Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7720992E5C611EEA42DE18B775412E6.roa
File: D7720992E5C611EEA42DE18B775412E6.roa (raw, json)
Hash identifier: l72ltHZ1Papz4sUhCCJisvRJEuiihQC47Rr07q+g2w8=
Subject key identifier: 2C:39:7B:38:0D:5F:16:28:16:13:61:99:3C:06:5F:3A:CD:2D:27:D7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A314
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7720992E5C611EEA42DE18B775412E6.roa
Signing time: Tue 19 Mar 2024 08:01:08 +0000
ROA not before: Tue 19 Mar 2024 08:01:04 +0000
ROA not after: Mon 22 Apr 2024 08:01:04 +0000
asID: 150698
IP address blocks: 154.197.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 22 Apr 2024 08:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41748 (0xa314)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 19 08:01:04 2024 GMT
Not After : Apr 22 08:01:04 2024 GMT
Subject: CN=65f94643-0c33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:0e:f7:2c:c7:0c:c9:7f:2b:57:ba:08:5c:7e:
54:6a:6a:c9:88:b2:2a:49:8c:fe:24:92:c1:c8:2f:
eb:c2:d6:f5:7f:f1:c2:c6:ff:0d:4c:5a:ec:53:94:
fc:0b:e5:66:f7:7d:47:95:f1:2d:6f:f0:38:bf:8b:
6e:c1:2a:a7:c3:85:e0:f7:db:1a:31:6e:c6:69:33:
7b:39:9a:7d:ee:1c:0f:0c:dc:c0:60:da:d1:d8:46:
36:7c:2a:4a:55:ea:a6:6a:5a:2e:77:9a:20:cf:b0:
87:dc:6b:6a:b8:26:af:ca:cb:b2:df:00:fc:64:e8:
61:1e:80:4f:40:f6:fe:54:16:50:3b:51:57:37:b6:
1f:55:11:1f:ce:a2:ae:1f:ff:b0:24:50:6a:dc:91:
93:ef:f4:e3:7a:f8:82:20:19:6d:a2:33:02:fe:2c:
bf:a9:5d:c3:3c:85:07:62:8a:59:2e:e5:02:17:a9:
18:e8:0e:d7:22:11:fe:1f:da:a8:94:ba:36:29:47:
98:a9:02:15:f2:ed:ce:43:b8:b1:04:ff:6e:74:e7:
36:01:2a:27:16:c7:2f:00:5c:cf:2b:a6:8b:bc:2b:
34:d0:bd:ed:be:d9:2c:d4:17:ed:a0:ea:34:01:4b:
f5:ae:7b:a4:08:2a:49:e6:11:e3:07:c3:12:3f:4e:
e6:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:39:7B:38:0D:5F:16:28:16:13:61:99:3C:06:5F:3A:CD:2D:27:D7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7720992E5C611EEA42DE18B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.117.0/24
Signature Algorithm: sha256WithRSAEncryption
56:44:fd:d0:be:91:0b:3d:83:2e:80:60:8c:da:53:ed:94:e5:
80:85:1f:30:19:8f:1e:8a:37:48:dd:41:c8:de:7e:03:c2:c6:
0d:09:a2:f0:1d:86:9e:44:86:94:0f:82:18:90:a3:30:f7:6b:
fd:3e:3d:99:61:c5:99:2b:72:0c:af:b8:8b:ae:16:f3:ea:0c:
42:b9:1e:25:04:1a:cb:e3:e0:bf:f2:e4:21:c6:07:05:fc:8e:
f9:be:22:fe:8a:ee:22:b3:e5:5b:e6:83:67:0c:be:67:9f:72:
eb:34:49:10:f4:0a:d0:73:15:4d:c8:5c:c6:a2:78:2d:1a:37:
ec:cc:ce:59:40:4a:de:c8:ed:f2:41:24:9c:b5:29:9c:71:13:
04:a1:85:43:b8:b4:cf:12:9d:73:22:26:0d:47:64:ab:1b:75:
96:ff:88:59:04:06:97:a7:1e:dd:46:9c:d0:74:ed:33:eb:01:
98:e7:b2:04:a2:cd:fb:97:39:99:0e:86:54:b2:29:5b:ab:0b:
47:f7:ad:3c:d6:b1:77:1f:bf:71:b7:6a:ff:0b:bc:cf:0e:3b:
ac:9a:e3:7e:a4:b1:39:97:00:68:57:dc:68:41:84:0b:89:d9:
2f:cb:24:48:da:5e:9c:57:3d:89:cc:fd:3b:95:2c:75:44:c5:
e3:22:d8:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:25 2024 by rpki-client on console-ams.rpki-client.org