:76:73:33:
c2:ea:a3:df:9d:51:16:3a:68:db:6a:71:c3:18:71:
9d:eb:58:11:36:03:18:8c:cb:53:49:29:23:68:ab:
54:eb:28:df:1a:11:7d:8c:ff:31:d7:cb:63:45:c0:
5b:a3:3d:62:81:a2:b5:5a:15:b0:3d:35:d7:ec:f5:
0e:7f:39:a8:fe:3e:2f:48:d0:eb:a2:15:d2:90:62:
f1:ad:2a:ae:96:f9:fe:1f:3d:19:20:88:c5:af:5e:
ce:a4:d9:62:86:cb:fa:05:d4:8f:70:67:46:9d:f2:
75:6b:43:ed:3d:7a:70:60:87:c6:2d:48:41:38:9d:
cf:96:32:3b:08:cf:29:0a:0d:1b:c4:db:52:1d:27:
1e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:FA:FD:E7:BC:14:19:5C:3F:4B:4A:79:49:5F:83:47:AF:BF:D8:FA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF447EA8E74911EEACF98C5D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.165.0/24
Signature Algorithm: sha256WithRSAEncryption
12:de:9a:f2:b1:7b:b1:cc:25:f8:ae:41:4c:ed:8d:48:e6:f9:
b1:52:e9:f4:15:74:2d:6e:84:5f:9d:a5:9c:1b:14:b5:6d:2e:
8b:08:7a:5c:4b:ca:18:9b:a3:b4:cb:05:dd:13:39:4f:f9:de:
ec:98:2d:c5:40:2e:a5:0d:f5:f2:ee:e1:2b:27:b7:db:ab:86:
e9:2a:73:0b:9e:7c:06:05:fa:a9:ff:ac:4d:f2:25:41:b2:a2:
c0:f3:fd:81:bb:73:e9:3c:15:99:e9:a9:08:0f:cd:be:91:6d:
60:7d:6b:bb:b8:c6:a6:ba:b3:0f:a6:0e:5d:b1:02:e4:e7:db:
cc:3f:10:20:7e:e4:0b:45:c5:b5:05:c1:53:1b:3b:c4:5d:12:
d3:bc:ee:5e:89:6b:f0:1d:c8:7d:12:f1:5a:d2:a0:09:ce:ea:
57:d1:02:eb:ec:c6:1e:57:7a:06:85:24:42:af:ec:ab:d2:60:
65:db:b2:3a:28:01:a4:1a:06:69:12:eb:3b:56:93:ad:48:68:
44:da:5b:9a:b4:b5:cd:10:d5:91:fd:c0:84:a0:a0:38:9f:91:
9a:ed:8c:a6:71:2a:65:28:74:91:80:79:6f:81:1c:2e:cf:a0:
78:75:db:bd:d5:5b:9c:ab:49:bb:7b:1c:24:eb:6b:d9:32:5e:
6b:b4:5a:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:25 2024 by rpki-client on console-ams.rpki-client.org