Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1F63226E73711EE9BC34252775412E6.roa
File: F1F63226E73711EE9BC34252775412E6.roa (raw, json)
Hash identifier: FR8SNtwd7XwJMU+MqPlObg2B9QjFf77lv/4Fmv/3NIY=
Subject key identifier: 4B:BC:53:E9:52:F1:FF:D7:1B:54:CD:81:26:47:82:BD:1D:94:43:41
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A37A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1F63226E73711EE9BC34252775412E6.roa
Signing time: Thu 21 Mar 2024 04:03:16 +0000
ROA not before: Thu 21 Mar 2024 04:03:13 +0000
ROA not after: Tue 23 Apr 2024 04:03:13 +0000
asID: 44559
IP address blocks: 154.221.252.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41850 (0xa37a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 04:03:13 2024 GMT
Not After : Apr 23 04:03:13 2024 GMT
Subject: CN=65fbb184-24cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:32:15:b2:a7:13:39:de:b8:fa:85:ca:05:2c:
97:64:b8:02:48:a4:fa:aa:4a:37:77:fc:7c:40:2e:
2e:5e:de:03:86:c5:bb:a9:61:71:35:f9:1a:ab:68:
f9:83:dc:d6:5f:f9:cd:27:7e:98:94:99:82:d6:9e:
bd:70:f0:05:e3:0e:7f:4b:6a:b2:96:1d:c3:c4:14:
ff:8e:6b:99:df:51:0b:88:73:bd:21:e0:98:29:52:
dc:7a:78:ba:f4:53:21:44:7e:65:b8:d2:0a:db:14:
4b:a1:a7:37:12:42:96:f7:91:05:45:c9:85:5e:d2:
86:90:4f:ff:29:7b:f6:01:b2:42:8c:ca:ab:c3:72:
6d:93:f3:22:2c:cf:f2:5d:1e:8e:72:d3:bc:2c:60:
f9:ec:e4:0f:f3:f1:58:1e:ba:f3:fe:81:7d:61:40:
a2:91:48:15:26:1e:5e:25:d2:85:13:4f:e9:55:2b:
20:f8:17:48:8d:a1:40:c2:e0:33:f2:ba:56:c6:4f:
7a:a7:0d:ee:b9:4e:71:96:9d:94:44:f6:f8:2d:ae:
5f:27:9a:1f:30:d4:e6:6d:d2:c1:ed:0e:57:4b:20:
af:8b:3e:a9:07:19:94:97:f9:48:16:93:da:37:7c:
8e:33:78:75:d1:a7:01:68:a3:e0:43:2c:54:43:da:
eb:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:BC:53:E9:52:F1:FF:D7:1B:54:CD:81:26:47:82:BD:1D:94:43:41
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1F63226E73711EE9BC34252775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.252.0/24
Signature Algorithm: sha256WithRSAEncryption
01:5c:b3:69:04:71:45:c4:d8:16:9d:fd:55:00:40:a8:9a:46:
5d:8f:47:85:cb:10:88:cd:a4:5c:49:70:84:39:ff:f2:23:ed:
9f:fd:74:1c:66:55:69:32:b6:68:f4:3f:c5:33:f8:be:9c:a9:
a6:a7:68:40:e9:5c:e5:ac:52:e3:ae:6b:05:23:c7:75:a4:18:
9e:a9:5f:06:42:a5:f9:af:89:79:6b:09:8f:02:14:5e:66:31:
7c:fe:01:96:fc:66:40:67:66:c6:da:39:45:d3:c4:d6:18:ac:
56:67:b5:26:9b:29:51:a5:e6:25:e1:2c:b2:79:50:11:a1:a3:
33:52:20:64:99:64:18:15:90:39:02:d4:7c:df:81:32:45:65:
f7:e2:e6:37:18:ce:08:ea:16:1f:03:e2:e7:e7:1a:c9:8d:7e:
0b:5a:22:b0:03:a2:2d:8e:4e:be:12:6c:63:e2:ee:95:58:b8:
de:27:a2:e1:bd:81:1b:39:30:9c:f3:01:ac:f5:6f:dd:29:07:
41:8b:26:f4:17:19:a0:e0:8e:d2:00:10:0e:27:83:ec:7b:8e:
a9:e6:98:d8:b0:df:f9:e6:97:70:a7:87:4f:08:93:5d:96:6c:
94:2e:7f:2a:ec:44:47:e8:30:b0:c0:52:b3:4b:24:ce:6f:a2:
a0:6c:9e:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:26 2024 by rpki-client on console-fra.rpki-client.org