Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B48C7CAE014C11EFBD3579FA007001B1.roa
File: B48C7CAE014C11EFBD3579FA007001B1.roa (raw, json)
Hash identifier: aBpuTKuyJBn7ZJHnXL1+uPs1ZB2+vO3m4xzjgLVDMk0=
Subject key identifier: 93:A1:A5:4B:AC:08:47:5D:83:C9:29:44:26:3D:28:59:C8:5D:42:07
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AF1F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B48C7CAE014C11EFBD3579FA007001B1.roa
Signing time: Tue 23 Apr 2024 08:37:23 +0000
ROA not before: Tue 23 Apr 2024 08:37:20 +0000
ROA not after: Sun 26 May 2024 08:37:20 +0000
asID: 149513
IP address blocks: 154.201.94.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44831 (0xaf1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 08:37:20 2024 GMT
Not After : May 26 08:37:20 2024 GMT
Subject: CN=66277343-3568
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:8c:0c:90:68:52:5d:f3:b2:05:01:be:98:70:
50:a3:af:8b:51:ac:00:b8:2c:bb:11:aa:19:fc:4d:
18:9d:7d:b5:6e:d4:3b:67:fd:c3:57:1e:c5:37:74:
66:c5:a3:00:ee:19:bd:53:42:90:16:c3:ab:9a:40:
b8:b2:95:bc:c8:0f:ae:6b:4e:59:de:92:a3:07:ec:
b2:0b:7d:34:70:6a:5f:8c:c8:4f:00:48:d3:09:e3:
55:4c:2d:63:be:2f:e5:e6:68:8a:66:f0:ac:48:33:
7a:40:7c:7e:71:d4:55:0f:f8:a6:be:6b:a3:fb:2d:
4b:3d:45:1b:0b:dd:29:14:3e:65:e5:47:cf:6f:2d:
27:93:a2:b3:82:02:5b:a3:ac:de:23:c8:3d:b0:1b:
81:29:33:ad:b4:14:17:ea:e7:7b:d3:1f:da:eb:7c:
8f:eb:58:44:e5:6e:97:e3:07:83:05:8a:d1:c4:21:
89:a6:06:ab:3d:37:5c:bf:30:11:09:97:4b:cd:ed:
45:22:29:75:19:0d:76:93:2f:ea:6b:67:38:1b:eb:
5a:3c:d4:e6:19:99:31:fa:82:0b:cc:4a:6f:6c:60:
a5:ae:3c:a4:24:92:32:4c:73:73:5c:5d:69:2c:89:
d6:f5:4e:d7:b6:d5:6b:e1:37:42:cc:fd:05:4f:b4:
42:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:A1:A5:4B:AC:08:47:5D:83:C9:29:44:26:3D:28:59:C8:5D:42:07
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B48C7CAE014C11EFBD3579FA007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.94.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:1f:c1:f2:fe:a2:34:26:fa:bb:c1:6e:2d:8b:26:b8:2f:4c:
f9:02:31:fa:5c:74:58:47:a3:94:74:3b:23:49:4f:87:63:36:
0e:8d:98:ae:ee:35:90:4a:f0:41:75:9a:16:9a:9b:10:8f:4b:
a4:4c:00:70:26:54:9d:6d:93:d9:84:2d:f6:15:72:b1:a6:66:
d6:a2:60:1e:39:fa:0a:b2:ca:3e:64:70:19:0e:67:d0:b4:14:
6a:ba:ad:47:68:30:20:2b:d6:13:13:16:70:04:bd:55:fe:bb:
46:17:f9:d0:31:18:60:80:ea:be:3c:cd:5a:c2:f6:3f:9b:6d:
d3:03:1e:64:0d:9c:a5:b4:ea:11:96:f6:b6:c6:ec:c8:25:e9:
78:66:68:70:b6:1e:43:ec:cd:96:62:5b:73:41:d6:b3:80:ea:
fc:88:61:60:f2:29:0a:6b:64:f7:3d:95:68:80:35:86:80:01:
bc:0c:0b:4e:66:3d:9a:5e:1b:d2:73:49:8b:86:c6:80:ce:69:
60:f9:80:00:62:ef:ba:39:1d:95:f7:94:30:6c:25:4f:3d:79:
b0:34:15:62:12:11:20:dc:12:19:bf:f2:9f:0b:11:3d:c8:ba:
b2:b8:8c:b0:9b:d0:66:0c:1d:f4:0e:55:7f:fd:42:44:89:9f:
86:19:56:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:29 2024 by rpki-client on console-ams.rpki-client.org