Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24B0B1980B4E11EF905CBB01017001B1.roa
File: 24B0B1980B4E11EF905CBB01017001B1.roa (raw, json)
Hash identifier: 6+MCMJLaUAApvCowJ37obUT+52E0elZQTI0dzjwV0bs=
Subject key identifier: 77:64:B1:DF:06:A8:22:FA:48:03:65:FA:29:6F:45:15:B4:2A:5A:54
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B47A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24B0B1980B4E11EF905CBB01017001B1.roa
Signing time: Mon 06 May 2024 02:12:52 +0000
ROA not before: Mon 06 May 2024 02:12:49 +0000
ROA not after: Tue 11 Jun 2024 02:12:49 +0000
asID: 138915
IP address blocks: 154.205.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46202 (0xb47a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 02:12:49 2024 GMT
Not After : Jun 11 02:12:49 2024 GMT
Subject: CN=66383ca4-fcd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ef:0d:bb:71:bd:f7:ba:62:08:8e:bc:ec:f5:
89:49:22:ad:93:49:8b:66:30:20:e5:33:4c:06:95:
df:a8:9c:12:30:37:3b:e1:82:42:a9:49:6d:43:00:
65:33:6a:a3:1d:09:a7:1a:8e:c5:c9:de:44:40:12:
23:a7:a5:11:46:e1:86:14:a9:7b:fe:0f:69:8b:2d:
ed:fd:11:47:a7:d2:79:36:d9:1b:a6:c1:58:bb:73:
49:cd:c7:fa:5c:3f:9a:48:82:4f:5b:aa:75:5d:17:
96:70:50:e7:d7:5d:18:ad:f5:44:5b:43:75:fc:9d:
d9:db:85:1c:c4:83:f2:cc:0e:55:53:c0:7b:cf:4c:
9c:c4:fe:bd:e7:87:5d:89:56:29:6d:a9:49:f2:3f:
bc:fb:06:a0:c8:67:bf:a5:df:fc:49:bd:fd:98:7e:
f6:00:1d:03:66:43:8c:cb:41:d8:5a:27:d8:48:36:
dd:05:4c:70:8a:14:40:5e:60:07:c5:72:25:f1:6f:
43:d0:9a:7e:40:ef:7f:47:0f:e5:d9:1c:b9:2a:2c:
8d:08:34:f3:c4:54:7d:99:c8:81:cf:b7:89:54:c0:
be:32:65:24:dd:80:d0:11:7f:76:fd:72:56:f2:9b:
67:8b:e9:aa:de:05:07:bd:63:0c:0a:5f:3f:b1:20:
4a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:64:B1:DF:06:A8:22:FA:48:03:65:FA:29:6F:45:15:B4:2A:5A:54
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24B0B1980B4E11EF905CBB01017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.151.0/24
Signature Algorithm: sha256WithRSAEncryption
00:be:6f:41:85:fb:01:c0:35:37:01:31:cf:c2:54:33:c3:13:
5c:cc:28:72:48:0c:40:75:bd:f6:1e:13:72:a5:a8:50:87:d4:
4a:a2:07:cf:82:86:ab:ca:81:0b:83:44:cc:16:46:a1:f5:25:
be:0c:ad:31:91:b9:74:b7:07:28:3a:f8:a0:75:a9:ce:5a:b3:
20:15:f0:f9:01:df:84:bc:6c:32:9e:24:8f:d6:de:43:47:05:
52:02:29:cf:b5:1e:ac:a1:89:1b:ab:de:5c:cc:19:82:cf:70:
d9:46:ef:27:19:7c:86:96:41:bd:79:6f:35:7f:10:16:fc:bc:
56:d0:6e:65:b1:26:c3:76:67:76:65:35:ca:40:05:d7:e1:87:
d3:cc:8f:71:c5:2a:fc:c3:f3:b2:c4:dc:3a:5d:85:05:34:3b:
3b:c8:8a:c9:a5:31:3e:11:8a:c7:b3:80:bd:ac:71:37:23:f2:
3b:77:c5:36:86:4d:ca:4f:fc:eb:11:7c:44:b1:17:b8:af:ac:
28:d4:56:ae:4b:af:99:c8:5c:9f:fd:e3:10:be:96:6f:11:b2:
b4:45:5b:a6:6c:ff:29:12:d6:f4:58:77:a8:61:cf:35:97:a1:
4a:5d:5b:22:78:1f:c1:ac:21:74:f6:8a:5c:e3:b3:cd:ba:41:
ed:42:e2:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:19 2024 by rpki-client on console-ams.rpki-client.org