Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F16B261AE75311EEB82C57AC775412E6.roa
File: F16B261AE75311EEB82C57AC775412E6.roa (raw, json)
Hash identifier: 4z0TUD4iiv6aqm+TxOxbLsxcfOde1PrXvQZwBmXBkdg=
Subject key identifier: 94:0B:72:A2:4C:B4:9D:C2:1C:2D:41:93:D0:77:EB:D7:31:1E:2A:66
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A48D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F16B261AE75311EEB82C57AC775412E6.roa
Signing time: Thu 21 Mar 2024 07:23:41 +0000
ROA not before: Thu 21 Mar 2024 07:23:38 +0000
ROA not after: Tue 23 Apr 2024 07:23:38 +0000
asID: 44559
IP address blocks: 154.218.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42125 (0xa48d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 07:23:38 2024 GMT
Not After : Apr 23 07:23:38 2024 GMT
Subject: CN=65fbe07d-b8a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:40:2b:b9:52:d4:b8:51:dc:17:7c:1e:87:05:
c3:f5:c9:e1:53:46:16:e3:60:2f:0b:42:62:e8:94:
ef:6f:09:6c:c3:5a:d6:fc:e6:3a:11:d7:42:7e:48:
3e:d6:42:9d:74:b1:c4:e0:1f:80:5f:f7:ad:62:7a:
5a:52:3a:39:c9:00:f2:27:a8:f1:4c:18:24:fa:26:
11:52:03:69:28:0d:0d:2c:0e:0e:09:22:9f:9d:ba:
0e:ad:60:21:b2:f3:66:d8:e9:05:6a:d9:8b:80:ca:
63:16:04:37:d4:c9:2e:a1:45:99:d3:d1:79:5b:dd:
65:7c:8d:47:b2:7f:2c:16:40:85:7a:66:05:0d:8c:
60:43:38:c4:35:a4:1c:42:a2:f0:cc:d5:67:86:a1:
bf:8b:ff:b8:cc:ef:9a:48:0a:d7:62:1a:5b:43:71:
27:d3:92:d0:88:d7:7a:96:0c:69:df:31:99:7f:87:
9c:cb:87:42:f9:35:a9:83:bc:a1:cb:2f:15:ca:74:
60:17:dd:82:8d:cd:94:b8:08:7f:cb:97:8b:99:75:
19:e4:16:ad:75:33:9a:3e:10:73:23:2d:a7:1a:07:
70:f1:5f:63:9d:84:9f:7b:89:53:af:4c:67:1a:9b:
fa:d2:de:59:d1:dc:4d:d0:ba:b2:d6:0e:b7:25:f0:
14:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:0B:72:A2:4C:B4:9D:C2:1C:2D:41:93:D0:77:EB:D7:31:1E:2A:66
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F16B261AE75311EEB82C57AC775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.50.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:7c:1e:22:f2:d4:c4:98:d0:f4:44:7b:8d:e1:30:df:8e:75:
27:b4:26:4d:e7:9c:39:2e:e8:e3:90:2f:44:44:0b:10:4e:42:
6f:28:19:9e:dc:76:c9:54:d3:75:c7:e2:7f:a8:b6:d8:18:f7:
9d:e5:a5:21:3b:bd:d5:28:11:84:92:8d:47:60:6d:21:df:9e:
fa:0a:6c:a7:ca:ee:fc:bd:9b:b9:e1:e4:9b:5f:e7:db:c2:16:
57:be:ee:7b:62:d7:47:5d:da:0e:76:b8:88:81:41:e3:2d:7a:
e9:b4:e5:68:3d:4f:ed:ca:e7:ab:32:55:c5:e1:00:22:f2:1e:
3d:d4:e0:21:7b:a9:2a:ec:1a:fd:14:28:af:13:ba:8b:f8:7a:
8c:90:5f:e8:c1:c8:2a:94:be:96:9a:43:e3:d1:42:42:72:41:
52:df:05:2b:c2:1f:a3:b0:eb:d7:25:4f:21:6d:e7:c3:30:4e:
6d:78:b3:47:70:ca:8e:47:fa:e1:bd:e0:36:1f:48:6e:d5:3b:
2a:07:4f:07:b4:1b:7a:21:c1:32:78:b2:7f:99:0f:0c:19:07:
ec:c3:47:e2:f0:fc:5f:ef:53:d2:f7:0f:9e:ee:d2:3f:d6:33:
cc:b0:47:6d:17:74:3e:e8:0f:4d:2d:6a:71:89:c8:ee:3d:b8:
cf:83:57:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:26 2024 by rpki-client on console-ams.rpki-client.org