Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/17902E3EF47A11EE89D3148E775412E6.roa
File: 17902E3EF47A11EE89D3148E775412E6.roa (raw, json)
Hash identifier: Gzjc/3MUppJuLE7BhEKTJIBhptPyrcvQtCZfgiSNrlg=
Subject key identifier: E4:90:75:AD:AB:6A:F3:BE:A0:4C:4B:E1:F9:B9:67:99:CC:16:13:0B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A96C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/17902E3EF47A11EE89D3148E775412E6.roa
Signing time: Sun 07 Apr 2024 00:59:31 +0000
ROA not before: Sun 07 Apr 2024 00:00:26 +0000
ROA not after: Thu 09 May 2024 00:00:26 +0000
asID: 23470
IP address blocks: 154.194.57.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 03 May 2024 00:04:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43372 (0xa96c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 00:00:26 2024 GMT
Not After : May 9 00:00:26 2024 GMT
Subject: CN=6611eff3-7dcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:39:e7:78:98:ab:41:e6:71:04:0d:b7:d4:da:
cc:80:63:98:55:52:b6:58:3f:fb:5c:2d:cb:a1:da:
82:0a:65:03:a4:2e:5a:ab:8a:9a:d8:bc:f1:d3:67:
fa:ff:bb:cd:08:3b:d9:a2:26:7b:af:54:ef:df:8a:
ac:1d:38:f3:42:65:4d:56:d4:79:57:8c:7d:81:ce:
3f:ff:59:bd:ac:b0:3a:75:17:72:84:79:71:b0:ae:
fc:4a:8b:f6:f0:6a:0b:86:90:ca:81:c0:b7:cd:77:
91:36:dd:92:c7:6d:dc:c2:2c:40:c5:ad:75:80:7d:
7b:d1:0b:bb:ca:09:fb:ec:59:6c:a8:39:fd:3f:01:
05:4d:80:06:e2:c2:d0:52:10:51:8b:85:3e:1b:aa:
8f:aa:2b:0a:22:1f:e8:32:7d:09:37:85:90:1b:87:
f8:77:f6:3d:10:c6:54:e7:b7:d7:d9:c6:a1:aa:4a:
db:be:6c:b9:ba:e5:0e:b4:78:40:49:e9:24:cb:be:
21:a0:de:15:2d:3a:7b:d9:4d:7f:54:2d:e4:ad:0c:
d1:5d:4a:1d:3b:85:8e:7f:43:27:74:4b:3c:ef:27:
4a:f4:78:0f:9b:da:d3:af:08:46:1e:2f:71:00:8f:
07:db:b3:4d:18:ee:2c:3c:c7:f1:d4:79:ff:dd:27:
a1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:90:75:AD:AB:6A:F3:BE:A0:4C:4B:E1:F9:B9:67:99:CC:16:13:0B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/17902E3EF47A11EE89D3148E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.57.0/24
Signature Algorithm: sha256WithRSAEncryption
62:89:15:26:ba:d4:f0:fb:ba:64:1e:e1:f6:0e:8c:25:e3:5a:
25:7e:49:c0:e0:c9:a6:77:d7:8a:13:ea:fd:6d:14:ad:b7:97:
2e:17:33:53:6e:48:f8:c3:3d:1b:f1:ab:51:42:11:4c:82:d8:
be:7b:e2:7e:55:06:50:bf:be:bc:9e:df:e0:ff:6e:0c:42:41:
81:87:eb:d2:19:0c:2d:c3:cd:8d:3b:7d:8c:eb:5e:bc:8a:66:
67:2f:35:ba:c1:8b:7d:c3:05:f1:7a:dc:ca:53:c7:45:62:6e:
79:6b:d4:7e:e1:06:e8:08:91:c5:b3:9f:50:91:34:e6:74:b1:
44:c4:0a:9b:06:4a:b1:5d:a8:fa:ac:a0:79:82:8a:bc:5f:33:
af:4b:9f:79:99:d9:02:43:77:74:4a:b3:7b:90:e1:6d:66:c9:
f0:02:86:b3:7a:b5:c0:c8:31:f6:6a:de:c4:ee:e6:ac:db:6b:
5a:51:cf:1a:3a:63:91:17:0b:59:94:2c:03:a0:25:e7:1d:67:
d6:ea:b0:a2:28:ff:a2:f8:e6:ea:c8:58:2a:34:d6:30:6b:eb:
44:1e:74:d4:b4:27:36:24:68:3d:04:d2:bc:e0:9b:73:b8:94:
37:e6:73:64:8c:46:d0:c4:74:ca:1f:a5:d7:a9:55:ea:5e:e4:
6c:2d:aa:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 13:29:30 2024 by rpki-client on console-fra.rpki-client.org