Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E5F69BF0E75011EE82928994775412E6.roa
File: E5F69BF0E75011EE82928994775412E6.roa (raw, json)
Hash identifier: 1pdMgW/KIA13KMDoPp99IYcdFZm0B1V+tNBVQh/vCRk=
Subject key identifier: F7:AB:7B:5E:51:FE:37:25:BC:47:04:09:C1:94:A6:DF:9B:06:D6:F6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A46F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E5F69BF0E75011EE82928994775412E6.roa
Signing time: Thu 21 Mar 2024 07:01:54 +0000
ROA not before: Thu 21 Mar 2024 07:01:50 +0000
ROA not after: Tue 23 Apr 2024 07:01:50 +0000
asID: 44559
IP address blocks: 154.220.129.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42095 (0xa46f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 07:01:50 2024 GMT
Not After : Apr 23 07:01:50 2024 GMT
Subject: CN=65fbdb62-5f76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6c:9c:9a:72:7b:b5:48:22:f0:07:71:e0:37:
4a:fc:a1:9e:91:7a:8f:19:65:a0:fc:02:0c:3f:3b:
88:44:d2:ac:9c:a9:4a:08:0d:18:2c:71:d6:32:09:
97:bf:c8:17:b6:11:4d:5f:c8:e1:c5:d3:dc:ad:cb:
2c:7a:8a:01:a7:d2:5d:30:13:5a:1d:38:79:a5:4a:
bd:f2:f3:74:e4:2f:da:91:a6:1a:65:37:39:8f:bc:
cc:e3:4a:f8:b2:72:1b:07:54:c4:38:5e:83:90:c5:
63:57:a5:68:0c:bb:c3:61:2a:b5:e6:cb:f9:6d:a6:
90:72:6d:a4:c8:83:34:ca:6f:a4:79:be:47:d8:2f:
b7:b3:11:28:13:b8:a4:7e:76:1c:74:f3:53:63:a9:
75:07:c1:f7:14:dd:0f:9f:75:78:74:05:c3:88:60:
74:da:ff:cb:f1:c4:a9:5f:d8:9f:83:d4:7e:57:5f:
8c:ed:5e:2d:a5:bb:1b:83:b6:46:5d:d1:85:2b:e5:
be:cb:57:99:8a:7f:5c:5b:db:ad:35:7f:ef:0f:a4:
99:ed:50:05:c3:d0:a8:67:0f:e7:04:ab:d2:29:bc:
d1:40:e1:eb:ff:fd:12:91:2c:3c:d8:fb:af:77:2a:
25:d6:1d:1a:7f:bd:ed:69:43:f8:9f:9b:c6:94:8b:
01:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:AB:7B:5E:51:FE:37:25:BC:47:04:09:C1:94:A6:DF:9B:06:D6:F6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E5F69BF0E75011EE82928994775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.129.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:53:d8:62:ed:f5:ed:ca:99:66:36:31:2e:36:72:a5:1d:d5:
d7:97:5f:2b:31:6d:7b:0f:bc:f1:e4:9a:40:2d:00:b7:5f:3f:
f8:42:5e:7a:8f:bb:35:d6:b8:ac:0c:1a:39:fb:ba:57:ae:97:
14:a2:fe:13:3c:53:9e:5e:c6:04:14:0e:0d:a6:30:37:c3:67:
81:9f:e2:15:8f:a4:7c:4e:2b:ad:7e:25:30:c8:e5:92:46:12:
b1:db:43:c3:de:f6:a9:ec:a7:69:95:96:44:af:c4:76:fe:69:
49:c5:c7:ec:84:90:53:96:3c:d4:f0:2d:ca:af:a9:4b:bc:56:
5b:bd:6a:4d:64:2a:91:95:42:fd:94:d5:92:ae:06:f0:82:33:
41:30:f9:3b:20:cf:8b:6e:2a:d8:78:90:6a:1a:b4:ba:2d:b9:
62:af:8e:30:9b:64:d2:c2:60:ca:06:ee:8e:45:e1:9d:86:cb:
7e:10:88:40:3e:eb:42:5c:78:a1:81:60:24:c5:b9:56:05:9d:
79:64:fe:79:c2:65:2a:b3:ad:e2:55:93:83:b1:d0:18:f9:65:
7c:12:b4:ae:1f:84:2f:a9:8c:8c:e9:ac:f2:f9:c6:2b:1a:8a:
21:bb:de:78:8e:44:02:c3:74:52:a9:62:ca:f9:bf:01:bb:4b:
ae:3c:d9:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:25 2024 by rpki-client on console-fra.rpki-client.org