Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C00B8CA2E74611EEA9BE53C4775412E6.roa
File: C00B8CA2E74611EEA9BE53C4775412E6.roa (raw, json)
Hash identifier: ZbFG8DpzvaeqqfbA6W371ZIOJ1E+27Cu4kpuxVfaWkI=
Subject key identifier: C7:83:97:1D:76:E8:57:E6:42:80:66:E6:D3:83:6B:AA:88:56:DB:3E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A40D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C00B8CA2E74611EEA9BE53C4775412E6.roa
Signing time: Thu 21 Mar 2024 05:49:15 +0000
ROA not before: Thu 21 Mar 2024 05:49:12 +0000
ROA not after: Tue 23 Apr 2024 05:49:12 +0000
asID: 44559
IP address blocks: 154.220.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41997 (0xa40d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 05:49:12 2024 GMT
Not After : Apr 23 05:49:12 2024 GMT
Subject: CN=65fbca5b-ee80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:62:34:95:35:de:e9:03:e0:c9:6f:c1:10:f6:
96:29:24:8b:6d:83:bf:d8:f1:06:ed:0d:1e:e2:1a:
05:95:e5:13:f7:91:c1:3a:14:4b:64:d0:4f:84:63:
57:42:58:4f:e4:95:19:b9:29:c9:2f:5b:cc:c9:64:
8f:c4:9b:95:93:d8:ac:f3:44:f3:28:45:8d:19:a1:
39:79:55:68:84:6e:9a:70:97:10:c9:3f:e4:40:6d:
ff:5b:f8:45:01:35:f8:d0:b3:3a:5b:d8:d1:10:6b:
2c:1e:6d:b1:c6:7b:2e:b8:2c:79:69:f4:a4:d8:5a:
8f:1f:34:f3:d5:c7:67:12:c2:00:9f:5c:0e:1c:d0:
be:f0:1a:e1:52:c5:b5:16:8e:18:18:67:60:71:c9:
3f:63:5f:a4:f6:13:0b:ae:b6:88:1c:cd:48:d5:cb:
73:23:fb:4e:1c:7b:ed:3d:d5:03:3f:ca:f4:c4:c1:
c2:ee:9c:d4:b9:25:8f:5a:f6:dc:2d:79:fc:3c:6f:
76:7a:5a:15:cb:bd:b5:94:db:66:69:8b:40:b5:ee:
e4:06:73:77:72:09:52:26:b7:c4:93:0e:9b:fa:15:
c3:9b:04:1f:e4:56:09:1a:10:23:1a:bd:2a:aa:05:
8d:91:3b:7d:3b:8d:64:d1:85:20:40:ad:6e:f7:d7:
44:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:83:97:1D:76:E8:57:E6:42:80:66:E6:D3:83:6B:AA:88:56:DB:3E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C00B8CA2E74611EEA9BE53C4775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.178.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:53:de:36:f5:40:1c:05:95:e2:04:b4:69:ca:5c:90:00:ab:
b3:75:3a:20:d3:e0:cb:2f:29:5e:09:fe:ce:6d:c3:22:80:08:
fb:13:ec:b7:33:ef:2c:fc:89:c8:32:93:0a:56:27:78:d1:41:
b3:d1:4e:b6:61:a7:23:d4:8b:0f:40:05:e5:15:a9:9f:c9:ce:
81:cc:d5:ec:1e:75:e2:5a:0d:b3:2a:9a:82:dd:c8:7d:23:fe:
e3:05:b7:71:04:a6:1e:fc:00:65:0c:ea:e0:1c:95:7a:a2:2e:
b7:1e:17:d5:55:f6:d4:59:6a:52:b3:ec:36:e5:d8:0f:ad:c3:
f0:46:90:09:27:1c:3a:c5:ce:6a:4d:64:7f:04:99:45:c7:0f:
66:15:66:43:81:23:2e:d6:71:e7:f8:c7:c7:a1:2a:1b:7d:5b:
9d:4f:c8:f7:a4:6c:da:f6:98:cc:0a:2f:e4:f3:a5:fb:67:8e:
9f:5f:9e:07:31:90:b6:b6:12:6a:3c:b6:1c:14:d9:d7:6a:0c:
8e:49:55:2b:98:7d:27:7b:96:c5:98:f0:43:de:95:4e:31:ad:
4d:86:15:66:15:aa:8f:7c:60:2a:cf:82:e3:72:c1:a8:83:7f:
9d:7f:b2:ea:c7:6b:85:52:66:07:72:78:13:21:d9:dd:b9:98:
af:ef:ca:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:25 2024 by rpki-client on console-fra.rpki-client.org