Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0645BF92022411EF9F357858017001B1.roa
File: 0645BF92022411EF9F357858017001B1.roa (raw, json)
Hash identifier: WB3H0fg3I6bv/dwkcIS3eH31q9Y8etzs6eZO6vmSd2A=
Subject key identifier: 5A:25:A1:7F:BA:A5:CC:BD:B2:8C:26:59:4B:8B:AC:67:C8:DB:3A:F5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B024
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0645BF92022411EF9F357858017001B1.roa
Signing time: Wed 24 Apr 2024 10:18:42 +0000
ROA not before: Wed 24 Apr 2024 10:18:39 +0000
ROA not after: Thu 12 Sep 2024 10:18:39 +0000
asID: 135097
IP address blocks: 154.89.96.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45092 (0xb024)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 24 10:18:39 2024 GMT
Not After : Sep 12 10:18:39 2024 GMT
Subject: CN=6628dc82-d50a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:5f:d8:20:3a:ca:21:c2:cd:55:83:a4:a6:d4:
ad:75:09:dc:0c:24:3f:f8:7f:89:0d:94:da:e7:77:
2a:9f:e4:3b:e0:11:31:b3:e5:6c:90:fe:6b:f6:e5:
2a:68:8c:cd:a7:95:2f:80:de:48:3f:c6:9d:6b:52:
66:d7:b3:a7:ac:24:2e:b4:5a:bb:fb:69:60:11:a8:
b0:0c:35:89:eb:0f:d0:b1:16:c0:73:db:fb:8c:8e:
6d:01:ed:2b:8b:f7:3b:76:41:90:c1:65:b4:f1:b2:
12:9c:da:85:0e:43:d3:ea:2c:7f:39:9b:5e:e0:d0:
0d:0e:5c:71:a0:f9:41:77:36:c0:3b:6d:68:af:71:
f4:37:8b:af:4e:a5:95:d5:4e:df:28:32:2e:fb:bd:
b6:6e:77:c0:93:87:cf:a2:03:d3:11:f5:6e:f6:6b:
0c:1e:e9:d0:78:b5:7d:a5:7a:56:63:51:ee:7b:68:
1b:79:9f:00:1a:85:c9:0e:f8:b2:93:70:6c:4d:22:
14:41:9b:56:10:7a:bd:76:67:74:23:66:a7:c1:b5:
82:d4:74:ed:ea:66:22:8d:45:f4:75:9b:45:d5:b2:
77:cf:96:db:7c:82:b0:4c:e2:5e:2e:13:2d:f2:9c:
1b:52:e3:2e:78:72:b0:40:3b:5c:87:d0:f5:01:73:
28:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:25:A1:7F:BA:A5:CC:BD:B2:8C:26:59:4B:8B:AC:67:C8:DB:3A:F5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0645BF92022411EF9F357858017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.96.0/20
Signature Algorithm: sha256WithRSAEncryption
ad:a8:df:62:3d:a8:39:e8:78:64:91:b4:19:df:62:a9:58:6b:
2c:81:ac:21:91:60:af:d5:b1:50:1b:e2:08:97:78:89:21:61:
65:5e:5a:8f:5a:75:04:e9:35:21:d3:cc:50:d3:16:a6:a6:f7:
a1:e3:b0:c4:e2:91:e1:a1:e4:d7:77:7a:25:ac:9e:fc:88:e8:
dc:f5:ab:6f:e0:e0:59:28:cc:86:c6:b7:3b:9f:db:e8:b8:ec:
f3:ea:8d:96:93:9c:00:bb:ea:4b:22:d7:da:f8:13:a4:81:13:
c1:c4:55:62:49:5d:8e:d0:17:e6:56:85:8a:05:d3:71:ec:84:
8c:c1:2d:c8:2f:88:a1:78:72:a2:dc:1e:5d:65:17:eb:1d:80:
f8:47:ba:a1:1c:88:7c:a4:5a:6b:44:b2:37:05:a4:15:ce:78:
e5:c6:44:91:94:57:ad:14:6e:10:04:6c:fc:d2:b7:79:57:2c:
63:79:41:cd:97:02:f9:09:1c:01:22:0d:41:3d:1a:b9:7c:8f:
cd:f9:ea:f0:d1:f1:c1:25:30:27:4c:36:f2:90:13:3b:e0:f8:
b2:82:a3:3c:87:fc:52:e5:1d:45:28:dc:f2:5c:2b:0d:3a:0d:
82:21:22:0c:c7:25:54:4e:03:ce:79:1e:84:ac:fb:d1:4d:ec:
b0:5a:3c:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:10 2024 by rpki-client on console-fra.rpki-client.org