Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE56268CE73B11EEB464F56F775412E6.roa
File: DE56268CE73B11EEB464F56F775412E6.roa (raw, json)
Hash identifier: f4gCu/qbcx2TOqQe5ZPe2b94/ftKUPkFdkh3BdWP5uw=
Subject key identifier: 4E:97:B9:CC:65:1B:C6:F1:0D:09:F5:5C:C8:9D:CD:D1:93:89:67:B3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A3A2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE56268CE73B11EEB464F56F775412E6.roa
Signing time: Thu 21 Mar 2024 04:31:21 +0000
ROA not before: Thu 21 Mar 2024 04:31:18 +0000
ROA not after: Tue 23 Apr 2024 04:31:18 +0000
asID: 44559
IP address blocks: 154.221.232.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41890 (0xa3a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 04:31:18 2024 GMT
Not After : Apr 23 04:31:18 2024 GMT
Subject: CN=65fbb819-aebf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:bd:4c:44:88:67:88:03:eb:9d:2b:95:b0:7c:
a1:c9:b0:f8:c6:72:34:b3:e9:3c:d4:3f:7d:b8:32:
ec:88:e4:7e:68:fc:d9:cd:df:9d:ff:de:bb:b6:82:
1a:f5:69:f4:cb:d9:12:f6:b7:d7:10:5a:74:83:ce:
9a:6b:e7:82:91:00:a2:eb:0a:aa:c8:09:67:6b:c2:
dd:b0:4c:51:e2:c6:bb:63:60:82:5c:f7:92:b4:d0:
36:51:e1:40:53:7e:73:09:a2:2c:6e:66:8b:b1:27:
6a:1a:b7:38:07:5f:90:a0:c1:f9:69:ab:7e:c6:a8:
c3:49:00:fe:ff:a0:e8:ac:2a:af:51:db:18:46:32:
cf:1d:8e:a3:c3:81:2b:b6:26:f4:24:24:ff:ec:a6:
45:af:82:1b:61:90:b1:8a:58:0c:26:65:2c:38:df:
d3:ff:7b:52:9f:87:3c:29:24:2f:2e:aa:6d:62:47:
8e:1a:a3:ae:a5:9a:1d:89:96:26:bc:27:0e:ff:21:
dd:03:4e:94:6e:94:88:48:2b:02:bb:6b:cc:d0:14:
3b:34:d9:4b:70:d2:cd:73:a8:2d:d4:d1:b9:74:8d:
b2:aa:db:ee:6b:4d:5d:7c:05:a6:a6:ea:19:61:3f:
c0:fb:8d:8d:c7:03:2f:fd:d6:1f:de:ac:fb:8f:22:
c3:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:97:B9:CC:65:1B:C6:F1:0D:09:F5:5C:C8:9D:CD:D1:93:89:67:B3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE56268CE73B11EEB464F56F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.232.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:46:bc:63:90:4f:a4:5b:ec:b5:28:3b:8f:cd:0d:4e:fc:b9:
d6:cc:3d:67:26:e8:c4:c5:b0:f3:30:e2:a9:e2:d6:00:df:1f:
16:c8:88:25:13:df:0f:4c:5b:98:d4:df:35:23:ef:39:17:28:
be:fc:dd:76:a0:4b:10:1e:84:95:07:bd:6d:e0:93:14:df:ac:
9a:9d:b0:bc:e5:fd:8c:43:6f:19:45:b2:ca:57:97:57:11:15:
82:d1:30:33:ff:87:8f:47:c9:2a:0b:fb:ae:e9:ae:bc:20:e8:
d3:31:58:f0:60:01:81:e6:2d:f9:e5:1b:8f:a0:7d:04:12:75:
2f:b4:45:98:dd:84:66:48:73:f9:37:ab:76:d1:23:c9:47:1c:
5b:46:3a:7d:b5:03:30:95:f7:7b:97:2d:6f:87:a5:13:48:5e:
5d:1a:69:6c:57:0f:a5:32:9e:e6:20:74:a1:74:74:8b:d4:b4:
78:cc:e9:14:34:32:d8:f1:01:14:dc:71:d3:16:12:fa:fe:ac:
be:59:15:fa:de:02:a3:74:1a:ef:d9:ac:bb:54:7e:d8:20:99:
41:44:f6:07:96:0c:bb:1e:e8:9b:aa:c0:e5:83:1e:ad:13:2b:
9d:95:c0:9d:5c:70:8a:e6:5c:cc:a2:ed:20:18:8c:35:4c:f1:
d0:5b:1b:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:25 2024 by rpki-client on console-fra.rpki-client.org