Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7443FC34E28A11EEB8FAEFAA775412E6.roa
File: 7443FC34E28A11EEB8FAEFAA775412E6.roa (raw, json)
Hash identifier: TzmDzVb+m2A40QSdfVAzBqdcVgyvAXwud5gYNbaIWAs=
Subject key identifier: DE:0F:0D:BF:35:50:87:E3:63:23:77:9F:F8:F6:D4:59:29:AD:21:BE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A177
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7443FC34E28A11EEB8FAEFAA775412E6.roa
Signing time: Fri 15 Mar 2024 05:11:18 +0000
ROA not before: Fri 15 Mar 2024 05:11:15 +0000
ROA not after: Fri 20 Sep 2024 05:11:15 +0000
asID: 2914
IP address blocks: 154.214.218.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41335 (0xa177)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 15 05:11:15 2024 GMT
Not After : Sep 20 05:11:15 2024 GMT
Subject: CN=65f3d876-75ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:76:48:10:7d:d1:ab:1c:06:6e:c8:c5:a8:19:
ad:2d:75:74:df:6a:5e:2e:84:40:b5:72:c5:49:dc:
62:6a:fc:89:1a:d7:fe:3e:af:10:cd:33:4d:b2:e1:
68:2c:c7:2d:11:d2:7a:16:c1:4f:8c:89:ff:29:cd:
8c:85:c6:45:b8:6b:18:cd:26:d6:d4:aa:40:e3:cb:
05:bd:04:b5:a2:37:28:3f:ad:51:fd:49:51:02:db:
a5:04:d9:4d:21:f6:a3:58:1c:18:d9:ca:7d:85:a2:
4b:ff:b7:a3:51:3a:bd:66:f6:83:d5:9f:dc:bd:87:
aa:fe:15:da:24:76:a2:57:61:ad:de:92:19:bc:cf:
9f:e9:ae:c5:46:88:86:68:7e:63:b2:38:86:59:29:
ab:b1:d1:6f:76:8f:6c:c1:72:2d:d2:37:2a:cc:48:
a3:e5:61:ba:fb:74:9d:b1:a4:6b:d1:56:f4:bd:63:
4c:87:71:e0:63:60:ef:2d:d2:a8:ee:6b:16:9b:07:
dc:5d:e1:30:fe:7f:fc:31:2e:77:58:5a:a1:d8:28:
3c:4e:3c:5e:6e:eb:6f:07:f8:41:85:50:91:55:1e:
64:a7:34:b2:44:ae:4b:be:3a:36:9b:aa:b8:6f:1a:
af:8c:d0:68:c3:83:97:06:cf:82:ec:df:11:5a:d6:
bb:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:0F:0D:BF:35:50:87:E3:63:23:77:9F:F8:F6:D4:59:29:AD:21:BE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7443FC34E28A11EEB8FAEFAA775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.218.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:d9:5c:da:97:53:8a:83:41:fc:df:5d:f4:ce:50:28:80:59:
2f:e7:20:5c:86:1b:ee:d3:69:9d:3d:1c:ad:24:fc:ed:e9:4b:
08:4b:c8:cc:53:ed:b5:50:16:f6:13:90:34:9f:74:eb:8a:d8:
43:06:9e:5d:29:24:ba:55:83:05:2d:b2:05:a4:83:b9:9e:4a:
5a:83:d3:dd:64:79:45:be:01:b1:7d:c9:35:ba:a4:ef:f5:f4:
76:bc:47:5d:c5:54:04:2c:1d:c8:24:0c:1d:86:3c:61:3c:52:
7d:d7:93:06:3d:f8:4f:3a:f3:2c:15:7a:c0:37:76:1b:06:13:
04:42:90:78:5c:35:f2:fd:4c:e1:6d:1c:d2:8d:07:64:d8:03:
e2:51:8d:13:fe:3d:de:57:5d:43:db:8b:09:49:1f:62:03:e2:
f1:91:01:85:80:30:59:c9:3a:99:a4:b6:91:07:dc:28:2c:7c:
da:73:38:4b:42:11:0e:f3:14:7b:de:10:81:b0:d1:0d:bc:7d:
47:8f:77:a5:c2:f4:bc:28:1e:57:cd:35:92:93:cd:39:7a:13:
80:f8:f7:6f:06:d1:a6:18:d8:1f:e4:cb:91:10:7d:ea:7c:f5:
3f:4e:aa:a6:82:a6:c5:c7:f2:84:04:3c:99:3f:31:d6:a3:7b:
92:4d:81:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 02:32:57 2024 by rpki-client on console-fra.rpki-client.org