Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7F7B51F61FE311EFB4B955347DDC24C2.roa
File: 7F7B51F61FE311EFB4B955347DDC24C2.roa (raw, json)
Hash identifier: SeqWNN38hMA+T5UkjKir3NEwGBgfc9tO2Z+dqUyx1Fw=
Subject key identifier: 95:C3:07:3E:3F:A5:F0:4F:17:75:91:B8:F3:C6:61:DB:84:D1:F8:79
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: BC87
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7F7B51F61FE311EFB4B955347DDC24C2.roa
Signing time: Sat 01 Jun 2024 06:52:23 +0000
ROA not before: Sat 01 Jun 2024 06:52:20 +0000
ROA not after: Thu 04 Jul 2024 06:52:20 +0000
asID: 136950
IP address blocks: 154.213.28.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 28 Jun 2024 06:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48263 (0xbc87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 1 06:52:20 2024 GMT
Not After : Jul 4 06:52:20 2024 GMT
Subject: CN=665ac527-9f2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e1:e4:e4:0e:39:e8:15:1e:9f:84:b8:8e:fe:
a1:a6:c9:4e:e3:f3:06:8c:b0:b4:a5:d1:31:21:f7:
4c:12:1d:8d:e4:b4:a5:17:f7:9e:03:f3:bc:56:03:
f7:52:8f:b1:5f:3c:71:e7:7a:52:fa:f0:95:12:58:
a6:d1:05:ef:0a:28:d8:b1:b9:31:dd:8f:19:7c:a9:
cc:e2:00:9a:51:bc:7b:87:86:7f:5f:61:47:a3:c1:
1f:20:6d:f6:f6:a0:cf:1c:74:90:9e:9d:13:c2:82:
f2:26:b4:d7:29:a0:a9:1d:ef:6c:c8:ec:2e:78:60:
48:ed:5a:a1:33:02:0b:88:61:3d:fa:86:43:d2:bd:
37:dd:a2:7c:68:19:26:61:72:cc:9d:92:86:4c:06:
a6:ab:2e:ac:2c:2e:3a:51:23:fc:12:5f:24:b7:1c:
89:7c:85:c5:8d:4c:d0:1c:86:ef:d0:8e:0d:82:17:
72:6a:82:4d:98:4c:15:fe:23:f9:cd:8a:e2:6c:8b:
76:11:35:68:4f:8a:4e:24:70:e9:d8:ff:b1:e0:50:
68:9b:f9:34:a9:f8:6f:f3:99:11:84:6f:2f:bd:1a:
56:38:61:5a:41:7f:f2:15:42:8a:19:52:a3:14:be:
32:f3:f9:ab:e6:ef:29:79:01:15:c8:97:5f:f5:1f:
a8:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:C3:07:3E:3F:A5:F0:4F:17:75:91:B8:F3:C6:61:DB:84:D1:F8:79
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7F7B51F61FE311EFB4B955347DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.28.0/24
Signature Algorithm: sha256WithRSAEncryption
19:c9:00:28:65:bb:ad:0f:f9:dd:16:1c:2d:e0:33:8c:a1:69:
f6:71:2f:a4:e8:16:f3:52:ec:fa:95:06:5a:51:ae:6b:b7:29:
f9:a6:88:65:e5:2a:a0:2b:36:76:1a:c7:0c:15:28:bb:f9:54:
d0:2a:d5:10:48:44:f6:ec:3b:cb:16:34:22:ec:2e:62:dd:21:
c7:ea:b0:e6:b8:2c:88:b5:05:fb:59:e9:a6:f2:17:03:f7:67:
90:8f:08:44:8a:9a:42:20:36:ea:5e:0b:5f:77:2b:36:ba:0d:
4e:66:bd:46:73:da:b9:30:e9:2c:82:53:a2:ef:37:be:ab:34:
30:a3:59:bb:6a:e6:8c:0e:03:1d:f8:c9:36:13:d3:7f:94:61:
33:f0:b9:cd:72:5d:92:45:45:86:6e:3c:31:73:07:e6:83:07:
a0:de:62:cc:b2:d1:0e:e2:89:e6:3c:9d:65:a0:0d:a1:30:8a:
bf:d0:3e:19:5f:ac:dc:c6:e3:85:4f:13:5f:e7:04:06:3e:cb:
b9:3a:e7:49:0e:7a:27:6f:a8:8e:8f:d4:56:41:cf:79:c5:a6:
cb:07:54:30:62:ad:55:55:80:68:de:b8:04:66:30:34:13:06:
4e:2e:0f:43:55:a2:b1:19:24:c3:33:f8:e1:d3:0d:62:c7:e7:
28:9e:db:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 09:29:10 2024 by rpki-client on console-fra.rpki-client.org