Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/169F9E880DCA11EFA537D044017001B1.roa
File: 169F9E880DCA11EFA537D044017001B1.roa (raw, json)
Hash identifier: EFcXx1rISKRGcm5l3KLfOYx280EFP9qBPEzb+V1+hCQ=
Subject key identifier: EC:6A:1B:37:9E:1F:9F:6E:43:F8:E6:A9:1F:8B:1D:FB:4E:DC:30:6F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B613
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/169F9E880DCA11EFA537D044017001B1.roa
Signing time: Thu 09 May 2024 06:05:09 +0000
ROA not before: Thu 09 May 2024 06:05:05 +0000
ROA not after: Wed 29 May 2024 06:05:05 +0000
asID: 141883
IP address blocks: 154.208.12.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46611 (0xb613)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 9 06:05:05 2024 GMT
Not After : May 29 06:05:05 2024 GMT
Subject: CN=663c6794-0de3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:a5:1a:77:67:19:ad:18:4d:fc:fb:cf:eb:df:
17:4f:f1:1c:df:9c:5d:00:50:3f:4f:f6:18:12:1e:
61:3c:66:59:2c:2a:37:46:81:df:0e:24:a3:51:c2:
59:99:0c:2d:94:b4:8c:e5:0f:9c:cb:5d:5b:31:71:
10:35:42:fd:1b:6b:2d:80:cf:a3:c8:e3:c9:71:3e:
f4:27:8a:4b:c2:6c:49:c5:e5:a4:66:9e:87:3c:2e:
d7:52:90:2b:b7:03:e7:bf:f7:fd:70:e8:80:9b:b6:
2e:30:74:c5:e4:e1:e8:77:eb:cc:ce:37:27:98:05:
99:fd:fe:75:53:07:13:4d:41:0f:66:f4:45:f1:ce:
d4:13:04:ef:25:5d:5f:7e:56:74:27:16:0a:7f:8d:
91:85:dd:0a:c9:4a:dc:73:e6:24:82:a0:5b:f7:4c:
0f:6a:c0:41:4d:22:55:0e:b2:85:6c:3a:4e:48:6a:
35:4c:4f:50:1e:0b:d4:8c:88:12:23:2b:64:7d:1e:
2e:ec:25:47:f9:7a:06:27:84:c1:4c:b0:a2:76:84:
39:ee:12:af:b2:c2:6b:d9:4e:19:b0:10:cd:6a:b3:
b8:14:ec:05:1d:ec:1a:cb:a8:3a:cb:f0:5d:04:70:
3f:2e:64:5f:0b:c3:eb:f1:0b:75:04:c9:a2:ab:a4:
8d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:6A:1B:37:9E:1F:9F:6E:43:F8:E6:A9:1F:8B:1D:FB:4E:DC:30:6F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/169F9E880DCA11EFA537D044017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.12.0/22
Signature Algorithm: sha256WithRSAEncryption
02:73:df:42:db:d4:d1:af:cb:9a:87:2c:e2:69:11:15:fd:96:
7b:43:5a:12:66:7e:d9:a2:ba:48:b1:40:96:9e:aa:d7:66:a0:
93:69:f7:3f:83:82:7d:05:be:4c:ed:7b:d8:d7:ac:6f:d4:6f:
4f:d9:34:6e:36:a3:97:66:16:81:9e:d0:71:df:16:8d:3a:c7:
4a:91:4e:2e:99:18:c6:37:1a:98:14:38:42:5c:84:d3:3c:72:
f0:af:e0:cd:b8:a2:57:81:fc:ce:8c:47:d2:bd:07:d5:7d:e1:
ec:25:47:2c:9e:40:72:04:14:c7:75:a8:0b:1b:bb:0c:19:c0:
7a:cb:36:0e:5d:a0:8a:84:cb:eb:6d:da:b1:21:8f:0d:08:e6:
e0:b7:a9:f2:6e:ec:49:b0:ee:b5:ed:f8:6b:37:2a:8a:55:a4:
5b:6b:70:b6:44:bb:c2:d2:94:6f:c5:fd:84:8d:a9:37:e8:73:
2c:90:d4:01:10:ba:04:96:0a:92:64:bf:1c:95:a2:ec:ec:1f:
d9:31:2c:0b:71:5e:07:d2:b9:ed:6e:14:20:c0:26:f4:b9:6f:
89:da:88:9b:0d:01:e7:2f:d7:78:e7:9a:02:e3:05:66:a7:d5:
40:15:23:af:99:5d:12:d7:0e:52:38:3f:bf:49:19:15:22:fe:
68:46:c1:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:11 2024 by rpki-client on console-fra.rpki-client.org