Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B4D76C3AE75911EE84AA575B775412E6.roa
File: B4D76C3AE75911EE84AA575B775412E6.roa (raw, json)
Hash identifier: UiuvAl0grkfMHTJV4/8cvYn6Pvs4Y+cBumfD0eBKbQ0=
Subject key identifier: 03:63:B5:A8:A8:18:BC:F5:B0:F6:59:1B:B0:3F:92:88:B6:FE:C7:A7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A4C5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B4D76C3AE75911EE84AA575B775412E6.roa
Signing time: Thu 21 Mar 2024 08:04:57 +0000
ROA not before: Thu 21 Mar 2024 08:04:53 +0000
ROA not after: Tue 23 Apr 2024 08:04:53 +0000
asID: 44559
IP address blocks: 154.211.54.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42181 (0xa4c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 08:04:53 2024 GMT
Not After : Apr 23 08:04:53 2024 GMT
Subject: CN=65fbea29-43bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:93:1f:c0:c8:ef:bc:e0:5d:75:f7:ba:aa:0a:
0f:db:54:41:72:36:0d:32:79:6c:02:63:d5:89:f1:
b6:b4:79:8d:ae:fb:f1:be:0c:7e:2c:22:cd:ac:cb:
e2:ec:03:49:ae:96:4e:4b:ce:90:e0:ee:92:f0:59:
03:48:4f:f1:bd:61:d7:10:e4:23:be:3e:ea:03:d1:
01:1f:17:26:8a:72:ee:ed:a5:48:88:f2:7c:03:02:
7a:97:d8:2d:a5:03:85:c5:9f:e2:cf:6a:22:6f:55:
b1:84:74:73:69:d4:29:6a:fe:c7:0f:72:64:86:fd:
0c:e1:46:85:91:87:ff:8c:d5:3e:c3:be:f8:66:9b:
97:c3:68:28:0b:5b:c3:cd:11:ef:76:b1:e2:e1:91:
a1:bf:32:fa:d1:c5:d0:30:36:91:65:21:b2:ca:57:
a1:98:e2:eb:cb:9f:e6:4d:7e:5d:76:49:d4:0e:c2:
6d:05:1e:e0:3a:2f:17:e6:c7:cb:45:9a:5a:c9:6c:
54:ec:ba:c6:3a:d3:37:c7:92:c9:ac:fb:d9:46:de:
5c:b9:9a:20:4c:63:61:8f:24:2d:1d:59:d3:df:f1:
ec:39:63:f1:f5:c1:63:31:e3:34:b8:3e:38:b9:4f:
a3:a5:98:1b:2f:98:32:98:3f:b5:57:de:33:fc:eb:
89:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:63:B5:A8:A8:18:BC:F5:B0:F6:59:1B:B0:3F:92:88:B6:FE:C7:A7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B4D76C3AE75911EE84AA575B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.54.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:62:39:ac:a6:fd:92:95:b8:64:61:8b:29:de:67:40:7e:4f:
e2:bb:f4:37:06:0a:ca:5b:15:74:bd:0f:6a:8a:1c:85:5c:d5:
cb:d6:99:de:d7:ff:69:13:24:f4:1e:c9:51:14:39:e6:14:b7:
db:21:98:1d:ba:80:66:63:e9:94:45:9e:02:73:f0:61:c4:50:
f1:62:a3:6d:45:38:1c:76:ba:d4:27:fd:21:0a:4b:43:ad:85:
e3:3d:e9:d7:e3:e1:22:8e:b8:7f:bd:56:4e:b2:56:13:22:dd:
4d:e8:8a:f4:dc:77:a7:ef:73:74:98:b2:a6:71:44:29:8c:bf:
28:9a:54:cd:87:73:0d:96:2e:05:c6:f5:e7:c2:a3:ca:ca:9e:
48:57:f1:7d:b2:8a:31:c4:69:28:01:09:22:f8:15:bc:e2:96:
df:72:5d:a2:b1:93:e2:4b:c3:7a:8c:86:dd:ac:f6:90:68:b3:
05:aa:3d:dc:33:a9:57:42:a7:5d:3a:6f:55:62:69:b2:e2:37:
4d:67:7f:5b:df:cc:e0:63:8e:1a:fe:5b:0a:ff:d3:f7:6d:c5:
29:ad:65:35:2b:2f:65:21:1a:51:1c:6a:59:3c:ce:88:6d:75:
dc:39:02:66:17:e6:fb:07:7b:d5:93:5c:c5:65:4c:83:41:1d:
4b:74:fa:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:25 2024 by rpki-client on console-ams.rpki-client.org