Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DF4493D2007F11EF8D8455F5007001B1.roa
File: DF4493D2007F11EF8D8455F5007001B1.roa (raw, json)
Hash identifier: OMAC7ZYV1lCJYyOMJVqk5r2+xS5Sqnkwu78WvQ1HKMw=
Subject key identifier: 99:A3:A0:95:BD:28:BE:2D:1F:AE:81:CC:88:51:9C:7E:32:9C:1F:28
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AE94
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DF4493D2007F11EF8D8455F5007001B1.roa
Signing time: Mon 22 Apr 2024 08:11:08 +0000
ROA not before: Mon 22 Apr 2024 08:11:04 +0000
ROA not after: Tue 04 Jun 2024 08:11:04 +0000
asID: 140869
IP address blocks: 154.81.36.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44692 (0xae94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 22 08:11:04 2024 GMT
Not After : Jun 4 08:11:04 2024 GMT
Subject: CN=66261b9c-7e98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:24:b3:c4:ff:a9:92:ef:86:04:50:f7:76:59:
69:ee:8f:be:ae:3a:72:37:9c:45:fb:28:45:c3:41:
d4:d3:1b:f3:58:b0:9e:32:7c:f2:55:a9:44:7c:50:
d5:01:ee:24:93:c0:6e:83:02:60:d9:85:c2:5b:8d:
ba:28:93:04:e1:d0:f1:19:6e:fb:6d:fc:f8:6f:d1:
9b:9b:a6:b3:2c:b6:33:33:1d:e6:f0:84:de:d7:56:
10:15:c2:32:7b:26:e6:47:64:c8:f2:4d:a5:b2:12:
e4:41:6b:92:6b:e1:16:b1:e8:09:35:5e:05:a0:f9:
bb:f5:07:7f:bd:59:7a:47:e9:92:da:7f:df:85:a6:
32:37:0c:a1:60:05:bd:62:0d:bb:27:e3:ba:5b:8d:
14:0a:ec:c2:3e:13:5a:a5:1f:5f:c0:6b:ef:66:a9:
3e:e3:bf:d1:18:bb:03:eb:49:2d:0f:a8:ed:bc:fc:
cd:8c:55:39:f9:e8:9a:6d:fe:70:11:68:8c:77:7e:
a6:31:ac:3a:e6:d9:b0:b0:a3:af:3b:a5:f2:f6:bf:
50:98:41:0a:ce:19:4e:33:e8:22:4c:3f:38:e0:4d:
3c:6e:c9:ca:2d:32:fd:1c:7c:90:74:b2:ce:5b:53:
c7:09:97:be:42:71:42:91:97:83:62:4a:48:fe:76:
71:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:A3:A0:95:BD:28:BE:2D:1F:AE:81:CC:88:51:9C:7E:32:9C:1F:28
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DF4493D2007F11EF8D8455F5007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.36.0/24
Signature Algorithm: sha256WithRSAEncryption
04:85:f8:c4:04:47:05:d6:59:b8:43:5c:f8:bc:15:12:cd:78:
3c:85:3f:fc:df:65:2a:53:3c:27:a7:d0:0b:70:f6:29:68:d1:
68:74:2b:01:d6:1b:53:a4:71:fa:84:8a:ef:7e:b7:07:ba:d6:
05:49:81:37:27:5f:cf:6d:92:66:e1:60:b7:8f:c2:29:28:25:
ee:4e:e6:0b:15:b3:f5:c1:ef:e3:8b:0e:de:d6:96:9e:be:41:
07:a4:ec:d7:00:9c:be:b3:08:43:98:b9:6c:8f:b7:56:03:99:
39:e9:83:a4:20:61:5c:57:f6:25:de:07:dc:26:b0:dd:df:34:
93:7a:ac:21:21:80:36:b1:14:d4:e1:30:f4:26:23:02:66:af:
23:08:44:7b:d6:e9:48:95:41:6c:40:7b:ef:2c:2f:b4:78:17:
7d:94:e5:f3:18:92:15:98:fc:b7:2e:99:71:ce:10:79:fe:23:
c5:51:b8:93:19:c8:d2:9e:d9:b8:d3:5f:a3:c8:a5:29:7e:42:
d0:02:4b:4a:d7:e3:80:53:bb:2d:c1:60:ee:d9:ba:5e:1a:24:
f1:14:b5:05:bd:20:9b:98:b1:6e:6f:ee:1c:90:11:a3:de:c1:
3f:72:c6:8d:1c:a0:15:4f:7e:a9:18:73:90:55:14:0a:29:02:
95:21:83:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:21:31 2024 by rpki-client on console-ams.rpki-client.org