Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D605D1D4E75511EEAAAD13BA775412E6.roa
File: D605D1D4E75511EEAAAD13BA775412E6.roa (raw, json)
Hash identifier: 9SDLjhjE1hUAz+w/Ah1P74mWZ1X/Z5FDa4bpW9tRuUc=
Subject key identifier: 00:A4:E8:6A:23:7B:2F:64:5F:97:21:2A:8D:9C:05:CB:C0:D6:85:09
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A49F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D605D1D4E75511EEAAAD13BA775412E6.roa
Signing time: Thu 21 Mar 2024 07:37:14 +0000
ROA not before: Thu 21 Mar 2024 07:37:11 +0000
ROA not after: Tue 23 Apr 2024 07:37:11 +0000
asID: 44559
IP address blocks: 154.218.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42143 (0xa49f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 07:37:11 2024 GMT
Not After : Apr 23 07:37:11 2024 GMT
Subject: CN=65fbe3aa-bc0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:92:49:ff:73:eb:48:b8:47:57:16:24:4a:87:
92:d9:6e:b7:b1:8b:2c:9c:30:6b:22:12:01:a6:44:
10:81:1c:57:49:fb:0a:1b:50:64:2d:00:ac:bf:89:
e6:bc:85:00:a6:f9:43:4d:d9:1e:82:a8:9b:7a:0d:
eb:7a:06:5d:70:96:a7:2f:07:d5:aa:eb:1d:dc:c8:
ea:b5:42:2c:9c:07:27:d0:03:71:ae:b0:23:c1:9c:
60:fc:9d:a5:30:9c:83:d7:26:37:23:37:85:c2:b1:
16:e4:56:19:d0:45:80:40:8d:9a:64:08:fb:de:91:
26:52:c3:db:b4:e7:19:44:3b:f9:2e:4b:9e:5a:e2:
05:32:05:59:55:3f:b9:77:97:42:44:0d:66:c1:49:
90:25:46:de:81:07:b4:7a:d1:43:45:1f:6f:86:53:
87:1f:cc:3a:4d:65:29:96:ba:36:01:0f:28:a9:f1:
e4:8e:ae:ed:82:d5:51:81:0a:94:61:98:61:d2:b0:
41:27:ce:47:9f:76:d2:8c:dd:11:10:98:77:ce:e9:
f0:de:e9:5b:f3:eb:a8:36:10:9c:62:78:c0:df:99:
b1:51:c1:ef:30:ec:d1:f0:14:b4:84:dd:79:4c:e4:
85:de:e1:98:62:d7:15:a0:25:1f:04:2a:c1:a7:f2:
d4:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:A4:E8:6A:23:7B:2F:64:5F:97:21:2A:8D:9C:05:CB:C0:D6:85:09
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D605D1D4E75511EEAAAD13BA775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.41.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:5d:2f:c1:ab:11:fd:de:09:9b:34:1d:e9:60:61:00:fb:77:
5e:c7:41:a7:55:1f:73:3c:23:ea:58:df:c0:47:3e:01:6e:76:
17:f1:e8:0c:4f:35:42:46:e6:e4:d6:7d:4a:ee:f6:63:a5:7d:
e9:67:67:4f:94:21:33:ad:80:32:29:49:a3:a8:d5:7d:14:fa:
c3:69:00:2a:0d:23:f7:f0:9e:8f:b6:6c:37:87:5a:65:0e:9c:
c5:75:2f:04:4f:92:5f:01:f6:7e:e4:0d:a4:03:50:c1:e9:05:
7d:04:0e:12:aa:e1:2a:5f:69:ef:e2:a2:5a:45:bc:e7:61:dd:
af:08:23:19:a1:08:fe:44:b4:0e:d7:d1:2e:2c:d3:b9:0f:5d:
ec:cf:15:6c:c3:e5:02:5c:cd:fa:a9:57:a0:28:8a:57:2b:c1:
75:60:b8:ff:63:57:30:e9:29:2d:76:aa:61:9f:5d:6a:b5:b0:
fd:ac:5a:7d:3a:71:84:13:0c:29:00:16:87:6a:5c:8a:af:3f:
ab:a3:84:6f:e5:33:8d:5d:a0:00:17:6e:d1:f0:1c:03:e1:91:
42:7e:4e:71:aa:c5:b5:8f:0e:ab:65:09:03:1b:c1:6c:6b:3b:
93:8c:40:8c:f1:65:bf:3c:d1:73:f9:25:16:a8:d9:33:f4:8b:
c9:a6:1d:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:25 2024 by rpki-client on console-fra.rpki-client.org