Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D8915EC6E77A11EE93CA4D5B775412E6.roa
File: D8915EC6E77A11EE93CA4D5B775412E6.roa (raw, json)
Hash identifier: zJNb0Kixamm+3w4+lUwOakM73icr5yIavf6wN6eUXws=
Subject key identifier: 4C:23:42:BE:5C:F0:14:9A:DB:DF:A3:3B:FE:C3:B5:B0:D9:18:10:0B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A545
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D8915EC6E77A11EE93CA4D5B775412E6.roa
Signing time: Thu 21 Mar 2024 12:02:10 +0000
ROA not before: Thu 21 Mar 2024 12:02:07 +0000
ROA not after: Tue 23 Apr 2024 12:02:07 +0000
asID: 44559
IP address blocks: 154.210.122.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42309 (0xa545)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 12:02:07 2024 GMT
Not After : Apr 23 12:02:07 2024 GMT
Subject: CN=65fc21c2-5f4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e8:69:5d:fe:b2:15:f6:2d:f7:a3:5b:97:2b:
33:f3:94:78:70:e3:c4:76:cd:20:94:7d:09:f1:31:
1d:08:6f:81:1f:9d:e4:71:bd:b3:cb:ad:86:09:fa:
80:92:cc:5f:28:c8:ec:aa:7a:b6:cb:ef:3f:ce:11:
b4:ed:b3:6f:81:9d:48:95:a0:7a:7f:33:ba:e2:57:
3d:95:4b:62:bc:01:e2:d0:bf:2f:46:aa:10:b1:aa:
b5:78:cd:e7:0a:3b:58:af:5e:3b:ff:aa:13:42:d0:
09:42:b9:4b:15:a6:b5:82:1f:1b:ee:ce:52:e1:08:
15:c2:d3:ce:50:7a:4c:98:a0:0e:a9:70:88:eb:03:
81:ac:f9:da:c5:1f:4f:88:4a:80:5a:61:a1:05:6a:
0d:5d:f8:40:cb:5b:33:1f:fb:79:19:cd:16:04:12:
0e:12:d2:ee:16:1d:04:20:65:3e:d7:9e:90:bf:33:
18:45:51:e4:51:6a:3b:58:25:f6:1c:9e:56:ac:f2:
f8:ee:e1:80:7e:80:75:61:e0:39:f8:b5:2d:a5:62:
f4:2d:28:f8:a3:99:fc:d9:2e:81:5b:28:36:df:5e:
a2:2e:36:cf:31:68:fd:75:93:8c:75:13:58:b7:ef:
c7:49:7d:ce:3e:f4:24:0d:17:11:44:20:73:d8:f9:
f5:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:23:42:BE:5C:F0:14:9A:DB:DF:A3:3B:FE:C3:B5:B0:D9:18:10:0B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D8915EC6E77A11EE93CA4D5B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.122.0/24
Signature Algorithm: sha256WithRSAEncryption
32:88:23:bd:42:97:36:69:56:c4:ae:f4:8d:ff:7d:a1:88:a2:
db:7e:4c:5f:88:17:6b:85:8d:16:14:5c:7a:a8:74:81:b8:c2:
1e:07:ea:65:5b:b9:be:97:1d:c8:ad:aa:3a:01:6c:e5:e8:69:
90:1b:a8:f4:b8:13:74:76:2f:53:cd:af:a4:a1:33:e8:17:b6:
44:f6:a1:c7:30:c6:0e:d1:ff:a0:b1:8d:11:0e:43:56:71:cc:
a2:29:95:4b:a7:00:72:ac:c6:a2:74:c3:8a:e1:ea:55:5a:52:
25:0f:f1:16:a5:6a:15:2e:d5:38:58:9f:fd:1b:04:6b:58:3c:
3a:2a:48:de:52:66:3e:a7:2b:4b:e5:32:20:3d:b3:1c:04:82:
fa:7f:5b:39:1e:e9:db:65:de:fc:4f:3a:7b:2f:60:0c:af:1b:
62:20:99:5b:47:63:69:fd:ea:4f:da:af:28:98:40:f3:07:b4:
a4:e0:2c:06:44:f6:15:6d:3e:07:d8:60:5f:82:55:1d:a0:dd:
6b:72:1e:fd:5f:54:64:bc:1b:3c:2b:60:45:64:6e:24:3c:de:
b9:d9:88:91:de:82:76:d9:00:6e:61:17:0f:fa:cf:9a:5a:12:
27:6d:d9:25:80:2d:06:d7:64:44:d3:55:5c:67:ab:e1:19:b9:
3d:95:68:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:26 2024 by rpki-client on console-ams.rpki-client.org