Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/09A07FC81FE411EFA5244A357DDC24C2.roa
File: 09A07FC81FE411EFA5244A357DDC24C2.roa (raw, json)
Hash identifier: keX+EojY824UsbHx9mv4B+AbrOlU20rsF+UAcm5o/fo=
Subject key identifier: 42:54:C8:4A:A5:18:EF:E0:8D:89:6D:B4:9D:FC:EE:31:AF:1A:93:61
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: BC8F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/09A07FC81FE411EFA5244A357DDC24C2.roa
Signing time: Sat 01 Jun 2024 06:56:15 +0000
ROA not before: Sat 01 Jun 2024 06:56:11 +0000
ROA not after: Thu 04 Jul 2024 06:56:11 +0000
asID: 136950
IP address blocks: 154.213.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 28 Jun 2024 06:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48271 (0xbc8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 1 06:56:11 2024 GMT
Not After : Jul 4 06:56:11 2024 GMT
Subject: CN=665ac60f-33c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:13:4e:65:1e:7a:c5:dc:fa:bb:4a:60:61:a2:
7d:39:5c:1e:bb:87:98:17:83:da:01:55:33:8a:64:
81:ec:dd:26:6f:89:af:46:bd:6a:c4:46:a3:c2:28:
0c:e1:ac:ea:72:9e:6c:3f:e5:f9:6f:89:d4:34:94:
f7:be:d2:5f:e5:85:37:2e:6c:6a:3a:e4:05:19:6f:
62:e9:e9:0d:87:06:66:1b:c0:9d:ab:1d:e4:34:f0:
73:aa:4e:d2:57:7b:b9:29:9c:1d:12:64:e1:c1:6f:
4d:d5:61:b1:9a:db:a2:43:ad:ad:cc:fe:80:f8:77:
fc:09:2d:2b:12:4a:a1:d6:34:3a:8b:34:52:10:31:
8f:3d:9c:66:0a:ed:2a:5d:cf:64:16:c8:51:c1:90:
a3:5d:4d:35:15:98:ca:5e:9c:cb:9b:5c:bd:3b:c4:
1c:21:59:7f:cf:da:7a:c3:3c:a9:7c:b6:3f:e2:f1:
f4:41:29:9b:b9:03:60:a3:ab:8f:ec:f2:3a:9c:8b:
15:65:bf:25:98:df:c7:1d:77:1c:b9:e0:82:c5:8b:
8d:93:5d:f7:8c:40:63:03:f7:22:41:80:15:ba:e8:
d6:ff:a3:2a:f3:be:be:94:b6:25:2a:b3:88:d4:84:
08:3b:22:21:cb:8c:74:8b:60:92:41:7f:2c:74:c7:
60:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:54:C8:4A:A5:18:EF:E0:8D:89:6D:B4:9D:FC:EE:31:AF:1A:93:61
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/09A07FC81FE411EFA5244A357DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.24.0/24
Signature Algorithm: sha256WithRSAEncryption
86:ca:f8:cd:2c:8a:62:1d:63:e0:1a:fd:60:64:ac:22:12:7f:
8b:c0:a5:64:f0:aa:7b:03:ec:25:2b:ec:42:93:f1:87:ca:ad:
de:fd:43:b7:4b:3d:23:7f:33:99:92:3a:13:64:a4:0f:8c:a6:
7d:57:8c:2f:90:e0:96:08:46:7d:e1:fa:03:fd:ae:c5:42:d5:
37:6e:4b:32:bb:fd:66:f6:f6:07:20:31:a5:0f:e8:61:d9:e3:
b5:9c:da:f5:a3:da:ce:79:ba:3a:6e:8e:82:b2:7f:b1:cc:ba:
7f:60:1c:c6:2b:d1:e4:a8:4a:61:cc:ef:8c:0b:e4:b7:1b:cd:
d7:94:9a:62:0b:88:08:28:a7:cf:75:c9:ff:19:4d:e9:b6:44:
54:d9:1e:b7:73:81:0e:ba:ae:99:c0:50:05:3c:0e:e3:7b:39:
0b:e7:99:46:25:32:2a:2f:65:82:69:f7:3f:3f:31:04:c3:64:
63:92:5f:57:80:11:e6:d5:95:8c:51:49:71:63:d4:44:e1:f1:
f6:67:8b:a9:aa:f2:ad:01:b9:14:54:64:44:bf:e2:26:01:96:
39:d2:70:c6:09:a2:5e:0e:f2:fb:3b:2a:4a:06:00:8b:57:a8:
a1:d1:b2:fe:ea:28:4c:f0:68:15:83:aa:eb:0c:55:2e:2a:d5:
e7:3b:9a:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 08:13:19 2024 by rpki-client on console-ams.rpki-client.org