Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6C6F0DA1E5111EF908D85557DDC24C2.roa
File: C6C6F0DA1E5111EF908D85557DDC24C2.roa (raw, json)
Hash identifier: MW+Y470jFiBbC0glHKE1qESwByKLMUStwDmLgcjKOWw=
Subject key identifier: BA:E1:53:57:F7:84:A1:27:88:97:0C:A2:6A:A7:8C:9B:95:6B:25:36
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: BBF0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6C6F0DA1E5111EF908D85557DDC24C2.roa
Signing time: Thu 30 May 2024 06:56:45 +0000
ROA not before: Thu 30 May 2024 06:56:41 +0000
ROA not after: Mon 01 Jul 2024 06:56:41 +0000
asID: 49505
IP address blocks: 154.211.9.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 28 Jun 2024 06:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48112 (0xbbf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 30 06:56:41 2024 GMT
Not After : Jul 1 06:56:41 2024 GMT
Subject: CN=6658232d-b9d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:1b:a1:c2:fc:fe:c4:fb:95:2e:e9:5d:33:4f:
d0:bf:d8:c1:39:6e:c8:f7:87:60:c7:c1:4e:55:3c:
d1:72:bf:dc:0a:b3:f0:12:79:fe:1a:be:5b:01:e1:
b8:c7:a9:62:50:f1:4a:12:ce:6d:84:8f:e1:44:1f:
ea:87:0c:f3:dc:1a:8b:1a:09:26:38:79:9e:d6:7b:
9c:03:3a:a2:bd:80:5c:5d:11:ec:ad:c4:d9:1b:e1:
e5:50:82:ef:4e:d3:3c:0e:68:55:b4:96:1e:ca:cf:
cd:cd:6d:02:25:6f:53:65:a6:9b:12:e7:ac:0b:a2:
c7:03:f2:1a:71:90:9a:08:85:2a:10:a0:e3:de:53:
a3:e3:bb:9e:7d:f5:83:cb:8c:e9:98:08:be:dd:37:
bf:39:28:e7:da:5a:8c:84:fd:23:31:73:ee:62:89:
3b:6b:b0:32:64:bd:17:ab:73:5a:61:3b:e8:d0:ce:
04:8b:55:f0:fc:bb:d2:a7:1d:68:1f:f8:0a:ee:f8:
e0:f3:e7:a1:a7:ab:4e:b1:0d:1a:f4:c7:fc:42:66:
91:f7:6d:80:48:c9:af:31:73:ac:54:ea:d7:c6:bc:
71:bf:36:d4:6e:e7:d1:0d:30:d3:62:d5:04:1b:a0:
b1:fb:01:9d:cd:90:ea:17:36:c8:07:c6:32:22:1a:
ca:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:E1:53:57:F7:84:A1:27:88:97:0C:A2:6A:A7:8C:9B:95:6B:25:36
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6C6F0DA1E5111EF908D85557DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.9.0/24
Signature Algorithm: sha256WithRSAEncryption
07:67:63:5d:b7:2e:13:01:98:c9:cc:42:c4:5c:03:f3:17:dc:
26:26:6d:af:bc:7a:f2:93:13:f3:87:42:51:83:d0:b4:6c:01:
2d:38:63:b6:ca:db:8a:b0:d9:61:63:d4:66:e7:5f:e1:21:9c:
d9:7f:f6:99:f8:ef:14:22:cc:cc:e4:ba:99:e1:e1:3d:bf:fe:
38:f5:cf:c3:af:a9:2c:c2:88:49:e6:b4:a5:df:2d:14:c3:5d:
82:6f:52:c5:c3:b4:bf:0d:e9:b5:27:45:2b:f7:04:01:d8:ee:
9c:d2:27:c7:b0:d8:f7:c7:6d:6f:a4:25:c4:25:c2:7d:22:4e:
72:4c:b8:0b:e3:41:de:2a:2c:93:1e:ca:56:3a:e9:97:be:4f:
04:7c:57:37:11:f2:9d:21:4a:fb:66:83:dd:4a:ae:ed:76:61:
31:a8:77:ad:5f:3e:30:75:f5:87:4f:9a:cd:d4:dd:ab:ee:3d:
fc:c4:08:74:eb:e7:48:92:53:ee:64:98:fc:c7:85:55:35:ad:
b2:fd:4f:5d:bb:d3:54:9c:95:1a:a4:d7:6f:01:c0:b4:b8:df:
7a:1e:97:62:10:5c:e8:e0:8a:0b:18:87:37:44:38:4e:16:8c:
2d:9d:ae:06:0c:03:37:2e:0d:00:aa:71:b2:ef:ad:c1:4c:62:
9b:66:d2:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 11:43:49 2024 by rpki-client on console-ams.rpki-client.org