Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7BD2C2EE77911EE900E0455775412E6.roa
File: D7BD2C2EE77911EE900E0455775412E6.roa (raw, json)
Hash identifier: K8o3lUprug+og6HXBEl0xwaPmdfePasNlY5nKzgfnUw=
Subject key identifier: B8:7A:72:CD:DF:42:D1:80:78:58:1C:C0:C3:BF:9F:FD:31:29:2B:3D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A53B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7BD2C2EE77911EE900E0455775412E6.roa
Signing time: Thu 21 Mar 2024 11:54:59 +0000
ROA not before: Thu 21 Mar 2024 11:54:56 +0000
ROA not after: Tue 23 Apr 2024 11:54:56 +0000
asID: 44559
IP address blocks: 154.210.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42299 (0xa53b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 11:54:56 2024 GMT
Not After : Apr 23 11:54:56 2024 GMT
Subject: CN=65fc2013-dd4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c4:a4:2a:0b:1d:eb:dc:0c:87:c1:35:b7:51:
67:ac:4a:ec:15:50:c8:0b:99:1c:e5:fe:fe:69:2c:
72:44:fb:10:83:66:fd:21:e6:71:76:62:f2:2f:25:
b6:2f:dc:5d:ff:1f:d8:bb:b9:23:8a:8e:fa:73:90:
cd:e0:42:bd:b5:89:f7:11:88:69:2b:57:3b:5e:2b:
d2:6e:dc:21:67:58:93:ea:ed:50:76:04:e7:68:a2:
e2:26:02:62:76:8a:21:a5:e8:91:fb:b2:9a:7a:cf:
fd:28:fa:12:80:ec:e5:1b:cd:da:fd:aa:9c:0d:10:
16:84:2c:5a:ab:fd:70:e4:c5:99:ec:79:4a:c9:2e:
40:fb:92:ea:ab:e8:4a:9b:ab:8f:bc:c2:36:a1:d6:
5b:81:13:17:8e:c2:1b:a7:31:4f:fc:30:66:fc:d3:
cc:66:e7:a8:1b:39:13:81:bf:69:f0:08:41:e9:0c:
5d:ad:78:5b:03:a1:e5:36:02:03:63:10:c4:c9:86:
48:dd:fd:21:d8:1e:fa:c6:7b:42:63:6e:2d:fe:8a:
a8:db:6d:57:a4:b1:f5:80:84:10:ad:09:41:48:4c:
28:d4:24:8d:f4:f0:f2:19:c5:ec:21:e5:37:16:26:
65:5c:8a:ef:37:e2:48:c4:61:cb:15:46:92:7a:45:
8f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:7A:72:CD:DF:42:D1:80:78:58:1C:C0:C3:BF:9F:FD:31:29:2B:3D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7BD2C2EE77911EE900E0455775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.127.0/24
Signature Algorithm: sha256WithRSAEncryption
40:61:27:7e:27:3f:d6:79:de:9d:a3:b9:f4:53:1d:ed:6e:a1:
2e:7b:f8:89:bf:92:b1:89:24:5e:4b:19:7c:6c:58:d7:a9:9a:
4a:f3:04:22:5a:e0:25:f2:fb:f1:bc:c0:b4:4f:5f:bf:33:b3:
34:00:aa:6e:99:cb:49:3d:23:7f:45:9b:d8:95:0f:39:39:91:
04:9e:86:5e:54:23:26:02:1f:7d:d6:c5:cc:11:e2:d5:e7:21:
4e:8f:75:65:e1:86:25:ca:7a:82:4a:22:74:7e:89:a7:6b:cb:
09:a7:76:31:9f:97:77:16:62:a7:d4:d0:9e:77:a6:22:62:74:
1b:f4:8f:48:77:20:04:fb:4d:a2:47:e3:9f:60:1a:4c:f4:d3:
58:0b:33:d8:ee:a0:23:40:94:e1:75:99:fb:95:ab:41:2c:5f:
a5:09:69:e1:36:d6:60:49:cc:d6:d5:3e:27:75:d1:fb:5d:16:
a1:c6:f1:d1:3e:7f:65:84:2a:de:1a:52:5e:02:4a:b3:16:01:
13:36:12:28:b5:94:ea:76:9a:c3:d3:a6:b2:6f:2c:85:8b:ee:
e4:99:f7:af:3e:b3:1a:da:ee:66:de:9c:83:59:ec:60:b6:38:
58:f7:0d:0a:28:23:bc:cc:ac:2d:bf:8b:5f:e1:f7:cb:86:10:
2d:0b:b3:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:25 2024 by rpki-client on console-fra.rpki-client.org