Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/74532F6AF7BB11EE9B048101017001B1.roa
File: 74532F6AF7BB11EE9B048101017001B1.roa (raw, json)
Hash identifier: xVHowQKtI4hmpLcR2qop2wDe40EOQsFhBCo5qT7YlXo=
Subject key identifier: 4E:81:8D:86:51:A8:44:AD:69:01:6F:79:C7:DB:68:FB:43:E7:DB:63
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AAF9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/74532F6AF7BB11EE9B048101017001B1.roa
Signing time: Thu 11 Apr 2024 04:24:58 +0000
ROA not before: Thu 11 Apr 2024 04:24:54 +0000
ROA not after: Thu 09 May 2024 04:24:54 +0000
asID: 23470
IP address blocks: 154.202.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:48:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43769 (0xaaf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 11 04:24:54 2024 GMT
Not After : May 9 04:24:54 2024 GMT
Subject: CN=6617661a-45d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:0f:51:c5:b0:51:c7:25:94:bf:eb:fb:7b:ae:
37:b1:e6:06:8d:8d:64:40:72:82:11:f7:c8:00:50:
dd:36:de:e4:4e:7c:2b:2c:a7:47:2b:af:0d:6e:c1:
57:b5:4f:22:f9:3f:54:e7:6b:21:dc:16:7d:da:9f:
e4:1b:82:f5:d9:d0:49:78:20:6b:50:a6:08:63:6f:
04:99:2f:e4:4e:e8:66:99:0e:7a:ca:01:7f:da:45:
ba:f0:c8:0d:f0:d6:92:85:cb:38:0f:67:01:2b:3b:
b8:83:53:d0:fb:21:7e:83:16:15:64:90:a9:92:38:
c4:f1:2f:77:17:3c:8a:0c:8d:12:bb:59:e2:6c:a3:
08:77:9b:56:96:60:80:50:ad:71:05:e1:e0:1f:f8:
c4:11:06:8c:96:6c:27:d1:73:af:09:05:6a:87:60:
14:a8:c8:4d:51:b6:25:e0:c3:7c:13:9f:a3:5d:3a:
bf:89:38:79:12:e1:c3:e1:4c:3f:52:a1:ba:80:1f:
a0:2a:69:7c:01:f4:85:8c:77:84:f0:54:05:be:3e:
b5:30:4a:c7:ba:9f:1b:18:2c:ac:f7:7b:01:29:e3:
e1:70:58:e8:ea:f3:4a:85:3d:64:e1:f5:29:b0:67:
75:41:bf:a7:b7:72:ec:8d:cb:82:72:48:ab:64:ae:
55:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:81:8D:86:51:A8:44:AD:69:01:6F:79:C7:DB:68:FB:43:E7:DB:63
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/74532F6AF7BB11EE9B048101017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.3.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:21:53:d9:c4:ca:29:ed:b9:83:4d:f1:4a:3b:19:df:8f:12:
a7:b9:de:fe:2c:7a:29:80:51:6d:16:b0:92:61:91:4f:0c:ef:
e4:b2:be:60:43:ab:e6:db:e4:d3:17:70:e3:55:fd:b2:fd:ab:
7d:fc:85:01:73:d6:54:4e:e6:3a:d3:6f:e4:f3:19:7d:2b:2b:
99:cc:7d:d9:e8:a7:ad:cd:c3:d6:f3:81:ca:62:e9:88:47:cb:
10:09:b3:67:d1:1d:7d:48:27:a0:48:0e:40:9f:48:c8:83:4b:
f8:60:36:64:f9:d5:78:a5:cd:c6:f8:f5:22:fe:04:e8:6f:bd:
f7:34:74:fb:47:13:be:f3:f2:00:ed:47:77:9b:cd:13:84:7d:
ba:9e:af:f8:a3:fd:6d:fc:16:62:74:c8:a7:f8:99:46:9e:2a:
40:1c:3f:98:16:2a:d1:45:0c:fc:e4:16:18:0a:13:b3:a1:38:
0b:f6:29:de:30:02:bf:46:4a:52:0e:0b:48:de:df:2e:53:4d:
b6:27:52:7c:42:07:c8:b0:1e:c2:13:1d:5f:84:f3:6e:32:71:
4f:b7:d6:97:1c:cd:7d:df:4f:13:0a:60:5f:bf:04:7c:4b:95:
47:df:99:52:cc:a3:b6:72:3b:99:65:87:56:ba:d4:ad:0a:25:
5f:10:73:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 03:12:27 2024 by rpki-client on console-ams.rpki-client.org