Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3A0BCE600B4411EFBCC75422017001B1.roa
File: 3A0BCE600B4411EFBCC75422017001B1.roa (raw, json)
Hash identifier: EPRlosb+Zqn8PN8+32Uu+bka6B1ektIXoOLqNQ/UKDU=
Subject key identifier: F1:B9:6B:F0:52:3A:D1:EE:F9:9D:1E:60:F0:27:1B:53:F2:37:1E:F1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B42E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3A0BCE600B4411EFBCC75422017001B1.roa
Signing time: Mon 06 May 2024 01:01:53 +0000
ROA not before: Mon 06 May 2024 01:01:50 +0000
ROA not after: Fri 07 Jun 2024 01:01:50 +0000
asID: 272369
IP address blocks: 154.197.90.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46126 (0xb42e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 01:01:50 2024 GMT
Not After : Jun 7 01:01:50 2024 GMT
Subject: CN=66382c01-6c84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f8:5e:1b:cc:21:9c:ef:93:a0:39:ce:3f:13:
73:b0:c9:cf:24:36:22:9a:2d:c7:80:31:87:55:ee:
d3:0e:80:93:2d:ec:dd:ae:a8:75:83:0f:50:c0:2a:
83:a2:08:33:0e:ac:13:cd:06:23:ff:db:a8:27:f6:
78:7c:e8:2a:bd:78:ab:cb:df:34:9a:9b:da:63:32:
69:39:96:c6:2a:f1:bc:c5:93:f1:d6:3a:14:8e:82:
ae:e2:41:7f:4d:0e:83:01:f7:49:af:64:08:b5:b4:
a6:4a:25:c9:2b:5f:48:bb:36:e7:e9:5e:58:db:f1:
90:d4:48:93:0b:09:94:36:f1:12:f3:11:b4:3b:b5:
58:b7:8b:e7:db:1d:fa:eb:e2:bf:7e:99:c6:48:da:
3f:17:1b:fb:20:7b:a7:17:e4:cb:98:26:6e:e9:c6:
4d:49:ca:6e:8c:ae:bb:8e:ba:8b:50:cc:00:99:dc:
a5:35:37:09:da:91:49:f3:90:74:73:f7:b9:61:05:
7a:31:63:f9:4d:ac:5a:aa:66:d4:12:c5:6e:7a:12:
5f:1e:bb:be:4b:8e:63:4b:5d:d0:c2:bc:20:8e:64:
29:b9:dc:ca:d3:b3:ee:38:65:03:15:54:6c:ae:9a:
60:ce:e8:be:34:e5:3c:4c:af:08:5a:21:cb:b6:ce:
5f:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:B9:6B:F0:52:3A:D1:EE:F9:9D:1E:60:F0:27:1B:53:F2:37:1E:F1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3A0BCE600B4411EFBCC75422017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.90.0/24
Signature Algorithm: sha256WithRSAEncryption
52:d1:be:b0:5b:db:52:06:69:9f:4b:97:e3:ca:6f:c4:3c:e5:
e9:3c:27:81:62:97:5d:d8:3d:5b:35:04:91:cb:34:5a:a5:6c:
f9:a6:c8:ec:8c:c9:76:ef:f2:35:7e:8c:77:73:b4:4a:21:18:
ef:57:69:6b:a6:2f:c4:47:6e:51:99:ba:c3:6d:40:21:6e:30:
62:3d:9e:3f:04:ee:50:1a:f6:d6:99:66:a5:88:44:d3:91:cd:
a5:2d:16:0a:aa:73:17:7c:3f:fe:dd:a7:00:1c:e3:28:ef:63:
35:4c:91:42:7f:f6:72:54:c6:df:54:f1:7f:84:a6:12:e0:1f:
58:2d:a8:fb:49:62:0f:bb:7b:15:05:8a:e0:4e:4c:65:7d:62:
41:cc:6f:ee:7b:ab:32:5f:f5:d8:ae:27:19:59:41:24:2a:91:
e6:a6:72:27:b7:35:6e:cd:6c:15:93:62:9f:d8:ee:5a:0f:0b:
24:71:d3:0e:d1:8a:75:f8:38:b4:44:87:7a:39:d9:19:b1:c4:
1c:62:8c:ca:4e:ae:f9:38:0a:bc:5c:45:16:61:08:c6:65:fe:
6b:f8:cd:ac:6d:f1:84:5b:5e:06:63:f7:c8:05:3d:58:c5:8c:
bf:6a:7d:94:7d:c9:be:9b:01:e3:97:f8:04:f7:c5:ff:3e:62:
8a:b3:3c:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 09:10:02 2024 by rpki-client on console-fra.rpki-client.org