Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A259823E061011EFB9086558017001B1.roa
File: A259823E061011EFB9086558017001B1.roa (raw, json)
Hash identifier: +MKttbbV/adkj8YrQyQD5dSpNQRqRFPhrx2JJ5lj38s=
Subject key identifier: EF:0F:4D:FC:F3:EA:CA:98:D1:43:36:A4:2F:EE:71:F4:FB:7E:15:BB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B22C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A259823E061011EFB9086558017001B1.roa
Signing time: Mon 29 Apr 2024 10:09:58 +0000
ROA not before: Mon 29 Apr 2024 10:09:55 +0000
ROA not after: Fri 07 Jun 2024 10:09:55 +0000
asID: 138915
IP address blocks: 154.223.22.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45612 (0xb22c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 10:09:55 2024 GMT
Not After : Jun 7 10:09:55 2024 GMT
Subject: CN=662f71f6-586e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:93:b0:92:fd:48:79:78:1c:df:6b:41:f6:1a:
67:7e:07:da:e4:68:81:cc:f4:5d:92:a4:64:25:b9:
ab:6a:4a:97:9b:81:5f:0c:7b:b9:9e:85:89:07:d9:
99:5c:95:0f:f9:57:80:51:85:a5:40:55:81:c9:fe:
95:29:88:26:f3:b7:f6:7b:f3:43:fe:b3:5d:0d:e2:
08:20:9a:82:f6:42:81:22:5d:1f:8e:c5:01:c2:ce:
22:fe:4a:73:94:fc:ee:07:45:eb:e0:ec:59:c5:35:
8b:c3:75:40:ad:78:e7:5f:b2:d3:c6:ec:1e:c6:17:
ed:1a:ab:f8:38:66:06:50:5d:3b:1c:f8:34:4f:a3:
49:c5:bf:76:62:88:6a:80:72:8b:f5:fa:98:4c:3a:
31:4d:a5:a6:7b:cb:c8:35:b2:8f:ac:d0:1d:e7:17:
c4:6f:43:67:fc:23:37:78:ef:4b:12:64:d5:43:5c:
b4:c0:65:fb:52:f9:94:09:f6:c0:ef:86:44:0e:ca:
a5:d0:4b:dd:43:b4:b6:ec:04:5d:18:00:d6:d9:0b:
24:47:b0:17:a1:17:37:13:84:db:e8:62:db:ff:a2:
1e:38:9f:b6:66:9a:3f:72:b8:8c:1b:f7:46:71:f2:
a2:31:ce:17:77:84:b0:0c:b2:b2:db:27:b4:b5:df:
18:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:0F:4D:FC:F3:EA:CA:98:D1:43:36:A4:2F:EE:71:F4:FB:7E:15:BB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A259823E061011EFB9086558017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.22.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:15:1e:8b:79:69:77:38:2c:27:7d:bd:91:18:62:9c:a9:7d:
94:90:c1:53:41:60:87:1e:e5:a8:46:72:9f:ca:80:f7:a8:45:
ef:2e:8e:ee:00:88:4a:c8:8c:95:06:ac:60:e9:e1:84:b0:6f:
68:f9:64:a6:88:31:79:28:4b:1c:1e:35:93:74:04:b1:ca:50:
58:7e:ab:d4:ed:7d:42:44:82:a5:c7:be:cd:ca:fd:03:5c:18:
1a:1f:1d:61:1d:11:9e:4e:fa:86:c6:2e:9f:f3:cc:fb:a0:f5:
23:1c:68:dd:47:fe:33:9e:a6:f7:e5:b2:ec:3b:51:bb:e3:d5:
91:bd:0d:79:82:5a:45:15:b1:fe:11:ed:cc:dc:08:41:27:c5:
2a:36:02:25:42:d9:8e:22:37:8b:4f:2c:90:f6:ad:02:07:e0:
7f:19:48:75:bf:64:10:b8:d8:98:51:5f:4b:8d:73:c2:51:1c:
87:0c:5c:3b:e4:22:d8:b8:d5:0c:72:46:e4:26:bc:e1:a7:52:
0a:b7:2b:9b:a4:57:68:89:09:6d:0a:57:8b:cd:92:11:bf:1a:
71:03:61:1e:c0:5e:7d:fb:41:55:94:19:fa:ce:b5:64:12:0c:
98:c8:af:5b:c9:0c:57:ad:11:7e:bb:78:06:a7:05:d2:7f:8f:
ae:4e:8c:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:27 2024 by rpki-client on console-ams.rpki-client.org