Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6F89EAFECCBF11EEA54D6387775412E6.roa
File: 6F89EAFECCBF11EEA54D6387775412E6.roa (raw, json)
Hash identifier: vwnyylW49Jri7JNzX5JUgCNPTppKvNYHFDiMtcvVpSU=
Subject key identifier: 5A:83:05:8D:D0:8D:F4:B2:2B:A1:83:F4:AC:BB:7B:7A:D6:20:83:8A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8AF9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6F89EAFECCBF11EEA54D6387775412E6.roa
Signing time: Fri 16 Feb 2024 11:35:08 +0000
ROA not before: Fri 16 Feb 2024 11:35:04 +0000
ROA not after: Fri 26 Apr 2024 11:35:04 +0000
asID: 9009
IP address blocks: 154.216.236.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 11:35:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35577 (0x8af9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 11:35:04 2024 GMT
Not After : Apr 26 11:35:04 2024 GMT
Subject: CN=65cf486c-8b3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:81:92:12:47:5d:0b:90:9a:a0:57:14:e0:06:
6c:e5:35:bc:7b:7b:9c:6d:58:8b:34:6f:43:0a:56:
06:2e:39:1f:64:61:28:4d:7e:1c:1b:b6:24:6b:bf:
d8:26:e0:fc:8b:56:8d:cd:99:38:50:e3:22:17:4e:
90:57:92:2b:00:6e:66:40:89:6e:1d:8c:73:b1:28:
4b:d7:97:b3:5f:0d:6b:5e:36:5f:db:33:f0:30:d3:
b2:43:af:71:db:ab:a7:7f:89:20:d6:35:93:ae:b2:
96:22:fa:40:48:47:d3:30:50:17:ed:21:0f:91:ae:
84:18:e3:ef:97:d1:61:9e:1c:a8:59:06:e4:7a:dd:
7b:4c:25:d4:de:e0:aa:f8:95:69:28:77:91:f0:08:
6e:55:98:a8:68:24:b9:cb:6b:1c:8d:d3:eb:8c:30:
c5:03:5e:b3:6a:72:43:d5:dc:43:1f:4c:19:6b:7d:
24:29:37:c5:95:36:b2:89:6d:59:2e:97:7d:9e:bd:
ec:5d:b3:69:e8:6a:93:03:fe:cd:39:a2:42:50:c5:
22:96:8a:a8:ae:5e:34:ca:03:3f:87:f6:cf:56:5f:
7f:a7:e6:1d:50:33:3d:b5:13:42:a3:26:9b:27:4f:
7d:f0:a5:57:57:d9:c0:f3:f3:b4:5f:9d:1a:fa:10:
98:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:83:05:8D:D0:8D:F4:B2:2B:A1:83:F4:AC:BB:7B:7A:D6:20:83:8A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6F89EAFECCBF11EEA54D6387775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.236.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:ea:82:98:91:e0:20:a8:dd:56:c2:02:1d:87:e8:36:34:f0:
92:d2:97:a8:cc:e0:29:5b:31:0a:2e:3c:1a:81:9a:d0:11:08:
8c:a3:13:15:57:6e:35:18:22:84:a3:3c:89:bd:10:3a:9d:c0:
24:d5:b8:9e:11:65:6f:12:bc:ed:33:53:40:84:d4:c1:4f:1d:
d6:aa:5a:47:42:4d:84:a9:ea:30:67:5f:cf:18:95:15:03:23:
85:e1:3f:fc:95:6b:d2:9f:23:e3:50:a6:e6:45:7b:74:93:b8:
0b:b4:af:ec:4c:0f:76:43:34:79:83:94:2c:50:b7:11:ec:a8:
d6:43:cd:5b:fb:35:ac:3b:98:56:2c:43:1e:82:fb:7b:e3:37:
1b:49:1b:8e:8c:41:16:4a:a2:dd:4a:7d:f5:4e:ac:d1:e3:34:
46:74:ef:74:f9:0d:e0:eb:25:20:76:0e:31:ea:b1:0a:e8:73:
0b:a2:4b:26:79:3a:cd:fa:f8:50:1d:fd:4a:8f:23:a4:aa:5f:
c4:51:7a:ec:5b:6e:fa:05:2e:e1:f7:f8:e6:79:62:3a:10:fb:
35:25:b7:e6:ca:c3:b6:ae:3c:c8:b7:56:15:08:77:1d:a5:44:
5d:51:73:60:82:a3:39:3a:ef:6c:86:fc:05:b1:c5:76:68:bd:
a1:ba:8a:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:39 2024 by rpki-client on console-ams.rpki-client.org