Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/93E5E03A0B5B11EF817EA6F4007001B1.roa
File: 93E5E03A0B5B11EF817EA6F4007001B1.roa (raw, json)
Hash identifier: mDOBlhApuGPp+gYsddwgXlUqnlgVA6CsMnys630C1HI=
Subject key identifier: F1:5D:6B:44:AC:5C:14:C2:BD:50:07:BC:D3:B1:88:D1:0F:40:6D:CB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B4E4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/93E5E03A0B5B11EF817EA6F4007001B1.roa
Signing time: Mon 06 May 2024 03:49:02 +0000
ROA not before: Mon 06 May 2024 03:48:59 +0000
ROA not after: Tue 11 Jun 2024 03:48:59 +0000
asID: 138915
IP address blocks: 154.203.134.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46308 (0xb4e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 03:48:59 2024 GMT
Not After : Jun 11 03:48:59 2024 GMT
Subject: CN=6638532e-4ed1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0c:65:c4:f1:27:bc:69:74:46:83:fd:43:c4:
80:72:69:76:3a:96:41:ea:4b:1d:06:df:11:ac:75:
c8:92:89:34:be:7a:07:4f:19:c8:d4:dc:2f:52:e6:
cc:16:fd:ff:f3:78:0c:f0:a5:51:d3:45:cd:ae:d3:
39:67:ba:10:74:3f:e5:3d:d0:fe:18:02:8d:1a:30:
79:5a:48:7f:61:8f:9d:4d:2e:46:8f:1a:4a:0c:7d:
c0:6f:40:2d:e0:8d:1d:33:ff:0f:a3:fd:e4:47:07:
01:62:aa:ec:10:53:e2:0f:fe:45:98:a6:46:0f:18:
96:71:21:7d:e7:d1:3a:6a:d8:56:e8:89:48:18:7f:
2d:f8:00:5e:d2:7f:4f:af:e0:88:f2:78:24:e6:fe:
20:22:5e:00:07:b2:e6:70:06:4d:0a:98:03:f6:e8:
55:d8:4d:9e:ce:40:b1:5a:be:8a:08:db:26:5e:f4:
7d:ef:9e:f0:18:07:6c:43:cd:cc:11:c9:fe:f8:81:
78:4c:9b:13:7d:6b:46:98:63:14:04:c0:32:cd:9c:
da:c3:31:8f:3e:5c:bc:86:27:52:50:6b:a7:b9:43:
00:65:dc:2e:43:9a:ce:a2:9a:22:ed:37:5f:b5:51:
80:34:f4:cc:27:8c:06:d0:c1:ad:67:d8:f6:fb:6e:
e4:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:5D:6B:44:AC:5C:14:C2:BD:50:07:BC:D3:B1:88:D1:0F:40:6D:CB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/93E5E03A0B5B11EF817EA6F4007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.134.0/24
Signature Algorithm: sha256WithRSAEncryption
47:94:81:78:ac:68:ed:23:60:4c:81:00:5f:7e:ea:96:6b:60:
56:2c:c3:e8:b0:87:68:b9:85:e0:9b:e9:a8:63:43:f1:34:aa:
f9:fc:6e:9f:10:29:cd:be:f9:31:6f:de:fc:44:50:63:a6:56:
77:12:4b:20:f6:d7:26:e6:ea:a5:c7:b6:5d:4e:9f:13:6b:dc:
f1:70:5a:b7:fb:8c:22:57:bb:4a:c8:93:04:7d:80:ed:2b:34:
60:38:74:1f:2f:91:c3:26:6a:f6:73:b9:67:27:82:5c:7b:d6:
8c:ae:58:14:b2:2b:85:36:79:fa:74:bd:b7:ae:3c:6a:5f:9a:
ac:9b:70:7c:e8:fa:41:49:6d:8c:85:fc:b8:b9:3e:dc:17:2d:
c0:ed:25:1f:7a:ac:4c:1f:27:69:70:63:98:aa:cd:3b:b3:04:
35:1b:de:4d:59:d6:f3:84:af:b9:7a:ef:8c:e9:41:41:52:ad:
59:02:b4:72:b8:fe:29:30:42:20:9c:a6:82:49:35:44:95:22:
40:cb:a2:8e:33:20:1e:ea:2b:ce:50:0a:4e:2f:c1:95:93:88:
19:f0:a1:e6:9b:bf:bf:e7:0c:a2:a5:0e:c1:29:77:42:5d:b1:
72:d4:49:81:56:51:2a:4c:ec:9b:48:25:d8:ff:97:e2:8d:aa:
eb:2a:29:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:20 2024 by rpki-client on console-fra.rpki-client.org