Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AD148D760B5211EFA0A16F28017001B1.roa
File: AD148D760B5211EFA0A16F28017001B1.roa (raw, json)
Hash identifier: CKeDWWsbmR9/rc2Tl91mvVgIladLSSqfNvimiX1Li6s=
Subject key identifier: B7:E6:87:10:C7:70:CD:85:C1:EB:0B:96:C8:34:01:50:F5:95:FD:F8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B4B2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AD148D760B5211EFA0A16F28017001B1.roa
Signing time: Mon 06 May 2024 02:45:19 +0000
ROA not before: Mon 06 May 2024 02:45:16 +0000
ROA not after: Tue 11 Jun 2024 02:45:16 +0000
asID: 63139
IP address blocks: 154.203.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46258 (0xb4b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 02:45:16 2024 GMT
Not After : Jun 11 02:45:16 2024 GMT
Subject: CN=6638443f-23f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b8:ad:d7:47:73:5a:68:d4:4b:d7:cc:b9:a2:
df:99:2d:9b:9c:7c:ec:e8:b9:a8:db:fd:4e:94:04:
b3:3e:5b:b0:a4:1b:b7:e5:ac:ca:4c:c3:47:db:d9:
55:e7:1a:1e:9a:fe:69:9a:9f:71:d4:f8:05:44:dc:
27:04:43:15:49:28:b8:d2:5a:73:c0:a4:9b:a5:90:
a1:06:9f:43:f9:67:0a:aa:5d:00:4d:94:25:04:58:
59:9f:3b:50:6d:3c:fe:bf:64:87:a3:bb:b8:dd:b4:
42:ed:03:51:58:73:5f:82:23:27:19:56:9a:9e:64:
91:ce:3d:54:d3:69:2e:f9:76:c0:7a:ea:52:a2:aa:
74:d9:7f:8d:48:2b:17:ab:93:ca:a1:45:ee:1c:45:
f1:a7:54:f1:14:97:e1:8a:d8:31:2e:49:9b:d3:d6:
14:5b:2f:64:03:77:18:d4:a2:b7:a2:67:e1:e8:9a:
38:63:92:81:0c:03:01:67:10:e1:f8:44:e3:0b:f0:
d7:32:6f:f4:4e:08:43:7f:c0:e9:77:b9:2f:c4:f8:
c9:0c:bf:5f:aa:c1:5a:26:90:b3:6d:13:27:84:79:
64:59:2d:68:8c:a4:74:61:17:28:18:10:2c:a6:93:
80:78:39:03:8b:38:c8:d4:e5:a1:3a:4b:4c:a5:98:
82:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:E6:87:10:C7:70:CD:85:C1:EB:0B:96:C8:34:01:50:F5:95:FD:F8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AD148D760B5211EFA0A16F28017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.183.0/24
Signature Algorithm: sha256WithRSAEncryption
23:72:d2:aa:04:3c:ed:b0:b1:87:52:b6:3d:5d:fa:e7:cb:cd:
4d:eb:2b:3b:8e:15:7d:15:89:78:3d:d8:9c:49:1d:8c:ef:1c:
84:36:6e:7d:53:53:f3:b8:09:7b:38:1e:fb:df:c4:41:a0:33:
82:3b:0b:1a:8e:8f:98:bc:25:17:d4:9d:c8:97:0c:83:40:7b:
45:d8:70:3f:47:a0:e2:e6:1b:17:2a:da:ac:98:b3:67:25:ca:
34:e7:35:ee:dc:92:e3:33:d0:55:93:9f:07:97:b1:2f:e0:cb:
f6:f0:6c:c7:bf:44:43:50:d9:c3:3c:dc:41:4a:e2:59:39:64:
4e:c2:9a:f6:7e:02:bc:7d:5b:0b:dd:43:92:c4:65:63:0a:a4:
70:89:c5:a3:36:79:21:e1:8e:63:e2:48:a5:bc:43:ab:ac:66:
2e:b4:b7:d9:d9:89:ba:38:65:9d:6e:0d:f7:9a:6a:c7:ec:6a:
b7:28:68:7c:3f:92:f2:57:8d:ba:c4:65:60:67:1c:0d:29:12:
01:82:4c:20:24:31:46:2a:b5:ff:5a:51:f3:1f:cb:aa:29:f7:
49:f5:e2:24:97:a5:6d:c0:b0:b9:75:cd:1d:f8:a4:d7:5f:62:
23:7a:bd:5a:a0:e4:c3:2a:36:9d:3d:70:46:8f:da:48:8e:c7:
fb:d6:6b:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:21 2024 by rpki-client on console-fra.rpki-client.org