Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5CE41AAA02D911EFBE30FD1E017001B1.roa
File: 5CE41AAA02D911EFBE30FD1E017001B1.roa (raw, json)
Hash identifier: kemCnejaX+CT7tpjma+56ur/iITB1f5ZqQSaxSKNxB8=
Subject key identifier: 7F:80:88:8E:89:4C:02:12:FE:1E:A1:3D:FA:C3:B9:20:F0:F8:1D:D9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B041
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5CE41AAA02D911EFBE30FD1E017001B1.roa
Signing time: Thu 25 Apr 2024 07:56:46 +0000
ROA not before: Thu 25 Apr 2024 07:56:43 +0000
ROA not after: Sun 02 Feb 2025 07:56:43 +0000
asID: 132839
IP address blocks: 154.213.96.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45121 (0xb041)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 25 07:56:43 2024 GMT
Not After : Feb 2 07:56:43 2025 GMT
Subject: CN=662a0cbe-3cd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:13:5e:1f:29:18:af:c1:2b:7c:e8:41:e4:2b:
e9:3a:9d:5f:b2:bd:d7:75:e6:22:17:19:42:11:c6:
c6:3a:91:a7:8a:bf:01:fa:88:ee:58:8c:ae:05:2d:
3b:d3:09:b3:24:81:4f:a5:00:a3:cf:a6:f9:3b:cb:
15:64:98:85:fb:96:73:f8:59:c7:ac:a1:7c:d9:8a:
f9:1b:0b:60:64:c2:84:e0:49:5e:94:45:3e:10:97:
7b:09:4e:3c:16:07:f6:5c:ab:01:8f:70:3e:68:e4:
78:f5:2c:b3:04:5e:51:1e:4d:e1:66:e3:f9:93:83:
b5:e2:86:7e:c6:13:90:bd:29:08:b5:50:9b:fc:f1:
1a:ca:72:db:ef:02:05:1a:31:65:cd:c5:57:e5:60:
32:12:f0:94:ab:52:bc:52:f6:dd:cc:9e:12:45:28:
c4:c9:99:89:51:00:9e:63:54:8a:ec:03:54:66:5b:
b0:9a:60:6e:ca:51:d7:6d:cb:2d:87:5f:31:a5:98:
b6:60:5f:32:4b:e7:f0:a7:5c:b4:63:52:e0:78:fd:
3d:70:37:6a:8e:0a:a3:43:3f:c2:b7:40:8e:06:4a:
ef:cf:be:20:c9:cc:9d:91:fc:cc:a4:a1:46:a3:2c:
b7:20:7c:c4:e3:a6:15:e2:92:35:58:3f:76:84:05:
b8:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:80:88:8E:89:4C:02:12:FE:1E:A1:3D:FA:C3:B9:20:F0:F8:1D:D9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5CE41AAA02D911EFBE30FD1E017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.96.0/19
Signature Algorithm: sha256WithRSAEncryption
56:25:ed:3f:65:8b:07:8d:08:65:13:72:02:09:66:3a:85:41:
37:54:bd:87:d6:dc:27:db:73:c7:cf:d1:d0:42:7f:b9:88:06:
62:f5:e8:ae:bf:f8:79:f6:dd:41:a6:33:c3:58:a0:ad:06:08:
58:54:4a:8d:c5:c3:f3:c6:a5:94:b9:65:c6:20:c7:5a:ae:ac:
a4:c1:bf:89:ed:6b:03:b9:6b:e3:d7:e0:1e:8e:e1:33:24:47:
f6:6b:46:bb:cc:45:92:4b:07:88:bb:50:e3:e4:d3:d2:00:e3:
4b:9a:3a:2c:68:41:a5:b1:3d:35:98:4c:36:3b:8b:92:e4:b1:
08:10:c3:e5:43:71:ef:1f:6e:56:38:36:32:9d:b3:bc:9b:c0:
25:e2:27:dc:08:e9:95:01:e8:c8:90:4d:c2:01:34:13:96:c6:
1e:ca:16:e2:66:ad:5b:fb:50:46:f3:1c:d6:b3:15:90:4f:e6:
3e:7f:30:83:59:08:75:d6:e3:ca:47:49:99:e0:62:25:1e:6f:
4b:82:ff:91:e2:de:ff:a3:99:8d:f4:15:bf:aa:40:9f:85:c0:
bd:51:06:f7:a6:ea:e7:3c:e3:de:ef:b1:58:a5:a0:e0:b0:90:
7b:12:54:ef:c6:88:50:71:d7:87:ac:bc:c0:28:1c:b9:b9:7b:
76:e2:8f:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:23 2024 by rpki-client on console-ams.rpki-client.org