Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FD0819BAE5C311EE9A121479775412E6.roa
File: FD0819BAE5C311EE9A121479775412E6.roa (raw, json)
Hash identifier: GcKf3ecSZ4M6wscZNnTVYvZfSBA9qLa+TQ+cDRTKgmU=
Subject key identifier: B5:26:E9:AF:4A:11:22:30:D5:B7:83:FC:DF:A7:98:9F:E0:93:B9:AF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A302
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FD0819BAE5C311EE9A121479775412E6.roa
Signing time: Tue 19 Mar 2024 07:40:42 +0000
ROA not before: Tue 19 Mar 2024 07:40:39 +0000
ROA not after: Tue 30 Apr 2024 07:40:39 +0000
asID: 63139
IP address blocks: 154.94.121.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 30 Apr 2024 07:40:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41730 (0xa302)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 19 07:40:39 2024 GMT
Not After : Apr 30 07:40:39 2024 GMT
Subject: CN=65f9417a-a685
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:ce:da:f6:00:21:8b:4e:b1:fe:bf:18:01:37:
1e:f3:5f:ea:d2:ee:07:d9:4d:d8:e5:c0:ee:8b:0d:
a4:19:14:43:8f:90:63:13:6e:e4:49:76:7e:de:15:
9f:d9:ae:49:59:b9:1e:77:77:64:56:f1:64:14:6d:
90:e2:e5:eb:0a:e2:2d:ed:ea:2f:ec:43:8b:52:45:
e8:86:c4:69:a6:69:e5:02:b1:9e:d0:b5:d4:7d:c7:
84:e8:6e:55:bb:8a:bc:0a:23:d8:62:9b:f8:c4:6e:
e6:a5:2f:4f:0d:7d:14:6c:ef:bf:59:65:ac:5a:bd:
36:a5:ad:4a:14:97:11:3c:fc:8b:51:2d:5a:45:15:
63:bf:c8:1b:bb:a5:41:fe:ae:d3:c4:9a:43:6c:e9:
b6:f7:cd:33:d2:a8:ce:f7:a3:58:9a:95:84:74:88:
33:77:bb:87:83:1c:45:e5:29:b4:2d:a8:80:2b:39:
12:95:ab:52:f3:8a:35:05:fd:68:fb:d8:90:41:d1:
ad:47:e9:0f:e3:02:5c:1b:a7:f2:df:6a:02:49:0d:
2b:63:78:bf:4a:d4:f7:02:a2:52:d4:a2:8b:bc:ba:
e2:d7:05:fc:04:dc:be:c4:27:6f:89:19:1a:31:5f:
43:b4:da:5e:ea:d4:48:c2:43:87:da:9f:59:a2:33:
f0:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:26:E9:AF:4A:11:22:30:D5:B7:83:FC:DF:A7:98:9F:E0:93:B9:AF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FD0819BAE5C311EE9A121479775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.121.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:14:4a:4f:ec:d8:8e:ec:06:5a:63:ad:e7:0f:b7:6b:89:01:
b1:8c:c6:85:2d:14:47:9e:96:a1:a6:ab:63:82:b3:0b:89:56:
51:fc:22:2b:8c:5a:5f:95:44:c9:fa:50:3b:aa:04:74:e3:83:
9a:5e:ca:ab:84:94:8d:9b:b0:30:f9:e2:e6:81:2d:0b:96:e4:
d7:05:81:ce:1f:c4:af:7b:2e:f0:31:0a:b8:0e:b6:f6:87:0d:
52:eb:7d:d4:7f:c4:ef:4b:8b:1d:60:66:1e:5f:95:e5:4b:1a:
d9:e8:cd:04:95:2c:4a:a4:b8:fb:09:98:91:c7:2b:f0:c1:0a:
c1:cc:41:76:77:ee:d3:ad:bf:c4:97:fe:9c:a3:30:91:02:c5:
94:87:68:8e:a1:05:0e:8d:30:37:48:04:d9:95:be:ec:f8:59:
9b:e8:f4:f4:96:a7:58:34:d3:c3:54:25:f9:9d:12:b8:6e:15:
e0:df:6d:7f:78:11:a8:5d:fc:19:1c:dd:3a:8c:c3:74:c2:fe:
fc:17:78:b8:fc:4f:0a:12:87:c8:9f:e3:47:08:ad:b0:3b:9e:
7a:98:7e:60:af:e2:d7:70:c3:83:8e:d9:b0:0e:c7:d1:f9:68:
47:58:ce:50:23:97:f5:8e:13:d4:f1:8b:82:2b:62:b6:cc:c7:
3b:e6:cf:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 12:50:17 2024 by rpki-client on console-ams.rpki-client.org