Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/33066E2E014C11EF9F7AA9F8007001B1.roa
File: 33066E2E014C11EF9F7AA9F8007001B1.roa (raw, json)
Hash identifier: NIegrEXz99aUAkFo3qezsUBkedd3FECMucn3duRGjkw=
Subject key identifier: 9A:97:52:F8:E6:B1:8E:BF:1C:54:8E:1B:B5:5D:7A:73:FD:93:79:91
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AF17
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/33066E2E014C11EF9F7AA9F8007001B1.roa
Signing time: Tue 23 Apr 2024 08:33:46 +0000
ROA not before: Tue 23 Apr 2024 08:33:42 +0000
ROA not after: Sun 26 May 2024 08:33:42 +0000
asID: 8796
IP address blocks: 154.201.72.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44823 (0xaf17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 08:33:42 2024 GMT
Not After : May 26 08:33:42 2024 GMT
Subject: CN=6627726a-4de3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:81:b6:80:ad:c9:47:62:c9:28:64:65:8b:3c:
de:e8:83:f5:98:db:1d:97:34:c6:a1:29:87:2b:8f:
dd:71:ff:5e:b8:c2:ed:7c:60:88:cc:ec:e6:85:a2:
ed:e3:78:5c:bf:47:b0:e0:b2:c9:e6:3d:53:da:f8:
a3:84:0a:a0:f0:d9:fd:6a:d9:23:5d:d7:7f:f9:c4:
3b:44:9b:ef:4c:e2:79:24:b9:6b:7d:c2:18:8c:76:
7a:2e:cf:43:6e:54:2c:af:f3:48:ff:21:a2:83:07:
c3:0d:84:0e:20:c1:61:0e:f6:51:41:91:ef:49:3e:
8c:d1:b1:8d:d9:37:8b:38:ee:3e:e0:c5:ec:64:9c:
56:93:cf:2f:18:b3:16:ff:0e:74:68:f7:20:20:66:
5d:a1:30:58:e2:bb:40:e0:6d:62:6b:15:a6:77:fa:
84:77:60:ec:27:15:18:92:fb:9f:d1:2a:66:c2:5b:
41:a5:e3:7b:c6:fd:b5:11:ff:67:c5:09:e2:8a:24:
34:4e:a3:75:67:e8:3e:eb:5c:96:05:09:8b:41:96:
f7:bf:ad:75:ec:11:cc:7c:1e:b2:33:b5:40:34:36:
4a:ed:dd:99:66:2f:bc:3e:88:6b:04:b7:a9:71:0b:
65:6d:7b:79:2b:bc:2e:c5:82:45:30:11:6b:4e:75:
93:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:97:52:F8:E6:B1:8E:BF:1C:54:8E:1B:B5:5D:7A:73:FD:93:79:91
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/33066E2E014C11EF9F7AA9F8007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.72.0/21
Signature Algorithm: sha256WithRSAEncryption
6d:35:f0:27:00:26:90:0d:ca:24:8d:d3:50:d5:e6:5a:c5:0a:
84:7c:55:2a:57:c1:1a:0a:a3:a3:80:ad:ad:47:5d:90:5f:2a:
af:dd:9e:27:89:be:3f:0c:1c:24:4e:90:7d:4f:b6:e1:35:6d:
48:42:b1:03:32:b9:2b:d5:fa:1d:da:54:ba:84:1c:d8:e1:0d:
99:50:8f:a3:30:db:8c:c7:89:c5:08:11:65:98:9d:d3:5e:17:
82:ca:4f:1a:d0:86:f0:fc:c0:96:7a:09:42:3a:f9:af:05:23:
ed:ba:ba:5f:54:43:d1:04:e8:04:a5:25:33:f2:75:2e:c7:c8:
39:dd:08:2c:23:67:93:e0:9e:31:3b:e1:0c:5e:0f:63:75:3e:
7c:ad:9c:8e:3f:db:55:e0:58:02:2c:82:24:32:ec:32:48:c1:
bc:fd:97:96:07:87:91:51:05:35:4d:48:c7:26:b0:ba:f5:01:
f8:75:e9:01:d6:ee:c5:45:69:21:57:52:23:3d:8a:2d:31:24:
19:f8:e7:f5:e2:c7:4b:02:2e:32:94:4d:21:71:a8:33:57:1e:
73:4e:3b:ec:d0:81:5d:b6:79:22:60:e5:04:a5:16:56:8f:90:
b5:d9:14:d3:b5:0e:f7:47:a7:18:8f:fe:fb:5a:a8:58:96:ab:
1a:09:9d:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:19 2024 by rpki-client on console-ams.rpki-client.org