Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A45E17E60DB011EFA3F8F5F6007001B1.roa
File: A45E17E60DB011EFA3F8F5F6007001B1.roa (raw, json)
Hash identifier: ZEh9bovDNe3MrXFmxTq1EOxuPMsbZho7yUZeFnHvBGs=
Subject key identifier: 11:DB:28:E3:D4:BE:B2:1F:E8:93:06:3D:64:47:D6:0A:07:1B:A6:96
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B59B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A45E17E60DB011EFA3F8F5F6007001B1.roa
Signing time: Thu 09 May 2024 03:02:59 +0000
ROA not before: Thu 09 May 2024 03:02:56 +0000
ROA not after: Fri 09 Aug 2024 03:02:56 +0000
asID: 47952
IP address blocks: 154.197.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46491 (0xb59b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 9 03:02:56 2024 GMT
Not After : Aug 9 03:02:56 2024 GMT
Subject: CN=663c3ce3-28b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:8f:48:7d:4b:e9:b9:fb:d9:9b:22:09:f2:79:
4f:19:39:3f:5e:2d:96:ae:f2:43:a7:1b:aa:fc:30:
00:83:76:60:71:0c:89:62:56:36:48:0c:b4:68:0c:
d8:b9:0c:58:ff:d9:5b:f8:b2:78:8b:66:06:64:98:
75:30:f2:f9:fe:e8:88:0a:60:06:8e:30:4a:ec:21:
0c:13:46:a6:6e:a1:a5:ec:3e:8f:d4:48:61:a6:51:
71:70:0c:36:f9:bb:63:b3:87:df:97:48:02:fc:a2:
26:28:b9:38:1d:2d:47:f8:67:b8:62:e6:e5:6c:bc:
e4:69:3a:a6:87:b1:55:bf:5a:51:7a:79:84:2a:08:
78:a6:84:9b:96:f5:25:8c:ca:a4:d2:68:c9:26:c4:
7a:0b:a6:02:be:5c:a3:8b:50:3d:56:21:32:2e:d3:
d0:64:ed:97:e1:28:8c:0f:e0:97:18:5f:6c:b8:8b:
20:11:8a:ab:0c:86:63:d7:4d:56:d6:9a:2a:5d:9f:
60:33:91:f3:98:7a:34:21:5f:2f:83:f4:33:8a:3a:
da:f4:4c:85:07:31:71:de:99:d5:3d:a4:09:44:cc:
7b:78:da:7e:f0:01:49:fe:2a:47:76:34:de:57:d8:
32:5f:22:e5:e5:d7:65:97:e2:2a:2a:62:a2:ff:7c:
0a:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:DB:28:E3:D4:BE:B2:1F:E8:93:06:3D:64:47:D6:0A:07:1B:A6:96
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A45E17E60DB011EFA3F8F5F6007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.107.0/24
Signature Algorithm: sha256WithRSAEncryption
07:f9:31:80:dc:ca:22:dd:19:20:cc:d1:5e:dd:48:72:33:db:
56:86:37:95:3e:b8:4a:9a:44:ea:b5:54:d1:5c:d2:59:02:60:
c0:80:35:b1:58:5c:a3:3f:30:d1:e8:e6:90:80:48:39:89:72:
4c:63:d4:cf:81:4c:d9:96:1f:ad:de:b7:33:89:85:16:50:c3:
fe:2d:a0:9e:05:33:c5:e6:36:6d:9a:df:14:94:4d:68:35:0b:
ef:92:7a:e7:12:90:fe:cf:20:74:ba:aa:c2:b1:2f:95:9e:9d:
a5:45:2a:b1:18:10:63:22:85:f4:87:ef:61:2f:ff:25:7c:3b:
9b:00:f8:d0:00:06:9c:ec:c3:7e:ad:ac:7d:10:9e:7c:2c:ed:
fd:87:55:ff:f0:ed:88:2f:e8:50:75:03:f8:b0:f6:86:70:4a:
93:f1:79:67:25:33:ee:45:a0:a5:4f:03:49:5e:9c:e6:69:54:
11:9e:66:8e:39:1d:1c:51:a2:e4:03:aa:eb:d9:92:50:c1:78:
e8:b6:5c:64:34:fc:c0:0c:11:c9:b3:c5:d2:ef:e9:7b:37:d4:
2d:4d:47:df:2d:e7:24:78:e8:10:cb:db:b6:47:74:37:e7:64:
9c:1b:4b:48:7a:c9:63:34:9d:32:3e:8d:b2:7b:50:d5:71:3a:
e2:32:e3:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:21 2024 by rpki-client on console-fra.rpki-client.org