Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E66DC57EE75811EEBD910D54775412E6.roa
File: E66DC57EE75811EEBD910D54775412E6.roa (raw, json)
Hash identifier: GKfWAiocVUUsMzRBEaZVOnSrWtFvG1yGcBTDR+FTPNo=
Subject key identifier: 0A:20:FC:66:4A:1A:5D:64:01:42:C4:87:A6:BB:8C:5C:FB:12:39:87
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A4BD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E66DC57EE75811EEBD910D54775412E6.roa
Signing time: Thu 21 Mar 2024 07:59:10 +0000
ROA not before: Thu 21 Mar 2024 07:59:07 +0000
ROA not after: Tue 23 Apr 2024 07:59:07 +0000
asID: 44559
IP address blocks: 154.211.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42173 (0xa4bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 07:59:07 2024 GMT
Not After : Apr 23 07:59:07 2024 GMT
Subject: CN=65fbe8ce-9330
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4f:2e:74:8c:17:97:4d:6e:04:08:60:6c:3e:
e3:86:e3:b6:8d:c3:66:3d:4b:00:db:37:aa:4e:af:
b0:83:00:fb:17:6a:56:3c:a4:d8:dd:35:a0:1a:c9:
72:e5:0c:3a:7b:4f:10:de:0d:db:ea:4e:f9:a8:f2:
35:3e:9d:ad:c0:16:17:5d:a0:b2:70:d7:66:3f:d5:
9e:a5:da:0c:50:30:9b:f7:be:7e:d3:74:4b:2e:a9:
e9:c5:64:93:1e:85:28:cd:e1:90:cc:0f:06:8f:eb:
25:e7:35:95:54:98:84:24:ed:7a:74:40:83:83:2b:
1b:61:96:dd:e4:c8:fe:70:61:2d:4c:47:f0:d5:84:
30:2a:2b:8e:0b:02:5a:e3:f1:34:f5:82:df:8e:44:
67:0e:65:29:6a:38:4b:69:ae:5a:cc:38:f4:e0:db:
fb:60:62:4d:ee:6f:d1:bc:bd:35:75:74:da:b0:28:
5d:7a:f6:88:69:67:e3:a7:d2:df:16:6a:ca:7f:3e:
17:1d:ec:45:8a:19:c1:7c:19:ba:5b:20:5a:2e:70:
e5:63:ed:bf:98:4f:15:cd:fe:44:99:c9:7b:f6:73:
ae:4a:cd:0d:68:38:6f:6a:16:89:15:e7:25:f1:fa:
e6:fb:a4:af:14:a5:44:aa:12:fe:bc:59:fc:44:45:
fe:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:20:FC:66:4A:1A:5D:64:01:42:C4:87:A6:BB:8C:5C:FB:12:39:87
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E66DC57EE75811EEBD910D54775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.58.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:67:d4:b5:74:b1:4f:82:85:d5:d3:7d:35:ee:45:44:f1:2c:
2b:94:94:dc:cb:e0:fb:0f:6d:80:9e:a1:92:39:12:70:5e:9e:
07:0c:bb:0f:84:e9:96:f6:03:a6:c6:50:cc:08:98:e5:bf:f6:
07:ac:b7:ab:d6:a6:5e:cf:10:7b:db:f4:88:5f:25:d0:e4:01:
5f:70:75:0f:76:72:9a:89:2f:17:30:fd:c3:62:d2:1e:05:1c:
f6:a0:c1:cf:ab:26:0c:db:49:8f:be:63:bf:a7:c7:06:97:cf:
fb:0c:6a:fa:df:83:96:d0:a9:58:48:84:17:4a:71:c2:aa:64:
ed:16:87:62:2c:04:bf:84:0d:d5:47:b5:44:63:f7:ea:33:e1:
49:41:6a:84:92:8f:96:dc:b4:16:9f:14:2a:94:8c:77:ae:cf:
27:fd:69:14:04:06:b7:4e:39:c0:69:3e:af:b7:62:f2:a8:d7:
b7:01:40:3a:b1:92:c9:e3:01:9a:01:93:16:9b:12:0c:ee:1d:
8d:72:c2:ae:94:10:4a:fa:c5:40:26:36:e4:e1:d9:a6:25:d2:
94:74:b2:04:10:d5:34:fd:d6:61:b9:45:e1:b8:d4:d1:4e:59:
98:ba:87:e0:6c:42:f5:a0:6b:07:af:f3:fe:74:f7:6f:3d:71:
63:16:d7:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:26 2024 by rpki-client on console-ams.rpki-client.org