Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/77091E0E0C0B11EFB1E468FE007001B1.roa
File: 77091E0E0C0B11EFB1E468FE007001B1.roa (raw, json)
Hash identifier: NBZ4ovt/69CujuE9gY4a2A0D9BMAbcvL+aVCXBOcmn8=
Subject key identifier: 14:9B:7E:C5:03:0B:E6:93:46:3B:CC:15:3D:F7:51:97:93:2D:24:7A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B53C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/77091E0E0C0B11EFB1E468FE007001B1.roa
Signing time: Tue 07 May 2024 00:48:05 +0000
ROA not before: Tue 07 May 2024 00:00:02 +0000
ROA not after: Sun 09 Jun 2024 00:00:02 +0000
asID: 133952
IP address blocks: 154.197.125.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46396 (0xb53c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 7 00:00:02 2024 GMT
Not After : Jun 9 00:00:02 2024 GMT
Subject: CN=66397a45-7f1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:43:28:c6:a6:1c:b8:24:ed:19:fc:f4:7f:bf:
5c:a4:ec:a4:1b:8f:bc:d0:de:5a:c0:4d:40:e2:ba:
14:78:72:4a:f7:14:41:fb:02:58:9a:af:a4:38:75:
22:08:34:94:e3:f7:6b:b1:c5:31:7b:12:64:b0:14:
22:fb:65:42:a8:78:55:10:3f:a0:89:39:65:f3:f5:
fd:77:57:61:88:12:09:6e:76:12:af:a0:7d:05:01:
87:c8:f0:dc:e6:d9:97:3e:fb:45:2a:36:d0:6a:5f:
d5:aa:1b:09:92:fe:69:3d:aa:06:a8:3f:1e:82:b8:
91:61:d3:77:5f:de:68:6e:1d:ae:70:f5:c5:f5:47:
29:de:4f:13:0e:47:28:02:c3:a1:4b:60:61:c1:58:
18:e6:fc:c0:c0:df:86:df:6d:27:a0:69:0d:7f:2d:
8e:9f:95:1d:ae:df:a4:4f:a0:ef:c6:04:8a:0e:ce:
58:c9:de:d6:f4:89:a7:eb:1f:3b:84:5f:0e:df:cd:
84:fa:93:bb:bc:46:42:9b:1e:8f:68:30:ba:8d:ba:
6a:66:a1:70:4f:1d:8f:ba:69:f9:8b:70:68:c9:3f:
08:2a:a2:d7:0d:73:e4:77:7e:d9:00:b3:d8:eb:77:
d6:b9:32:6d:9f:a8:24:a0:36:10:d9:cf:72:1b:7a:
c8:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:9B:7E:C5:03:0B:E6:93:46:3B:CC:15:3D:F7:51:97:93:2D:24:7A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/77091E0E0C0B11EFB1E468FE007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.125.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:10:56:5c:36:07:10:24:c6:61:82:d3:a1:3d:91:d6:0b:03:
67:32:f3:9b:e8:6b:76:c2:0e:20:84:e5:ba:10:a8:b7:b5:db:
3e:fe:4b:16:c3:ab:37:b1:c9:34:8d:94:c1:af:52:88:59:34:
00:c3:f8:9c:97:60:fc:e7:24:4f:a7:ba:0c:f6:7c:a4:74:65:
99:e6:fd:24:e6:6b:8d:a4:b6:59:ae:e3:a8:2e:90:92:f8:5a:
5c:2b:14:6c:97:b4:90:c9:20:96:09:c9:06:47:b9:f6:84:9f:
6e:96:ce:98:ba:cb:e4:4e:dd:a6:fb:18:05:44:88:0b:0c:07:
47:64:34:4c:01:89:c4:60:65:5e:a8:f8:6a:f1:ab:e1:1d:f0:
2f:54:86:a5:66:c6:65:50:d4:d2:97:74:98:52:d2:e3:37:c4:
dd:63:7b:92:b9:09:17:4c:c9:d6:8d:68:a9:52:52:e7:60:23:
8a:22:4a:d3:d8:67:ce:c4:81:60:75:cd:c0:c0:d5:de:7e:54:
d1:87:90:29:84:a6:29:1b:01:63:4c:e4:4c:de:bc:d7:ba:d3:
e4:b3:47:d4:2d:d1:05:9a:ab:40:aa:d0:ab:68:95:d3:e2:c3:
d6:d0:71:df:a0:5a:de:e8:3f:7c:6e:c3:39:a3:f7:c4:f4:58:
28:23:fb:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:24 2024 by rpki-client on console-ams.rpki-client.org