Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EC7CD90CE73811EEB4A2395A775412E6.roa
File: EC7CD90CE73811EEB4A2395A775412E6.roa (raw, json)
Hash identifier: JE50Iw6syUZ/B8H/fH/BiSxcv7CiWRTNPPmkhVLWrtY=
Subject key identifier: 13:9C:7F:24:69:F8:8D:AD:88:E3:A4:AC:5E:50:2B:75:D9:A5:2B:8D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A384
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EC7CD90CE73811EEB4A2395A775412E6.roa
Signing time: Thu 21 Mar 2024 04:10:17 +0000
ROA not before: Thu 21 Mar 2024 04:10:13 +0000
ROA not after: Tue 23 Apr 2024 04:10:13 +0000
asID: 44559
IP address blocks: 154.221.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41860 (0xa384)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 04:10:13 2024 GMT
Not After : Apr 23 04:10:13 2024 GMT
Subject: CN=65fbb329-1bc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:19:8f:69:09:9a:93:73:73:3c:52:ba:99:b0:
28:8f:77:47:5f:77:40:97:fc:be:39:97:dd:1c:d7:
5a:60:df:05:a2:bf:18:a3:97:d9:af:c4:5f:4c:bc:
38:a0:ad:07:b9:69:42:ec:13:4e:70:c6:c7:d4:76:
8b:7a:44:9c:27:19:9b:49:50:34:2b:e7:cb:1f:b5:
13:27:0d:77:d1:e0:c9:e1:c2:47:28:12:50:a0:9f:
5c:ed:99:70:ea:82:76:5c:5d:1c:2c:75:cb:b1:b7:
96:84:6a:ab:99:02:8f:4c:8c:38:38:38:4c:7d:53:
ca:8e:da:a6:e7:a1:52:a8:35:34:3c:65:f3:fa:22:
c4:6a:40:48:97:76:78:19:c9:58:4f:90:67:07:66:
90:e6:93:ae:22:52:63:f0:dc:a6:16:31:e0:ae:d2:
ce:c1:c1:3c:e3:27:a0:2a:df:37:10:74:05:f5:de:
bf:1b:52:04:7e:17:26:45:fd:68:55:29:4f:a7:61:
44:29:bd:19:64:e5:b6:58:47:1a:0a:97:d7:6e:11:
f8:33:ae:2c:80:47:09:5b:05:c0:a4:77:c6:18:f3:
ff:33:bb:31:f8:09:80:72:23:ce:6b:85:e3:e6:85:
48:36:80:be:7f:7b:4b:0a:1c:ac:b5:62:a6:da:ff:
f4:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:9C:7F:24:69:F8:8D:AD:88:E3:A4:AC:5E:50:2B:75:D9:A5:2B:8D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EC7CD90CE73811EEB4A2395A775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.247.0/24
Signature Algorithm: sha256WithRSAEncryption
02:80:ed:31:15:26:3d:ba:c7:90:3b:69:0f:1e:66:4a:79:da:
14:02:3f:5c:f7:9c:1b:22:9a:a1:bf:30:ab:cc:f1:74:23:dc:
b8:83:5e:9d:10:2c:b0:cd:1b:2b:a9:7e:7c:d3:dd:ba:56:39:
9c:9f:a9:fc:27:17:c6:99:20:0f:f8:13:d0:6d:45:fd:d0:20:
10:f8:a4:ce:8b:59:33:e4:3b:69:75:d6:a0:c1:eb:fa:fd:56:
33:74:72:f6:b6:21:b4:03:c3:13:d6:3e:38:c5:e8:27:22:eb:
13:50:e2:12:db:f2:52:c4:9c:d9:17:9f:4f:1b:0e:75:d4:c2:
64:32:0e:db:20:b0:71:e3:97:06:43:31:b7:1b:29:38:ba:2d:
dd:21:9b:b1:7e:66:b9:bd:d7:d5:1a:b5:c3:ec:d5:42:b2:5f:
c0:8e:97:17:ea:67:03:bc:fa:86:b2:c3:e5:48:ea:68:20:2a:
d3:3d:17:5f:21:73:d9:9b:00:b1:bf:69:90:ed:df:e6:84:d6:
90:a0:f5:d9:d8:41:d1:0e:82:22:1b:9a:59:3a:8a:35:fe:ef:
d8:e9:d4:80:1b:87:5a:ea:17:74:ca:19:ca:7c:de:eb:cc:fe:
93:6d:eb:23:dd:b5:df:15:8e:d0:df:16:5e:84:78:66:47:2d:
53:5e:20:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:26 2024 by rpki-client on console-fra.rpki-client.org