Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A595B0560B4E11EF8CECF303017001B1.roa
File: A595B0560B4E11EF8CECF303017001B1.roa (raw, json)
Hash identifier: gnI9OYG6V64ounutX3m7tgcIV7XPC48RaPCDRBXOO7A=
Subject key identifier: EF:C8:EE:4E:19:00:90:C6:30:F5:1A:F4:E2:B5:CD:92:6E:72:B6:C0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B480
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A595B0560B4E11EF8CECF303017001B1.roa
Signing time: Mon 06 May 2024 02:16:29 +0000
ROA not before: Mon 06 May 2024 02:16:25 +0000
ROA not after: Tue 11 Jun 2024 02:16:25 +0000
asID: 138915
IP address blocks: 154.205.147.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46208 (0xb480)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 02:16:25 2024 GMT
Not After : Jun 11 02:16:25 2024 GMT
Subject: CN=66383d7c-2c37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3b:f2:b1:86:de:16:76:4c:8f:39:ca:db:e2:
ca:2b:5d:85:ed:3e:6e:63:28:d6:61:b2:de:30:ba:
8a:62:28:0e:e2:3a:6e:91:28:02:8b:69:d6:90:a6:
56:dd:be:97:27:f1:43:cc:c9:ff:44:49:ce:0b:89:
6e:7b:2b:f9:81:2b:8e:fd:2b:28:9c:aa:44:cb:b7:
fd:66:8f:8f:2e:9c:6c:fc:38:2d:09:ae:bc:56:5c:
bf:43:07:4a:3e:96:81:56:78:ad:e2:8c:ab:e0:f5:
5d:6f:8b:f0:4c:9f:a5:ea:19:89:0f:94:ab:77:06:
7c:1a:79:42:6a:d9:ea:22:58:30:9b:5e:b1:0b:f3:
1e:96:8d:70:ae:fd:cf:7e:be:5b:b6:41:46:e8:ec:
07:07:90:41:c9:b8:ff:40:27:05:a5:0e:de:10:27:
ee:3b:de:93:9e:b9:74:6e:6f:54:fc:9d:5d:1d:8d:
7a:c4:b3:25:d3:61:32:cb:86:6d:70:61:e4:96:b6:
9e:2f:6c:98:f0:36:f7:cb:9e:c4:6a:47:a3:d2:d1:
56:a0:24:d2:77:dc:09:41:a1:ec:67:08:36:94:89:
5b:5b:4d:72:1a:cb:92:71:f8:7a:29:ac:b0:df:9a:
3b:c2:d2:fe:f6:9b:32:20:09:59:36:7a:4b:57:66:
a8:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:C8:EE:4E:19:00:90:C6:30:F5:1A:F4:E2:B5:CD:92:6E:72:B6:C0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A595B0560B4E11EF8CECF303017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.147.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:68:ec:6d:ea:78:3f:33:a6:d5:eb:c6:4f:39:39:63:b3:c5:
f1:5b:2c:70:0e:e2:65:e2:fb:40:b4:6f:b4:cb:39:a3:c2:3d:
a6:5c:65:c7:89:98:df:a6:3d:44:84:77:46:4d:5b:2e:d8:cf:
d6:b1:de:87:c3:76:71:eb:96:d0:bd:f6:4f:1d:7a:03:25:b7:
6b:cb:fb:c9:ce:a7:6c:49:ab:2a:c2:79:b6:10:cd:5f:a7:86:
b6:31:3d:a0:ad:5a:3c:5f:c0:e8:65:ad:55:94:66:4c:76:22:
ec:ca:7c:c6:b6:cd:65:8b:5c:6f:7b:6e:22:dd:a3:8e:19:fc:
51:b9:ca:1d:24:86:34:5e:6b:e1:96:dd:06:2d:99:12:d8:3d:
d1:01:e2:93:8a:f7:da:56:0b:ed:30:c4:d4:8c:25:73:e7:94:
cc:09:3b:31:5c:ae:1e:e2:bc:52:5e:0c:64:69:b2:39:7a:4c:
90:2f:52:ba:ac:59:71:56:a6:4a:60:a8:1b:63:2b:48:0c:a0:
94:9c:13:8f:6e:a6:db:d9:e0:97:87:f5:ac:7d:ba:99:4e:07:
65:96:89:b1:99:ca:0f:57:71:bf:28:04:b1:83:a9:c4:d3:1a:
74:e7:02:24:44:e2:cf:c3:32:26:59:63:b1:ba:83:88:83:3c:
73:e0:ab:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 02:00:49 2024 by rpki-client on console-ams.rpki-client.org