Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE973ED0CCBD11EE8871E984775412E6.roa
File: DE973ED0CCBD11EE8871E984775412E6.roa (raw, json)
Hash identifier: KsRP9epOacgd36HSm410lwwXzwJvtMcrW9smTKpbJhM=
Subject key identifier: 27:16:27:CD:FC:7A:98:23:61:FB:E9:4F:F7:94:0C:6F:6A:94:FF:FE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8AEF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE973ED0CCBD11EE8871E984775412E6.roa
Signing time: Fri 16 Feb 2024 11:23:55 +0000
ROA not before: Fri 16 Feb 2024 11:23:52 +0000
ROA not after: Fri 26 Apr 2024 11:23:52 +0000
asID: 9009
IP address blocks: 154.216.231.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 11:23:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35567 (0x8aef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 11:23:52 2024 GMT
Not After : Apr 26 11:23:52 2024 GMT
Subject: CN=65cf45cb-473b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c9:33:e3:a0:fe:10:c5:2f:c8:24:bf:c2:f9:
c4:8d:22:5f:58:3f:60:a2:ca:55:ad:88:61:66:85:
3d:3b:40:21:6d:f4:f4:39:66:7a:12:b0:2c:ad:76:
4c:3c:0c:8c:74:a0:86:3d:df:68:05:2d:73:47:e8:
36:03:7f:67:37:20:83:7a:3a:c5:b1:1c:29:20:ca:
65:d1:75:ad:e7:5d:b3:f1:96:c9:44:d9:b6:0b:7d:
fe:9f:28:54:14:af:d9:78:45:76:d0:21:4e:4c:d3:
7a:cd:b9:1f:8d:69:40:66:ae:ee:76:f1:b2:f6:18:
7a:fa:13:b3:70:a2:aa:9d:b7:c2:50:a0:e4:74:c7:
c2:e4:d0:16:b1:2f:d4:66:60:e8:2c:d3:85:93:97:
e9:01:a4:00:f6:d1:5c:ad:ca:7e:d3:2c:e2:c9:5a:
29:76:15:60:39:0f:a0:5d:f4:07:39:71:f9:2a:0c:
85:c1:9f:fb:e8:86:a1:f7:b2:bf:1f:e7:6e:97:bf:
e6:d7:57:fb:f8:b1:97:8c:e4:27:c1:22:53:25:36:
98:06:f7:2e:11:62:c9:c4:96:e7:76:4a:af:47:f1:
6b:a6:7f:39:01:35:77:83:12:86:a8:9f:66:f4:d8:
73:aa:97:6e:d3:0d:9a:a2:d4:8d:29:02:07:a3:ff:
9a:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:16:27:CD:FC:7A:98:23:61:FB:E9:4F:F7:94:0C:6F:6A:94:FF:FE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE973ED0CCBD11EE8871E984775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.231.0/24
Signature Algorithm: sha256WithRSAEncryption
44:81:fe:b2:57:76:66:5e:d2:14:83:fc:e6:35:f6:8c:17:61:
22:62:6c:9a:65:1c:02:ce:06:84:35:73:0e:e2:77:93:ea:47:
59:e5:81:b0:95:18:5b:97:1c:34:b8:c4:1a:94:f9:99:9a:66:
d0:42:db:aa:0e:74:23:10:cb:8c:0b:1f:10:99:7b:c3:e5:21:
04:63:ea:4a:86:c0:22:83:68:01:e4:df:de:68:87:5f:58:8a:
94:f5:d7:8f:5b:5e:de:ae:f8:65:7f:f1:d8:e6:0e:b9:27:9e:
e9:59:85:88:a3:9f:a0:93:d1:d6:bd:c3:34:98:a0:85:44:13:
75:f2:f8:13:fd:8c:5b:8d:30:2a:ba:58:1b:b9:f0:81:1a:e7:
fc:b7:0a:8e:10:93:5d:4b:1e:aa:87:66:90:b2:f2:a8:63:2f:
e0:11:ab:f0:8c:4b:e4:d1:ce:af:6a:52:a2:2d:74:76:2c:0d:
2f:0b:e7:6a:a3:fc:73:df:97:2b:b8:d1:5c:44:14:89:4f:67:
4a:f3:a2:41:39:f4:ff:2e:a4:91:af:fb:32:38:0e:35:8b:5d:
5f:e5:9c:dd:1b:ca:29:ff:fd:08:d4:4b:d9:92:39:2a:fc:51:
44:c6:12:28:cd:1b:20:14:c0:4b:a3:44:9e:4d:eb:03:b0:ab:
f3:be:3c:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:49 2024 by rpki-client on console-ams.rpki-client.org