Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/06340FA4008011EFA5A0B3F5007001B1.roa
File: 06340FA4008011EFA5A0B3F5007001B1.roa (raw, json)
Hash identifier: YLmluyp4By3Hj4CMAVd09h/YN3uriJOnLcBtxP/rwvo=
Subject key identifier: 0F:0A:CD:D9:8A:10:0E:EF:5B:58:A9:92:95:AF:2D:E0:A7:A0:0F:FB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AE96
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/06340FA4008011EFA5A0B3F5007001B1.roa
Signing time: Mon 22 Apr 2024 08:12:13 +0000
ROA not before: Mon 22 Apr 2024 08:12:10 +0000
ROA not after: Tue 04 Jun 2024 08:12:10 +0000
asID: 140869
IP address blocks: 154.81.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44694 (0xae96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 22 08:12:10 2024 GMT
Not After : Jun 4 08:12:10 2024 GMT
Subject: CN=66261bdd-b896
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:77:83:fe:ce:08:77:2a:22:2c:e7:25:9e:02:
89:2a:23:6f:a5:eb:5a:40:06:49:1f:78:a4:7b:21:
aa:e7:5c:7f:6c:86:63:d2:a4:24:f2:a2:97:a9:d1:
04:bb:0c:64:c4:25:50:c2:d2:83:2a:e2:67:f7:59:
35:4d:63:6c:c1:49:73:4e:58:f0:9a:17:8d:05:69:
80:4b:92:51:27:3b:69:2b:80:91:93:66:b1:e7:5b:
0b:56:ea:e7:38:0c:7e:a7:c7:91:a8:94:85:15:3d:
6d:25:54:fb:ba:05:cc:59:63:ac:40:0a:dd:8c:b0:
0b:df:69:61:2f:0f:e7:c2:2d:81:db:2d:ee:9b:15:
38:93:2a:e0:7b:9d:9a:28:f2:a1:80:6f:7e:5c:3a:
55:18:a8:02:2d:10:02:c8:4b:4b:b9:b9:2b:c1:b2:
fe:07:12:7b:df:38:d9:e3:2c:68:d1:ec:21:3e:e3:
ae:7e:c6:72:69:2f:1b:b5:15:f3:3a:0d:3b:c9:03:
3a:65:b3:b7:d5:10:15:ab:07:6b:ef:4d:a6:8a:12:
f9:f6:79:12:52:c8:dd:0b:14:c0:ea:64:dc:bb:a5:
e2:1d:bb:1c:88:c3:f5:90:ce:25:43:20:ab:5d:7f:
5a:97:f7:78:fd:82:a9:4c:44:6f:c3:2e:a1:2c:ab:
be:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:0A:CD:D9:8A:10:0E:EF:5B:58:A9:92:95:AF:2D:E0:A7:A0:0F:FB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/06340FA4008011EFA5A0B3F5007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.35.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:24:24:3c:43:7f:99:26:ac:97:6a:98:bc:06:e0:6a:b3:e8:
63:6f:e9:31:b9:b2:ad:cd:3d:fe:6b:eb:76:ef:62:03:94:d9:
91:27:85:98:ef:19:25:86:7b:b0:5c:1c:3a:08:2b:df:3e:e2:
97:d3:65:7a:e2:d3:7b:e6:30:70:85:ae:16:0e:ca:a0:78:a6:
84:74:25:e5:4d:a4:d0:d9:86:37:db:ff:97:32:11:76:49:ed:
e6:f4:08:fc:96:4c:b5:c8:98:62:8a:f9:b1:25:23:ad:fe:df:
0d:fa:7f:13:33:a9:0f:8b:d7:8f:b3:66:dc:1d:47:09:0a:a9:
b5:77:e4:2c:bc:09:6e:f1:d9:83:5b:2c:0d:c2:c3:ff:cd:8d:
fc:0c:63:5c:f1:41:fd:5f:2c:c8:16:be:70:a9:31:88:2b:2e:
48:9b:ee:c7:12:f9:2e:30:7e:b4:8b:2e:28:9c:60:06:28:51:
59:65:01:c0:3c:c6:e7:0e:d4:0b:6c:c2:13:4f:24:47:6e:cf:
33:e4:1b:96:80:aa:ec:8c:8b:d5:ad:77:f1:c8:f7:31:e2:9d:
c0:32:96:b1:1e:90:e8:ec:dc:9f:88:46:81:ca:21:fb:0c:c4:
a8:f9:8c:96:24:67:2d:5d:9d:07:57:28:4b:57:45:1a:29:74:
96:89:92:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:17 2024 by rpki-client on console-ams.rpki-client.org