Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6949CC20B5D11EFB3A20606017001B1.roa
File: C6949CC20B5D11EFB3A20606017001B1.roa (raw, json)
Hash identifier: ANm4LvH17rFcYDskae9xYDNUJ6//ftgN1lcLSJxE06Q=
Subject key identifier: DF:1F:70:B3:D9:C1:8B:70:53:42:58:0F:F3:1D:E3:D3:DC:3A:F1:C4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B4FE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6949CC20B5D11EFB3A20606017001B1.roa
Signing time: Mon 06 May 2024 04:04:46 +0000
ROA not before: Mon 06 May 2024 04:04:43 +0000
ROA not after: Tue 11 Jun 2024 04:04:43 +0000
asID: 138915
IP address blocks: 154.203.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46334 (0xb4fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 04:04:43 2024 GMT
Not After : Jun 11 04:04:43 2024 GMT
Subject: CN=663856de-59be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:54:85:cd:12:b5:94:65:9c:57:bf:b6:de:6c:
2f:1f:e2:41:94:c7:98:62:e9:a7:76:d7:04:63:f0:
eb:fc:11:54:29:f3:9b:28:a1:74:be:21:10:65:0b:
77:ca:35:2d:86:9e:ca:ff:f6:ed:4e:60:07:3f:c2:
d8:eb:79:c8:ee:3c:83:08:44:cd:91:16:98:3f:ec:
52:fd:6e:c9:52:07:4b:6a:c3:45:2a:db:92:43:28:
ea:6f:a3:a8:f3:57:1e:e4:85:c7:db:67:18:07:b2:
a8:e1:e5:f7:d6:b9:57:f2:c1:f8:bf:a6:1d:ca:1e:
fe:3f:4c:60:a9:74:b7:2f:ad:c7:32:f7:af:9b:3b:
6d:b4:68:19:f5:b7:5d:16:a2:23:d1:c6:4f:bc:15:
5a:8b:2c:02:6e:72:98:49:f1:1d:1c:5d:b1:0e:4f:
01:12:a3:f4:6b:b9:c7:8b:09:c0:48:87:19:41:ec:
a5:c2:61:38:15:a1:a1:4e:9b:64:c0:fe:75:c7:01:
da:82:5c:da:28:5a:80:ef:bc:98:b2:25:6a:99:b8:
3e:99:ba:b4:fd:56:33:2d:77:2c:b4:91:ea:fc:da:
5f:4d:bc:63:e1:b2:d4:2e:e9:fb:be:ed:d6:ba:27:
12:7e:a9:d5:26:00:66:64:eb:9a:c7:50:2b:2d:e5:
99:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:1F:70:B3:D9:C1:8B:70:53:42:58:0F:F3:1D:E3:D3:DC:3A:F1:C4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6949CC20B5D11EFB3A20606017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.151.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:3e:60:fc:0e:bd:49:98:ee:51:e5:03:3f:60:3b:d8:51:b9:
d1:17:44:67:fa:50:e0:0d:dd:17:2c:d0:57:89:38:e0:a8:c9:
4c:e4:63:e9:a9:b0:52:a6:6b:9e:4b:eb:ab:3c:34:a5:8f:1e:
6d:37:40:8e:8c:98:17:d1:92:12:d6:d4:87:af:f0:90:44:69:
77:49:3e:f5:ea:87:a9:77:64:63:ef:a3:7e:ab:0f:15:41:c5:
c2:aa:6e:20:8f:5a:59:f1:6c:8b:15:5c:22:6b:fe:bd:71:20:
cd:14:11:9c:ab:3a:00:47:a7:e3:3c:08:53:7d:51:f0:a0:9a:
ef:3c:09:5f:4f:97:c8:f2:fb:02:62:b3:33:70:ce:9b:b4:e6:
aa:9b:96:47:ff:86:b3:6f:08:ee:63:42:10:54:cd:0a:d2:e1:
58:87:75:73:48:9a:14:09:be:aa:be:0f:e3:d7:dc:7b:50:aa:
09:b2:6d:9c:10:ce:e6:9b:c1:d8:bc:d2:41:84:5b:c9:21:3b:
f8:65:d5:9d:c1:b4:10:8d:5c:e1:1f:1f:34:e5:52:21:c5:3d:
66:f9:01:db:69:c8:e0:5e:6d:27:b9:cf:42:fc:28:bb:99:3a:
dd:0b:a4:d7:84:7c:de:9f:66:a6:9d:c1:5c:38:21:89:52:7a:
20:06:f1:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:23 2024 by rpki-client on console-fra.rpki-client.org